
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json)
Hash identifier: iqEkW04DVors1xgasfKBU8lJoU4iwWryGHOVmKq6rfM=
Subject key identifier: 02:3C:EF:8D:A0:E4:C9:DB:84:76:FE:BA:E8:C2:7F:65:C9:F0:CE:A3
Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89
Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389
Certificate serial: 0278
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
Manifest number: 0271
Signing time: Sun 05 Jul 2026 02:35:52 +0000
Manifest this update: Sun 05 Jul 2026 02:35:51 +0000
Manifest next update: Sun 12 Jul 2026 02:35:51 +0000
Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: 2ZALBL0Pm2rVt56Z/xjdyOr/s3ezzWbioyt+m3ZP3qw=)
2: 63789A466F6311F1806CB0D05CA30FBC.roa (hash: T0VRJUqSDGXNXNzgzt6t13n6DnE9IjtHXKIHKZXv3Ns=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl
rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 02:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 632 (0x278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389
Validity
Not Before: Jul 5 02:35:51 2026 GMT
Not After : Jul 12 02:35:51 2026 GMT
Subject: CN=6a49c308-64ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:27:31:7d:6f:23:3f:04:8e:61:61:54:72:
ba:78:b8:00:91:86:43:29:f5:d7:16:48:a3:da:25:
20:a6:a5:c3:a0:dd:de:eb:9d:d7:3d:49:de:0e:79:
93:48:ad:eb:73:29:56:91:3f:73:33:6e:b3:0f:41:
4f:ce:8f:d6:fa:4c:fa:56:a9:6f:24:1e:16:e1:ce:
0f:72:e2:ee:70:29:d0:30:4c:3e:9f:83:e6:9b:05:
44:2f:cc:59:4c:28:19:98:57:7b:f4:a7:3a:f3:12:
47:74:4a:e3:cd:30:ea:d2:d3:b0:d2:1b:12:db:11:
84:d5:20:d6:1c:83:e0:f2:46:93:af:1b:ac:b7:a0:
d0:b6:af:48:e7:af:24:33:ed:60:8b:2f:ad:3e:0c:
45:51:28:eb:b7:2c:b8:97:a1:94:7a:99:da:1f:d7:
6a:b8:23:09:64:4a:21:da:59:8f:0b:8c:df:3c:d4:
93:91:ae:6c:1e:3b:2e:3e:0e:44:2d:d6:1b:3e:42:
24:6c:06:b9:80:4d:34:59:02:30:4d:a8:10:38:20:
0a:9b:30:aa:fa:9c:c8:05:23:e3:7c:eb:de:63:37:
10:7f:fe:5f:5f:4b:f3:16:13:70:98:6d:cd:ea:76:
ca:ba:d4:71:1c:e6:9b:46:b4:1a:80:de:5f:26:72:
6e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3C:EF:8D:A0:E4:C9:DB:84:76:FE:BA:E8:C2:7F:65:C9:F0:CE:A3
X509v3 Authority Key Identifier:
keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a6:1e:46:2c:a3:9d:af:e1:e6:f7:e7:d0:c0:7f:66:f2:29:0e:
73:e6:db:b7:36:f9:ae:cb:76:75:09:8a:9b:c8:b0:15:c0:32:
c7:24:ce:31:33:19:80:1d:b4:65:f5:da:64:03:9e:0a:18:f8:
d9:a5:9e:ca:23:7e:e4:ba:6a:7d:cc:ed:25:08:00:d3:a4:61:
f7:27:f6:4a:e0:ae:23:1a:5a:e4:d8:f6:ab:62:4a:91:a9:91:
75:a1:29:14:6a:b7:35:9c:b2:f8:65:c4:58:da:59:c9:2b:0e:
8a:ec:66:32:5b:b8:a8:7c:9a:68:da:db:62:c5:d2:85:4d:c1:
8c:d3:3a:92:ac:59:be:d9:c4:4c:5e:38:5a:4c:c0:97:8a:a9:
e4:6e:b3:b1:9b:27:69:86:18:a1:96:62:cd:c1:aa:e1:10:ca:
f3:31:ee:14:9a:d6:58:95:07:2d:eb:3b:08:3a:fe:99:39:c7:
ff:d0:3c:fc:19:15:18:8b:3e:d3:44:43:7c:e3:c5:40:03:a9:
11:19:57:b0:ac:48:d6:15:5a:e3:f1:e8:ff:58:cd:d3:6b:6e:
cd:e2:af:43:d3:9b:36:b9:aa:a2:79:37:ca:88:5b:7f:34:8e:
10:a1:e9:d8:4c:b0:37:4b:ae:d5:16:69:02:83:5c:d3:52:fb:
42:f1:8a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:29 2026 by rpki-client