
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json)
Hash identifier: 8uCaa2PjZY/vuRj4i0yLyd0XeXUTpqv2dU6YVUipX1Y=
Subject key identifier: 2B:78:ED:E2:1B:96:06:EE:EF:24:7E:F5:1B:30:77:91:68:0A:67:2A
Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24
Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124
Certificate serial: 0186
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
Manifest number: 0181
Signing time: Thu 16 Jul 2026 23:26:45 +0000
Manifest this update: Thu 16 Jul 2026 23:26:45 +0000
Manifest next update: Thu 23 Jul 2026 23:26:45 +0000
Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: /35onAPJhvISaTZ7kOzGKYXo7sgTOAEq9ePbw/zPqkQ=)
2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: 2/r4oR0iCi4LexUGtmPzKzEWeEmDyv6SAtyEMBATvFM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl
rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390 (0x186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124
Validity
Not Before: Jul 16 23:26:45 2026 GMT
Not After : Jul 23 23:26:45 2026 GMT
Subject: CN=6a5968b5-b67f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:04:c5:8b:a5:05:0d:fa:de:a6:a9:c4:d8:05:
13:60:86:2d:10:09:2e:98:1d:3f:e0:99:0b:11:0c:
fb:ad:4d:e4:10:60:2e:a0:9c:7b:8a:0f:50:5a:3b:
cc:c2:e8:e6:63:0a:42:49:ad:3b:91:19:25:61:4e:
8e:3f:5a:b0:21:6e:e8:d2:a1:1f:7c:22:80:a6:e9:
df:7e:98:83:aa:91:fa:fe:a0:d6:a1:6f:85:5b:96:
d1:cf:2c:0e:74:80:d6:fc:95:18:83:32:a0:70:a3:
2e:a6:27:15:e1:6b:43:69:47:0a:82:11:3e:e7:cb:
33:9a:5c:55:83:1d:29:d6:31:80:4b:0c:20:91:e6:
ac:bc:61:0d:46:81:ac:4e:4b:e0:48:9b:84:26:0d:
15:86:69:32:86:69:5f:ef:95:94:16:eb:04:8d:e5:
7f:70:60:74:1b:87:a4:3d:c9:84:49:f8:f5:e1:be:
f4:b7:11:01:98:92:2b:fd:17:0b:c0:d4:be:e4:75:
cf:24:8c:a8:60:de:a5:b7:f5:ed:d8:b7:d1:e4:8f:
85:f1:b5:bc:9d:e4:3d:b5:c7:ad:ff:cc:94:08:ba:
72:88:84:38:b5:37:61:22:0c:80:f2:d7:13:07:eb:
be:5e:c6:b7:75:1b:68:fc:d8:47:a2:7e:9b:69:1e:
25:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:78:ED:E2:1B:96:06:EE:EF:24:7E:F5:1B:30:77:91:68:0A:67:2A
X509v3 Authority Key Identifier:
keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:6d:e1:29:dc:80:c0:e4:3a:7f:8e:d6:f4:28:58:e8:a0:83:
95:bb:a2:32:8e:34:51:78:ec:97:7d:d0:9e:e3:27:ca:4f:ac:
08:48:dc:16:75:32:35:42:5f:39:6c:c8:7c:42:fa:5a:c8:02:
4b:47:1d:0e:a2:e3:99:c0:eb:d7:7f:1d:4a:51:bd:aa:4d:2d:
e0:af:03:84:12:21:0b:9d:08:6a:98:4f:db:9a:aa:29:97:dd:
a7:50:a1:36:a0:16:3f:38:fe:35:cb:03:69:db:31:63:54:f9:
be:cf:ca:10:a1:a9:0f:f7:12:97:13:75:c4:87:c5:eb:2d:41:
57:6b:5e:e5:17:86:b2:b4:35:14:b0:f2:cc:55:12:1a:1d:1f:
fb:a8:d4:15:70:2a:00:62:83:68:53:8c:2f:11:00:b2:5b:08:
00:62:fa:12:35:c9:cd:b2:e5:99:e6:5c:b8:86:e3:ea:1e:b0:
f6:2f:0a:ac:7e:c0:86:44:a0:32:7b:0f:2d:46:7a:59:1f:fa:
4e:7f:81:c1:50:d2:f6:ec:83:52:85:d7:f3:f2:b5:82:d8:74:
7c:32:b0:89:92:1d:fd:1c:c9:07:6d:49:19:88:aa:6e:c3:25:
fd:e1:6e:aa:15:0d:0a:3f:c5:b4:e7:28:1a:58:0d:a9:ff:5c:
e0:66:22:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:41 2026 by rpki-client