
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json)
Hash identifier: 4g5D/2nZ9SiDWxcczybv+SYrD9+v5ueZ5wW63oJADvY=
Subject key identifier: 11:71:5F:0A:97:2A:90:F4:DD:8B:AA:D2:3A:AD:E7:5D:39:3C:56:E3
Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3
Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3
Certificate serial: 0103
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
Manifest number: FB
Signing time: Fri 17 Jul 2026 07:27:09 +0000
Manifest this update: Fri 17 Jul 2026 07:27:08 +0000
Manifest next update: Fri 24 Jul 2026 07:27:08 +0000
Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: GV1gEV8/QxEqH0cYK4jfTZhAi5WUU5sLKrca5Dqw4VA=)
2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: 6P2hBxUHzqjP2+oG6i740uJYxBeonxP8fzF0Md+3yP8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl
rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:27:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259 (0x103)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3
Validity
Not Before: Jul 17 07:27:08 2026 GMT
Not After : Jul 24 07:27:08 2026 GMT
Subject: CN=6a59d94d-f14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:39:95:a2:20:e2:f7:e6:57:e7:06:ab:b7:8c:
24:4e:a8:e5:c2:74:a9:0a:0d:67:95:f0:5f:67:cd:
b3:e8:0f:ff:8e:aa:ab:09:00:f6:6a:b7:86:1d:fb:
f8:8a:60:5c:56:15:2d:ee:ef:c6:77:ca:a2:a1:d1:
fd:6d:b8:3c:c2:4e:d0:58:c9:93:38:73:e5:fc:e4:
74:16:11:6d:b1:94:6a:e8:1b:ce:8b:da:69:38:17:
6a:b0:c9:f6:3d:15:04:d4:3a:be:4d:3e:87:25:94:
e2:18:87:94:0a:86:f3:a5:8a:06:ca:bd:08:b5:1c:
c4:bd:b1:02:6a:a9:ad:c3:04:a0:ad:9d:f9:83:8a:
44:a1:54:19:bd:10:c4:d7:23:e9:db:63:3b:d2:07:
0a:91:69:63:fb:b8:1e:6f:ef:89:0a:fa:69:39:27:
2f:b3:52:0a:f1:de:bb:c3:15:41:d4:e8:00:14:17:
17:13:6b:05:44:8c:66:f0:5d:4d:44:3e:5f:49:da:
3f:07:17:02:0d:9a:9a:f6:d2:16:7c:fa:13:e1:3d:
44:e2:83:ad:8f:9c:22:92:d9:72:d8:f3:f8:08:67:
0f:98:11:b6:76:6a:f8:d5:47:f2:62:44:8c:b5:c7:
a7:86:63:4e:c5:5c:e0:73:3e:19:db:53:61:55:27:
cc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:71:5F:0A:97:2A:90:F4:DD:8B:AA:D2:3A:AD:E7:5D:39:3C:56:E3
X509v3 Authority Key Identifier:
keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a2:e0:12:e0:ae:0e:a8:10:47:1e:15:f5:db:76:12:f6:d9:8c:
99:36:e2:ab:3a:5f:20:25:29:b2:3b:60:57:f7:63:49:e8:42:
3d:12:11:1d:21:d1:94:86:20:43:67:97:52:91:d3:cc:06:6a:
98:58:0e:ca:48:29:0b:51:35:ad:50:b1:30:f6:74:8a:a1:5c:
b6:55:f1:10:af:19:8f:e9:45:11:a5:28:50:c3:2c:d1:b0:ae:
c8:46:65:3d:9d:ea:e4:4e:36:c7:ab:49:89:48:06:c3:ed:b6:
18:5e:fd:9b:f9:d3:b6:02:3a:91:db:31:f5:39:eb:ad:71:6c:
a9:1c:4b:12:77:5f:d4:73:ef:71:13:1b:56:0a:bb:ee:ad:c7:
c4:b0:f0:94:ef:c6:77:a2:84:2b:46:5e:6b:eb:aa:0e:c7:5d:
1c:95:97:be:4e:ea:6b:6b:e1:b1:6a:0a:59:89:e7:74:60:dc:
f7:f5:84:53:bb:62:ef:59:ee:bc:e8:61:e9:49:68:86:b9:c6:
8d:08:ea:58:e2:17:48:0d:73:59:7f:e0:57:4e:3a:2d:81:30:
f7:62:e9:5e:82:58:db:e3:e8:38:89:d1:55:fe:a3:19:a8:1b:
c3:b9:4c:dc:a4:9a:99:e7:d6:98:67:cc:9c:9f:88:8f:61:4d:
b5:94:e6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:40 2026 by rpki-client