
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json)
Hash identifier: GRvV1WrQZdM6Ni40RVNJ0RA5t7q2lCDH+OBCYGf+Fvc=
Subject key identifier: 2D:6C:DA:DA:BD:4B:7A:1B:3C:71:9C:A1:60:05:50:32:92:9D:93:7D
Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09
Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809
Certificate serial: 016C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
Manifest number: 0159
Signing time: Fri 17 Jul 2026 06:14:23 +0000
Manifest this update: Fri 17 Jul 2026 06:14:22 +0000
Manifest next update: Fri 24 Jul 2026 06:14:22 +0000
Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: CywVdhT5Qk2KW0SBppEkFI+cUkIRcuBEth439tcunEM=)
2: F7981812F38811EFAC05053AC4F9AE02.roa (hash: EK3pUqrH9H4fquoX1peOlD1L2xEfn/Ee2ouiE9JS3Uk=)
3: E9B0903AF38811EF81B8CE39C4F9AE02.roa (hash: SSKa739rT23rOpIYYisZx12/v/K7+nclE63wWrbXXlU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl
rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:14:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364 (0x16c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9160A05, serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809
Validity
Not Before: Jul 17 06:14:22 2026 GMT
Not After : Jul 24 06:14:22 2026 GMT
Subject: CN=6a59c83f-55fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:37:cc:ce:8e:1b:65:d8:4f:8b:59:85:b4:93:
50:83:4d:31:c6:36:35:ca:4f:78:44:d3:6d:57:64:
39:87:f9:8d:c2:97:79:90:e9:2a:de:44:d3:62:0d:
2f:04:b3:0b:b9:65:a4:45:75:d2:bd:ad:0e:68:c7:
9c:a4:55:8c:f5:ef:41:30:b3:6a:be:9b:18:c3:90:
57:3f:ee:87:e6:8c:c0:d6:70:68:55:b5:d0:7f:f5:
b3:ca:4f:0b:ac:a2:1c:a3:99:e9:50:27:d9:3d:8b:
0c:2e:5c:85:88:5b:ff:8d:92:2f:f7:2d:2a:e3:1e:
33:4a:ca:6a:67:23:f7:33:48:4f:f7:3d:e0:7a:9f:
77:bd:ac:36:f1:7c:d1:1b:30:fb:94:a1:58:6e:ad:
4e:b6:c2:ff:26:21:ab:06:dd:3e:1d:83:d5:63:1c:
24:7c:7a:a6:fc:0c:0c:93:4e:59:2b:d8:66:cf:03:
db:87:57:c9:65:e8:e2:12:ce:7e:e4:42:2d:8f:f6:
51:5f:22:8c:44:13:f0:71:b4:b5:82:c8:29:a5:aa:
84:9e:25:a3:fd:e2:85:b2:fe:4c:27:24:f3:cf:11:
0c:f0:f4:b2:bc:d3:65:50:a6:73:6b:b3:10:56:49:
16:cf:e3:0e:3f:f3:5c:f7:59:df:d4:4e:7f:53:dd:
5f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6C:DA:DA:BD:4B:7A:1B:3C:71:9C:A1:60:05:50:32:92:9D:93:7D
X509v3 Authority Key Identifier:
keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
41:66:bc:83:07:31:53:b1:62:7a:89:1e:71:a3:b8:33:8b:87:
b5:72:63:cf:81:7f:75:c4:04:c8:5b:92:2a:76:7e:cd:76:ef:
d0:4d:a1:51:56:9b:3d:20:46:fa:37:5a:86:e1:9d:ae:49:63:
72:4e:00:3d:05:2f:5d:54:43:59:c5:7e:96:07:7b:d8:15:24:
c9:ba:f4:99:92:a7:52:01:04:16:0a:41:26:bc:97:3e:b4:ab:
b1:80:31:29:80:aa:44:2f:57:0c:c7:16:2a:98:72:e2:76:e0:
46:92:52:6b:77:42:6d:18:c1:f7:15:19:74:e4:8d:c6:cc:63:
cb:40:23:03:80:39:82:96:bb:84:bf:91:20:82:41:1a:df:3e:
49:34:94:23:ed:d6:eb:62:98:4b:db:60:eb:c1:0c:85:45:b8:
6c:33:65:56:32:1e:2a:1e:62:e4:4d:8f:b3:02:ad:d1:cc:20:
a9:c0:ce:5d:e1:d2:6b:69:58:fd:7c:f5:82:10:94:1f:c8:3f:
29:1f:21:ce:40:33:8c:07:da:7b:13:89:9d:1e:f8:ab:0d:e8:
e8:7e:d5:d0:30:53:41:7e:b0:2f:1a:d7:a0:31:cc:71:73:ec:
ab:78:43:3c:a9:ec:d1:8c:98:fa:0b:ef:c9:a3:1d:45:1a:f6:
72:cf:46:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:14 2026 by rpki-client