
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft
File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json)
Hash identifier: NyGTZ54ifdOemS6cBw88lXSfm7f/OSa9EblP9BQ95rc=
Subject key identifier: D1:8D:7F:37:ED:29:CB:67:91:5C:17:3F:47:5C:2E:F8:33:94:10:23
Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F
Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F
Certificate serial: 0189
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft
Manifest number: 0177
Signing time: Wed 01 Jul 2026 06:07:37 +0000
Manifest this update: Wed 01 Jul 2026 06:07:37 +0000
Manifest next update: Wed 08 Jul 2026 06:07:37 +0000
Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: MomtvA2HvKeRPz9M6qk3WJnCZX+vhB+w278Q8i9M8fQ=)
2: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: cYJup+wUJGtYgdIrc1oUwAkSXzmV3AlmQSx4GJxEnkI=)
3: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: Mem81CDNt2s+1wxtJl9qhDaTI/CWwYf0sPuRtvT/byE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl
rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 06:07:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393 (0x189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F
Validity
Not Before: Jul 1 06:07:37 2026 GMT
Not After : Jul 8 06:07:37 2026 GMT
Subject: CN=6a44aea9-027b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bf:4f:0f:57:1a:63:2e:01:b5:1e:25:90:e3:
ac:e7:d5:99:88:e9:a4:b6:8f:d7:78:d4:16:1e:99:
9e:d8:1d:8a:71:6f:f4:eb:60:8b:1c:12:a4:3e:b1:
5f:ac:9d:62:4a:0e:66:e5:6a:37:4e:9c:d3:bd:36:
4f:6d:f0:ff:58:34:27:a9:8a:a5:69:75:d9:13:4b:
92:69:06:75:fb:7c:a6:1d:a0:d3:bf:be:26:78:c4:
ec:42:af:a4:18:1a:02:53:0e:00:21:ba:1c:7a:f4:
c7:19:2f:16:c2:0a:77:31:5e:07:79:a4:08:f3:3f:
d4:f6:62:94:11:a6:87:e8:0c:02:4b:31:26:c4:c3:
53:a5:e4:95:5f:72:a4:48:fb:c3:c9:1f:1b:5d:8e:
14:50:59:4a:fa:fb:73:f1:e8:a8:a5:f5:a0:d3:0e:
ef:a6:06:a6:04:b6:c1:7a:cc:df:8b:e1:c8:ae:8f:
f6:76:4b:9b:20:81:35:60:17:61:d2:a2:7d:0e:57:
39:73:15:c1:0e:9b:6a:b3:bc:04:51:20:56:8b:f7:
8d:d6:89:69:7a:f2:8b:25:19:88:4f:21:c7:0d:ea:
5d:7c:be:d3:fd:0b:0b:c2:3e:8e:1c:f4:ec:a0:37:
0e:b1:a3:70:54:2c:4c:16:34:72:21:41:e2:14:79:
eb:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8D:7F:37:ED:29:CB:67:91:5C:17:3F:47:5C:2E:F8:33:94:10:23
X509v3 Authority Key Identifier:
keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:6f:27:71:fd:5e:fe:b2:6f:2c:21:52:f4:84:00:26:b0:d0:
af:d4:da:02:d1:b1:52:e0:da:1f:ed:6a:b5:97:5b:53:67:86:
fd:35:e6:11:0e:4b:cf:eb:b5:0c:57:de:34:06:d3:60:e2:b0:
28:e9:9c:3e:4b:f6:e5:e9:a1:2f:5f:ad:87:56:64:73:ba:42:
81:7d:2d:8e:e5:01:9c:32:c6:3e:ce:c1:a7:fb:48:b2:f0:0e:
c5:a8:b8:ae:a5:a6:82:17:09:bf:ed:8a:27:de:22:ef:1f:1c:
9a:36:17:62:23:49:87:77:29:1e:60:a8:85:b1:fb:03:14:8d:
dc:1c:a1:ca:fe:d2:cc:49:88:f7:2c:80:52:50:61:64:32:62:
ad:00:95:17:90:8e:74:45:a1:47:b7:f8:42:32:f6:fb:bb:63:
4b:95:ac:fd:71:53:22:cb:65:e7:f9:1a:ba:c4:df:2f:ea:7a:
79:0e:39:54:4f:09:eb:e1:73:04:c3:e4:24:f9:98:c0:e8:38:
f5:8a:67:75:17:11:31:92:f4:8c:33:a9:02:27:cd:95:71:a1:
7f:a9:c3:c9:73:6b:05:57:c4:0a:3a:aa:08:52:cf:e5:c7:ef:
02:9b:55:13:bd:9d:8c:58:fa:09:01:b8:c3:67:21:d4:d4:18:
5e:d9:8a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 11:43:39 2026 by rpki-client