
$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft
File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json)
Hash identifier: fUomUs09sMPVZO8mPy3iSfVpmI2Vd64nD/oDzHOcDkg=
Subject key identifier: 98:E8:A2:D6:CC:50:09:E6:F2:65:28:87:8B:73:22:0C:F1:51:51:1A
Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B
Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B
Certificate serial: C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft
Manifest number: C7
Signing time: Sun 05 Jul 2026 07:32:05 +0000
Manifest this update: Sun 05 Jul 2026 07:32:05 +0000
Manifest next update: Sun 12 Jul 2026 07:32:05 +0000
Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: qrERF9V2uPF/fy5E2O6HueUeSBLc8A+UD6S3Nnobb1w=)
2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: YZdUm7+WLurwEjDF7nwXv0d6iTCyzNott8Mq+jpg6ms=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl
rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 05:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201 (0xc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B
Validity
Not Before: Jul 5 07:32:05 2026 GMT
Not After : Jul 12 07:32:05 2026 GMT
Subject: CN=6a4a0875-a676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ee:64:44:51:1c:7f:44:e7:7d:08:ce:22:89:
1e:d7:81:00:13:f1:d7:92:1e:21:4f:0f:24:41:1b:
d9:f2:49:3b:5d:53:60:0b:e8:5a:33:92:23:ef:78:
e1:4c:4c:58:e3:b4:cf:cb:5f:52:49:73:dc:17:6f:
02:83:12:55:ea:3f:a0:06:0c:b0:1d:c0:d4:07:55:
f7:7b:a7:83:7d:a3:c0:2d:e3:9a:b8:c7:da:79:e6:
13:c4:a3:7a:7c:7c:65:d9:8b:e9:9e:64:b7:13:a9:
38:96:ba:5b:b7:24:a2:c0:3f:1f:dd:17:cc:8a:05:
cd:3c:87:b6:f1:69:39:98:be:dd:70:da:e2:09:76:
01:68:77:8b:d6:6c:76:6b:f3:75:ec:9d:a3:8c:e7:
93:8b:65:09:2c:f1:46:e9:46:7b:d9:4d:9b:81:fc:
4e:12:a3:05:23:3c:ef:70:52:74:5d:92:e4:7d:41:
a5:18:a7:90:ce:63:37:c3:ef:7c:85:f3:05:7a:bd:
c5:d1:2b:d3:48:c0:29:3c:84:01:5a:b4:2d:9c:ec:
5e:c9:9b:44:4d:14:8d:c7:3c:c8:04:24:2f:70:62:
28:9f:a0:ca:ea:2f:74:51:83:b4:3a:6c:da:a2:2f:
dd:b2:d2:27:b6:91:c0:72:2e:89:c4:c7:fe:5e:94:
87:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E8:A2:D6:CC:50:09:E6:F2:65:28:87:8B:73:22:0C:F1:51:51:1A
X509v3 Authority Key Identifier:
keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2a:c9:79:b8:9f:75:a8:e4:31:12:88:f3:08:1b:63:a6:b7:a2:
69:47:9d:1c:f9:9a:93:41:97:58:b1:51:45:aa:50:d2:3f:89:
31:08:f9:25:ee:4a:9a:e0:39:29:f1:c3:4a:58:f7:f1:df:de:
ee:f9:1b:52:8a:e1:1d:18:18:30:91:77:b6:73:5e:86:d2:a3:
46:54:4b:8f:de:cd:db:5a:75:b4:e1:c6:27:fe:47:00:ac:c6:
2c:8f:86:84:4d:95:2f:43:81:7a:1f:ad:5d:b6:84:23:82:73:
16:ff:ea:65:8d:1e:2b:09:84:ed:43:21:ec:f1:04:c8:8f:3f:
72:16:46:9a:f2:f6:cc:f1:49:8a:29:e9:61:48:e2:10:43:4e:
94:1f:df:fe:c2:e8:60:e1:42:12:31:d2:b9:1c:1a:0e:08:30:
c3:30:6d:4a:ff:9b:65:d3:d8:5c:26:f3:46:79:e1:35:d8:39:
fd:53:32:cf:a2:e4:15:45:cd:58:78:90:4a:f2:ff:40:0a:6d:
32:f6:6d:c8:0d:8b:9f:3f:83:8f:f5:ad:72:f5:b6:d2:47:22:
0a:af:bc:36:a6:78:a7:96:bc:72:02:11:89:b3:02:37:6a:6d:
ef:29:c3:a7:e0:e5:53:12:77:06:55:c9:3d:4e:62:7c:37:27:
f3:9d:10:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:16 2026 by rpki-client