
$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft
File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json)
Hash identifier: 0YzEA3hkm6CCIBxKvgnrmZUCR4+Kpzm3SSbjAYO4UEY=
Subject key identifier: F3:6B:06:A9:86:2E:E4:50:F9:77:27:30:E6:7E:90:1E:1D:5C:3C:56
Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27
Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127
Certificate serial: CB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft
Manifest number: C9
Signing time: Fri 17 Jul 2026 08:00:51 +0000
Manifest this update: Fri 17 Jul 2026 08:00:50 +0000
Manifest next update: Fri 24 Jul 2026 08:00:50 +0000
Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: P0amO4Ikwoh9m95BYUc3gtGhlWYS6MzIU1tVYnbZ440=)
2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: daCSAN1/L7FpC1GH73B6zID6rVi/iS9JfJ6E1UGDmuc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl
rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203 (0xcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127
Validity
Not Before: Jul 17 08:00:50 2026 GMT
Not After : Jul 24 08:00:50 2026 GMT
Subject: CN=6a59e133-4daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:eb:b5:17:ca:57:5e:71:a3:2b:a1:bd:e6:cc:
16:53:c8:89:87:46:3c:36:6e:78:27:64:f7:2f:4c:
4a:69:12:60:04:6e:24:eb:d1:02:db:d3:36:09:e0:
7b:66:11:08:ea:a1:45:fc:74:f6:ac:d7:50:a6:d5:
3c:04:e0:db:6b:1c:6c:d9:0e:eb:22:ad:25:39:cc:
3b:6e:df:18:7e:ac:31:b5:84:6b:ef:65:f3:0b:3e:
38:68:12:b0:10:cf:1a:2c:0c:16:a9:bb:0b:fa:78:
23:43:43:eb:b7:6a:73:5e:62:bf:a8:7b:64:64:be:
0a:91:da:ce:31:f6:98:a5:60:b4:ab:09:f2:e3:8e:
cd:f1:91:37:bc:be:7f:1f:42:e2:e1:af:36:86:45:
9b:fa:e9:1e:a3:c4:a3:97:74:4c:ff:62:61:ad:cc:
2f:43:e7:94:ed:e8:29:fc:67:73:46:f1:dd:37:08:
7a:12:84:d1:73:25:a0:8e:ae:ed:10:8a:93:76:13:
93:a3:25:b3:e8:3a:97:10:fa:df:7b:3a:94:78:c8:
a0:b6:19:e5:e2:72:5a:05:43:1b:81:6f:32:51:33:
ee:2d:a6:d2:3d:14:fc:56:79:58:38:f8:4b:02:16:
72:54:76:c5:c4:89:bf:a5:75:47:26:6e:7e:03:2a:
b9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:6B:06:A9:86:2E:E4:50:F9:77:27:30:E6:7E:90:1E:1D:5C:3C:56
X509v3 Authority Key Identifier:
keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7c:3d:e5:66:0e:ec:f0:d5:af:3b:08:0d:ae:13:df:79:2c:fa:
7d:f1:44:71:a1:b5:50:92:09:b8:9e:fc:c2:1a:f3:d7:76:9d:
69:3c:19:86:a7:e9:e9:05:74:e1:d5:3f:6b:07:91:e9:1a:10:
fb:57:48:ca:ae:9d:cd:07:21:13:a4:ca:35:2e:ec:c3:a4:c3:
ee:77:17:15:16:cf:0d:21:af:2f:3e:ce:35:f4:09:7c:70:38:
a4:3a:19:71:3c:b8:7f:e5:0c:60:18:81:92:ca:7a:8d:52:f2:
ed:a0:cc:95:49:7f:a9:5b:b2:0f:af:cc:72:f5:5f:82:e8:36:
65:fe:0b:06:05:ef:7e:d3:ba:76:84:30:a1:4e:8d:52:59:d8:
74:1f:d0:3a:f9:f0:e2:7d:8a:ff:d2:a7:85:65:51:d8:43:31:
67:0f:9d:f1:19:f5:54:21:8f:5e:6f:19:63:8b:15:e1:bf:1d:
97:52:41:27:92:c9:98:e0:42:e3:6f:27:eb:4e:bf:eb:ce:50:
85:9a:77:a0:3b:c5:7e:a2:8b:30:f8:41:16:00:7b:13:84:58:
50:b9:25:93:ed:af:ba:d4:77:15:02:a7:58:f1:65:65:dc:64:
4a:13:7b:2d:6a:63:41:91:72:6f:fe:47:9f:00:f3:e9:db:f7:
49:14:e6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:11:01 2026 by rpki-client