
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json)
Hash identifier: z5kC65NViC0/9xnnxlrC8tsiY3G6Fy5Sdm/M0JB7ms4=
Subject key identifier: A6:17:DF:A2:11:81:0B:95:AB:57:90:08:7B:F5:2F:29:4C:FB:BA:2B
Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF
Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF
Certificate serial: 216B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
Manifest number: 2146
Signing time: Thu 16 Jul 2026 15:58:27 +0000
Manifest this update: Thu 16 Jul 2026 15:58:26 +0000
Manifest next update: Thu 23 Jul 2026 15:58:26 +0000
Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: OEIR91/H0pJKzqU+7sfsLz3ylQUtV+0MXdJPja27cPY=)
2: 2991FB703EBC11F0B4390D6CC4F9AE02.roa (hash: H6TSFHjxceqzGmdQryqjxQpaN4ogGNNs1wmONNfXYC4=)
3: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: o/MzyN7ge/ypeEuVIYd4HleoRWxXy+d/s8ghiWxojiQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl
rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 15:58:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8555 (0x216b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF
Validity
Not Before: Jul 16 15:58:26 2026 GMT
Not After : Jul 23 15:58:26 2026 GMT
Subject: CN=6a58ffa2-ba90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ce:65:50:18:2b:07:5a:76:cf:5d:39:43:ee:
80:e2:0b:27:56:00:ac:68:0a:15:b5:ec:39:18:2b:
10:54:0f:03:e7:ee:3b:a8:49:45:2b:b0:6f:90:0a:
fc:cf:dc:ae:21:88:bf:f2:fc:1d:cf:53:4c:6c:fb:
ab:72:c9:76:23:cb:ef:47:ad:86:4b:69:4d:a8:f8:
e4:e0:5d:b8:34:e4:98:05:63:88:20:d0:60:e8:79:
9a:de:a7:39:6a:6a:12:74:79:c5:59:45:56:42:e8:
32:9f:99:90:4e:8d:d6:53:ff:9a:a3:64:3a:02:73:
8b:9e:3c:89:e6:52:44:47:b4:9d:b7:05:8e:79:64:
8d:fe:df:2e:b2:eb:75:c9:25:b3:75:c5:c9:5e:73:
7e:c5:01:56:44:76:85:78:a1:99:cf:d5:d9:00:da:
1d:ad:f3:71:af:66:02:ab:4c:57:80:a1:ea:62:51:
f4:e2:db:27:11:2f:10:89:e7:ee:72:1c:96:21:68:
04:ab:bc:09:5a:e1:4e:c6:44:1f:89:77:d7:94:ca:
5d:2c:d8:91:69:f2:c1:4c:87:7a:5f:5f:07:1c:26:
92:d4:c7:8d:df:1a:fc:8c:c0:db:1b:a6:0c:77:a6:
d3:12:70:fc:c0:87:9a:66:61:8e:5b:b6:27:27:5f:
45:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:17:DF:A2:11:81:0B:95:AB:57:90:08:7B:F5:2F:29:4C:FB:BA:2B
X509v3 Authority Key Identifier:
keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a7:50:ca:bb:26:51:55:d6:e3:c4:db:44:c5:02:8c:bb:68:19:
ae:e4:ef:30:d5:90:69:15:a5:bd:1e:e2:1c:04:46:3b:2b:c5:
9a:30:c1:a3:ee:18:79:4f:be:e7:fe:68:ea:b8:ab:80:03:3a:
bc:4a:d6:83:e8:ac:4c:57:fa:d9:a1:9f:77:62:be:d5:19:0b:
f4:af:81:af:5e:75:e3:21:c6:a5:bb:6b:ba:df:b8:92:62:8f:
16:bd:33:15:d8:da:f2:21:38:cf:eb:41:e9:ae:13:16:fc:fe:
08:ba:4f:54:53:15:e5:15:b7:31:5c:13:62:33:78:2e:19:07:
46:fa:f8:82:aa:af:bf:b0:be:00:18:bc:ef:14:6f:40:ea:9a:
fb:c8:76:3b:d4:90:69:2f:d5:4a:10:72:5e:c9:d3:56:13:43:
1e:56:03:13:aa:3e:1a:ad:1b:2e:f3:3b:e5:f5:ea:d6:d2:e4:
a4:a0:ce:f0:9b:41:70:d1:f9:27:c5:7c:16:ba:99:0a:14:9f:
02:1d:32:58:b8:cb:24:44:c5:c4:48:30:1c:a4:17:18:bb:ac:
a0:3a:2a:f3:46:52:c1:47:33:23:5a:25:a4:45:3f:c8:da:b1:
91:0a:a8:d3:b2:96:a1:39:eb:90:ef:37:91:d5:1b:ee:3b:78:
3d:f8:54:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:19:01 2026 by rpki-client