
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
File: hctAGQp33J5olNhX9zu3qQ4JdOQ.mft (raw, json)
Hash identifier: MkYsnICRFKeEGjcoP3aBThvyaZA2x/bty6Nvaj/zvYU=
Subject key identifier: 33:2D:66:67:AD:1D:19:A2:C8:1A:85:92:B3:97:E5:A5:4F:B1:F8:A3
Authority key identifier: 85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4
Certificate issuer: /CN=A9169BB4/serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4
Certificate serial: 0648
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
Manifest number: 0638
Signing time: Wed 08 Jul 2026 23:45:22 +0000
Manifest this update: Wed 08 Jul 2026 23:45:21 +0000
Manifest next update: Wed 15 Jul 2026 23:45:21 +0000
Files and hashes: 1: hctAGQp33J5olNhX9zu3qQ4JdOQ.crl (hash: DpXSJWWfEsOWGShKYQq85VY6Y59IHQb0z8qPzIkwVFA=)
2: 7FCFB4745E8411EE89DF693EC4F9AE02.roa (hash: eopWrcCTKAsMxcnNdOCRso+7nTOlyhMbbG0+6DVN/mA=)
3: FD9A4AA0E53111EBAB62446EC4F9AE02.roa (hash: aXUNgdPZaRVWUWRyzVl3gVNo/2yllW0aODydzNYrLyQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl
rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 23:45:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1608 (0x648)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9169BB4, serialNumber=85CB40190A77DC9E6894D857F73BB7A90E0974E4
Validity
Not Before: Jul 8 23:45:21 2026 GMT
Not After : Jul 15 23:45:21 2026 GMT
Subject: CN=6a4ee111-af33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:a2:c1:61:37:06:82:a8:cc:4e:75:b9:c2:
1d:04:01:07:20:aa:42:06:d3:c1:62:05:b4:d8:09:
9b:b0:cd:55:6e:c0:bc:7f:03:92:4e:26:ff:0d:70:
53:52:98:f5:08:63:f8:fd:39:d1:76:42:74:0e:31:
aa:36:01:71:2e:99:56:fa:8c:d5:a8:9b:a8:16:db:
b8:93:9c:a7:99:a1:2a:42:b2:06:d8:da:ef:9b:62:
48:dd:75:55:20:f8:e7:98:31:51:f9:ee:c3:fe:6b:
56:12:66:80:d6:80:4f:30:66:e0:7b:9c:32:bc:e1:
f7:c4:d4:24:d8:13:a6:ad:65:54:ea:90:e2:07:b3:
f3:48:a0:f1:0c:47:04:68:dc:b5:62:e2:07:b4:b5:
9a:86:6c:f6:21:89:b6:dc:5e:e6:a6:23:ba:9b:87:
37:a0:10:7e:91:70:d6:18:cd:72:64:1b:f6:a0:da:
f5:59:e8:cf:36:0c:c8:97:4f:8a:bc:8e:71:8c:12:
8b:44:86:e2:b6:a1:a9:28:b1:b3:7e:b7:e6:0a:e5:
8d:58:dd:c3:42:87:2f:cd:40:f3:b1:de:cd:70:90:
f2:9d:78:b4:0a:60:08:bd:b5:98:a5:2d:4a:8e:a0:
15:0b:dc:4a:b3:d0:9d:3e:55:d8:b8:13:72:1e:2e:
72:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2D:66:67:AD:1D:19:A2:C8:1A:85:92:B3:97:E5:A5:4F:B1:F8:A3
X509v3 Authority Key Identifier:
keyid:85:CB:40:19:0A:77:DC:9E:68:94:D8:57:F7:3B:B7:A9:0E:09:74:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hctAGQp33J5olNhX9zu3qQ4JdOQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BB4/B3E7309CE52E11EB9EB1FD69C4F9AE02/hctAGQp33J5olNhX9zu3qQ4JdOQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c1:ad:dd:a7:fc:76:43:46:e5:8a:0c:a9:ff:26:68:f4:5d:99:
43:32:32:1d:29:75:cb:c1:d1:4e:b0:5c:00:32:b0:69:31:f0:
c2:14:61:83:a2:51:85:3e:f7:2f:8d:7a:b8:09:43:f1:92:a2:
bd:d7:61:58:e8:63:6d:9c:1a:c3:c5:9e:73:ab:26:95:0f:92:
87:e9:20:65:7a:04:99:be:c9:4b:68:16:c9:98:8d:ed:fc:8f:
b4:e0:58:07:81:ef:16:ec:65:c2:ca:87:94:8b:a1:04:71:aa:
40:ed:22:a4:9b:8f:6f:8f:5a:68:26:1b:53:a8:be:4d:c9:33:
1a:5e:1d:1b:91:aa:ee:bc:aa:27:8d:5d:9d:b3:41:19:97:50:
47:ab:6e:a1:e8:10:2c:c4:76:70:89:4c:96:51:52:62:4f:e4:
86:5c:51:fb:9b:90:36:7c:ec:85:d5:be:c2:16:e3:b4:65:34:
ce:3c:02:02:3b:a0:ce:f5:d0:26:26:c2:73:c3:18:d1:66:2a:
9b:df:68:90:c5:c6:c5:dc:77:b0:92:74:8b:81:c4:12:2d:6c:
3f:73:ec:b9:b9:fa:e2:8b:11:f0:14:5d:b8:3a:f2:fe:64:79:
7d:37:98:c4:aa:c4:23:0f:ce:22:2e:2f:4a:e3:30:e4:27:c4:
b0:81:80:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 14:47:51 2026 by rpki-client