
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json)
Hash identifier: lphBna+Wx40UQ7A1OEvUMGKQpD9oWUNUsfOXTHFa7AY=
Subject key identifier: 5D:0D:77:2C:37:D2:65:F2:0E:A2:47:C2:8A:20:44:79:EE:49:81:60
Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90
Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990
Certificate serial: FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
Manifest number: F5
Signing time: Sun 05 Jul 2026 07:01:11 +0000
Manifest this update: Sun 05 Jul 2026 07:01:11 +0000
Manifest next update: Sun 12 Jul 2026 07:01:11 +0000
Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: 3VyX1tomSCIXXxG1N2OXCctcdTWwwLE/Ewl9poeIvj8=)
2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: 50HTgUj8BYD/Up0LzcZVR1qzl5yUcfq0/gOWZsXxQLA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl
rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 05:54:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990
Validity
Not Before: Jul 5 07:01:11 2026 GMT
Not After : Jul 12 07:01:11 2026 GMT
Subject: CN=6a4a0137-b498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0e:54:fa:c8:c7:f4:a2:5f:bb:d6:d9:4b:c8:
18:fa:4d:a3:da:f0:72:ea:93:a2:62:97:f9:c3:1a:
28:34:d9:46:cd:94:af:fe:82:a7:39:7b:aa:99:b2:
a1:50:3c:92:cd:d6:1a:99:10:52:18:6a:b6:e2:01:
07:37:a1:08:79:ff:c6:0b:d8:2d:6f:92:7b:54:5a:
bb:3a:69:9c:1c:8b:0c:13:84:ae:66:88:74:53:07:
76:27:18:83:85:ab:19:44:d1:ab:a5:57:17:0f:35:
e1:8e:ea:0d:73:13:b3:f1:e0:83:23:9e:ad:01:c7:
01:59:5c:6f:39:ac:f2:03:d3:63:23:c2:44:2c:c0:
6c:94:98:19:13:0f:d2:1e:cb:16:cd:f1:69:a3:cd:
a5:78:e5:7b:9d:8a:2e:20:e2:bb:e1:77:b5:38:1e:
28:a8:27:e4:33:22:1b:9d:9c:7b:b3:a7:07:58:e8:
2d:c6:01:4f:3f:e7:a8:af:5f:47:64:3a:87:c1:64:
9d:b5:ca:5e:ff:b8:20:8b:0c:79:64:47:70:2f:c1:
c0:44:16:84:5a:ec:7c:ec:46:7f:54:91:c6:f2:e7:
a7:9c:c2:ad:a6:bc:94:a8:81:df:97:ce:06:f8:05:
c9:08:a6:fd:69:75:42:34:e5:2d:81:22:19:cd:13:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0D:77:2C:37:D2:65:F2:0E:A2:47:C2:8A:20:44:79:EE:49:81:60
X509v3 Authority Key Identifier:
keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:0c:5b:1c:17:c3:f9:22:9b:4c:fc:79:d0:66:0a:43:05:1e:
3c:fa:51:4d:8a:18:15:7e:7e:af:e9:2c:b0:b1:a2:e7:e8:c9:
46:84:02:47:81:c5:b5:bd:ac:67:b1:cb:10:b7:ec:1c:ea:46:
b4:d7:7d:f5:92:ec:d7:90:0b:bb:ff:4f:9b:b7:12:e8:ff:ae:
f1:e8:d6:12:9b:88:c1:2e:43:cb:fc:1b:52:94:d2:47:fe:ff:
65:62:2f:2a:77:a2:ea:44:82:ab:03:28:37:57:b1:c9:b7:38:
ac:47:99:8b:92:05:75:4b:b1:36:8b:7c:7c:b4:d2:0b:e7:e1:
2d:d9:51:0e:ff:47:f6:d4:b9:a0:e6:f8:b0:2b:67:16:37:a6:
22:5e:d7:22:24:90:bc:4e:e7:11:3e:e1:8f:31:af:64:1a:13:
9d:60:07:b2:96:72:5f:2f:04:47:21:79:7f:3c:38:78:c5:49:
8c:9c:85:59:92:92:27:0e:ba:4f:a3:be:32:f3:8a:a4:1d:b5:
88:33:8d:ee:cd:d2:06:24:86:cd:b8:c4:8a:d8:0d:44:6e:5b:
34:f0:38:a9:72:f8:83:5c:dc:c0:90:b5:b7:4a:1e:b2:18:a1:
03:a1:7d:70:38:7b:e6:0e:72:5d:c1:2d:a2:3e:59:fe:22:ab:
61:9f:ec:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:45:14 2026 by rpki-client