
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json)
Hash identifier: wOafaVskzq7bZ3SqWDh6cZjDHofjpfuj6f1j1il487E=
Subject key identifier: 20:FE:73:FA:82:1C:85:F1:59:FF:99:76:01:D2:39:CA:8A:D3:98:14
Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2
Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2
Certificate serial: 0654
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
Manifest number: 064D
Signing time: Sat 04 Jul 2026 22:59:37 +0000
Manifest this update: Sat 04 Jul 2026 22:59:37 +0000
Manifest next update: Sat 11 Jul 2026 22:59:37 +0000
Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: yKYsUFHr0avWkf93Lq1Ngl7REQ3YKD4U2u8lBVbfkXk=)
2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: 3RyEfrC1/+oLdtWYjCCiGJj81mtXCEJfqPIsFdcM1I0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl
rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 22:59:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1620 (0x654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2
Validity
Not Before: Jul 4 22:59:37 2026 GMT
Not After : Jul 11 22:59:37 2026 GMT
Subject: CN=6a499059-eb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:74:83:3f:73:46:d9:a7:5c:63:92:0d:da:67:
b5:fe:b6:5c:6e:a4:b7:98:b2:7e:ab:f5:f5:01:f9:
60:ae:bd:8e:17:6f:9c:94:79:0a:1e:cc:4c:46:6a:
94:9c:64:68:8e:7f:d9:9d:e0:e0:74:35:56:9c:ec:
ed:02:eb:3f:59:79:90:cd:42:4f:ee:de:f5:97:71:
7d:f2:f5:e6:2a:4a:42:28:77:af:91:8e:46:63:e1:
f5:e4:d9:39:e9:9c:cb:3e:94:83:b5:d9:0d:20:02:
a6:79:a7:8a:4a:ab:ae:6f:a9:b1:6c:09:99:9f:c1:
93:52:59:65:99:ae:ea:bb:1e:53:e5:e4:36:45:62:
89:5e:f6:da:48:7e:77:1a:a4:5e:b9:d1:e1:4c:9a:
9a:e2:54:2b:f6:e3:ec:b0:17:a3:97:2a:e1:e3:0f:
13:8f:87:98:49:83:70:e0:4b:48:17:7e:9a:9d:78:
b9:3a:d9:e1:67:9c:78:42:47:11:df:13:23:e5:68:
74:e5:ca:4c:10:d1:d6:c6:bb:34:5b:2e:fd:b2:23:
cd:da:64:3b:34:23:75:dd:19:1e:a1:e9:68:09:69:
cb:2d:e4:9c:46:90:00:37:ce:a5:f2:d1:66:96:ae:
f9:58:16:0d:c2:8f:41:dd:46:68:a8:75:87:84:0a:
3b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FE:73:FA:82:1C:85:F1:59:FF:99:76:01:D2:39:CA:8A:D3:98:14
X509v3 Authority Key Identifier:
keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:b9:27:70:46:1b:cb:d2:cd:c9:b0:08:b9:1b:cc:9b:22:ce:
88:dd:f9:fa:e7:3e:86:88:71:6d:de:56:06:d1:9c:95:2e:ce:
a0:3e:6e:69:16:9b:bd:f1:24:c9:da:b8:d6:ad:15:5a:e4:2c:
f0:2a:9c:9e:69:4b:5e:ef:e1:16:45:8f:79:0e:79:2b:55:c5:
3b:1a:06:30:b6:18:1c:dd:f8:93:fc:84:67:ff:e2:5c:75:17:
6e:68:50:0d:1a:1e:4b:9b:87:57:0e:e7:d8:78:fa:96:91:bd:
c3:e5:8a:c7:32:e3:92:c0:43:be:d6:38:12:2d:e4:1b:2f:e6:
4a:ee:f3:55:17:57:59:3e:fb:26:bd:08:45:1b:5d:de:ec:23:
ae:c3:fd:11:81:6a:37:30:89:ca:bb:89:9d:a8:d7:1d:96:f6:
f9:bd:4c:7f:55:72:44:4f:99:9d:11:7d:cb:23:33:59:10:1f:
0c:62:fc:a9:bb:f4:d3:c4:4e:83:5d:6f:09:ea:80:2a:d4:a2:
93:9a:a1:62:a9:0f:23:7e:fe:bc:08:5f:ee:f8:52:3e:8c:67:
85:27:22:a6:a1:e1:aa:ca:e0:b0:c1:52:7f:f3:b4:72:0d:45:
5b:36:bc:49:fc:8e:ae:d2:24:f8:c8:41:76:d1:5e:2a:56:5f:
c0:f9:16:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:52:29 2026 by rpki-client