
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft
File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json)
Hash identifier: Qe81C63zCodytvkq94EJoYO8DSMkvaEzEy4peSgC+wc=
Subject key identifier: 1C:F5:66:36:85:A1:BE:26:BB:41:FC:EE:D1:EC:9E:E1:CC:80:91:CF
Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B
Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B
Certificate serial: 07AE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft
Manifest number: 0794
Signing time: Wed 08 Jul 2026 22:25:41 +0000
Manifest this update: Wed 08 Jul 2026 22:25:40 +0000
Manifest next update: Wed 15 Jul 2026 22:25:40 +0000
Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: uDs+1VJ05zAYBeBme8Sbh6HwPOy6nAZ2tW5IZWuB7EE=)
2: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: iME1Wafl/c0OdFfEQ+yf2PqIzRI/AG4449vj600jvuo=)
3: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: 8Bf2rdYfYL741zuMOv5KtG3C9cn1bSgEVEELLNz/YH8=)
4: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: CpFJfviv2G7kOoCAx8E0MIABIX073GlTgR5ffWoVVlg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl
rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 22:25:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1966 (0x7ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B
Validity
Not Before: Jul 8 22:25:40 2026 GMT
Not After : Jul 15 22:25:40 2026 GMT
Subject: CN=6a4ece64-fef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:33:4b:11:f0:16:b6:43:da:32:92:34:6a:22:
06:bb:ae:b6:57:41:80:fb:30:71:59:b3:f9:ab:0d:
b6:51:54:dc:9a:f7:b6:d9:79:67:08:fd:af:ca:07:
c3:91:8a:fd:28:88:90:55:e4:4e:4a:f7:6c:07:82:
b1:53:8c:7b:4b:d6:ef:2c:d5:c9:8c:d2:d5:2d:18:
e9:e2:01:a1:9a:23:80:ca:4a:f9:b8:4a:46:04:e1:
4e:1e:b3:2b:4c:50:3d:e6:1c:b4:5e:10:2b:6b:39:
0d:e6:42:9a:e3:53:11:1a:33:91:36:11:e4:f4:f6:
20:04:6b:67:a6:8b:9d:4b:8d:25:04:8b:03:e7:45:
00:d4:01:cf:aa:84:47:57:76:0b:7a:c8:80:46:3e:
83:6e:db:57:d3:00:b2:de:05:8e:07:f7:1c:f1:4d:
14:d9:f5:a7:01:dd:63:c3:85:a8:5b:7c:c7:7d:5e:
e7:3d:74:61:4e:6b:35:21:79:6c:62:88:7f:86:bc:
68:dc:cb:36:e7:ca:2d:d9:a4:cb:d5:33:71:f3:94:
27:b7:7e:7d:b9:ff:f4:5e:35:6a:e9:36:ad:b7:5c:
76:dd:b9:07:67:34:c1:91:5c:f4:69:b3:75:3b:51:
b2:72:b2:68:a8:74:58:20:72:5a:b6:7a:7c:60:40:
2b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F5:66:36:85:A1:BE:26:BB:41:FC:EE:D1:EC:9E:E1:CC:80:91:CF
X509v3 Authority Key Identifier:
keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
94:1c:e6:f0:13:af:c2:b8:f0:40:ab:67:a4:53:73:89:3e:c0:
e5:ab:1b:6e:6e:64:75:2a:2a:14:08:32:5f:fb:05:39:91:be:
09:64:88:55:80:c9:7a:86:7e:fa:b4:b6:b2:a0:a5:46:a9:c4:
48:91:a0:05:90:cd:2c:56:d7:f1:b4:16:70:23:2e:49:f6:a7:
a4:7c:c4:56:bc:3c:7e:dd:9a:8d:de:65:3d:f7:97:4b:4f:33:
3c:5b:1b:54:74:d2:10:2b:fe:33:29:f3:5d:e2:27:32:53:6c:
53:40:38:f6:61:c8:21:2d:a9:ee:9e:e1:17:0e:c1:9e:d9:91:
d5:3a:82:84:e3:3b:1a:e2:ca:e6:ed:c6:f6:70:cd:dd:9e:27:
ad:3f:5d:53:41:b3:5a:0f:fb:97:58:92:3d:c6:49:10:54:88:
5d:f8:67:48:9b:5e:43:69:e8:2b:c3:1a:d4:e3:72:e3:20:99:
cc:91:e0:a9:34:01:ff:96:f7:ff:bf:76:d0:96:0c:d7:c5:a1:
04:8e:94:5c:73:d4:1d:3f:ea:14:2c:eb:0c:d9:e0:5e:8d:6b:
fd:4d:e6:09:77:99:a8:92:7d:23:eb:50:ff:cf:1e:05:c8:88:
72:69:7f:d7:fa:25:70:01:d6:54:09:0c:27:95:df:1b:77:15:
1b:04:fe:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 20:37:16 2026 by rpki-client