
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json)
Hash identifier: MxVhbc8hbogJuqBlVyxKKvlAaYKgWUZumj/2t21m5IY=
Subject key identifier: 8C:86:B2:68:2A:43:C5:7E:3C:2F:16:31:08:7D:62:25:62:C1:BD:1F
Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E
Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E
Certificate serial: 0BC1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
Manifest number: 0BA0
Signing time: Thu 16 Jul 2026 19:20:56 +0000
Manifest this update: Thu 16 Jul 2026 19:20:56 +0000
Manifest next update: Thu 23 Jul 2026 19:20:56 +0000
Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: 1+HFdj1sULP+GCj2FHVULtFO98ZESOAecifeMRvA1zk=)
2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: wATgHFFEBhvghT6gMqTJTC0PonsBt+Ml1sqdhxwQAPg=)
3: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: OLS2n2bCipeK2cJAKKmNcGHacmpb1F1CGfou3xcKoRw=)
4: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: Qrs9ea1Ryt4mplsCkDhjHp70Ezhx/br174uLvjICktg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl
rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 19:20:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3009 (0xbc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E
Validity
Not Before: Jul 16 19:20:56 2026 GMT
Not After : Jul 23 19:20:56 2026 GMT
Subject: CN=6a592f18-f28a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:20:b9:3b:1a:a2:8d:f4:d9:81:c6:5a:91:b0:
9e:8f:f0:c2:39:0a:15:15:c4:10:d6:c8:eb:7b:12:
07:aa:27:15:d9:5f:bc:ee:0b:c3:b7:92:3f:39:d7:
6b:2a:9b:6d:15:06:14:5a:9e:c5:3e:10:2e:38:4f:
c2:d9:d8:9a:c5:ce:38:80:72:23:1b:5a:fa:f1:a5:
36:42:e9:2d:b7:fa:70:3e:3c:50:db:ea:23:46:87:
08:5d:dd:52:dc:f4:89:50:8d:97:a6:69:99:42:f0:
04:36:20:c0:d9:5f:ae:14:96:9a:bf:38:a3:01:2c:
8f:c9:e4:9e:0b:5e:c2:00:68:6b:0d:00:5c:82:a0:
95:50:95:e5:b1:9e:a8:89:9f:3b:e4:ca:8d:40:29:
7f:55:c4:d2:c7:0d:bb:ec:2a:c2:fe:4f:6d:c6:86:
b6:1f:c1:bc:06:5b:c4:d5:08:8c:c2:46:ff:48:5e:
26:a1:25:4a:7a:04:37:e8:27:9e:d3:d5:bc:6d:6e:
73:42:42:32:f5:3e:b3:61:ba:1d:5e:6b:aa:93:ff:
aa:58:00:ea:6d:71:dc:4d:cb:38:a1:6d:c2:7a:e6:
35:bd:d9:a7:94:ed:45:57:6c:bd:0a:f4:41:90:96:
78:7a:b3:89:27:a0:40:88:4d:ff:20:51:ec:ce:a0:
65:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:86:B2:68:2A:43:C5:7E:3C:2F:16:31:08:7D:62:25:62:C1:BD:1F
X509v3 Authority Key Identifier:
keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
83:d7:ed:5e:3d:a3:bd:60:c7:d6:0d:98:3b:65:33:b8:ac:1a:
da:42:7e:24:41:0d:93:4b:62:da:55:42:14:8b:8c:a1:1f:7e:
a3:2f:94:17:1c:27:80:19:4f:93:cc:63:49:62:e4:a9:1a:18:
10:4e:f6:6f:fa:9b:c2:d0:19:43:98:74:89:e8:20:e2:59:89:
a8:c8:a1:a3:e9:93:5c:ab:56:f3:9b:6d:4a:83:17:ad:16:38:
30:62:95:cd:1d:4f:1d:77:16:e7:1b:0c:da:ae:6b:86:29:cf:
21:b6:8d:c9:4b:d6:3a:0c:06:ae:b0:5f:d1:af:26:ea:ef:7e:
77:60:02:c3:9c:c3:4d:bc:0b:47:dc:42:3d:c5:d0:12:c2:9c:
e3:cf:21:d4:57:1b:4f:5a:ad:10:ec:c9:b7:98:4f:94:c4:31:
56:2e:d9:47:41:41:fb:63:bb:bf:ec:a4:98:8e:2a:db:d8:37:
10:90:d9:7c:10:5d:02:0c:bd:31:14:74:c1:a0:fb:08:48:0e:
30:78:2a:31:e4:a4:67:63:59:4f:ca:b5:e2:0a:11:00:1d:11:
31:21:ef:fe:36:e8:c0:bd:be:49:ca:b9:4d:5d:d3:c3:8f:6e:
9a:8d:d2:0e:32:e0:5c:89:ef:d6:bb:a0:6f:dc:9c:1b:3b:0c:
68:d1:58:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:55:42 2026 by rpki-client