
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
File: 433E2CR2A-hIwAZsRFuc2NpzUNY.mft (raw, json)
Hash identifier: QqNkJUKGs2ANNz0UETdmgseBtmDCAQ44ZlX7JTtJQoA=
Subject key identifier: 1E:CE:3D:C4:94:E5:0A:F6:28:02:7C:31:EF:B4:AE:67:87:69:36:22
Authority key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
Certificate issuer: /CN=A916C8F2/serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6
Certificate serial: C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
Manifest number: C0
Signing time: Fri 03 Jul 2026 07:46:41 +0000
Manifest this update: Fri 03 Jul 2026 07:46:41 +0000
Manifest next update: Fri 10 Jul 2026 07:46:41 +0000
Files and hashes: 1: 433E2CR2A-hIwAZsRFuc2NpzUNY.crl (hash: KZ3FqSrzfBq8MSkFZuxB4fDptvPAmCoPFsSsPFAjCRA=)
2: 730C503A56C611F096620043C4F9AE02.roa (hash: 0O+T5p2u9RjCzYCInOpadN0gyJxBbnecFtZNvwYOPBQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl
rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 07:46:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196 (0xc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6
Validity
Not Before: Jul 3 07:46:41 2026 GMT
Not After : Jul 10 07:46:41 2026 GMT
Subject: CN=6a4768e1-5998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:de:57:17:dc:9f:95:76:ad:f5:b5:d0:b4:29:
b5:50:ed:88:6a:1b:02:97:49:47:9a:3e:22:30:16:
37:56:98:ba:fa:d2:7a:2f:f5:26:cc:2b:6e:77:bc:
e5:e4:8a:bf:64:3a:5f:30:60:49:ef:57:17:38:27:
60:77:1e:70:f9:10:b3:6b:06:5c:e6:39:47:a9:f1:
df:9b:20:17:6d:1b:9f:05:08:ea:23:ed:da:aa:ee:
e8:d8:84:26:df:20:48:ce:20:70:b3:4f:80:c8:aa:
e4:7b:a4:d8:1b:87:12:32:33:a7:c9:5e:bc:bb:61:
1c:47:73:87:75:b8:d0:9a:a6:88:b4:41:26:ab:ba:
18:fd:fb:7b:66:e0:f8:99:8e:93:40:30:73:c8:e1:
b2:b0:21:7d:37:62:69:e2:c1:2e:29:60:56:15:0e:
bc:05:d8:3d:d4:b5:7c:9a:ac:ee:86:a2:90:56:a2:
83:fa:11:c3:18:d8:0b:44:09:77:e9:6d:5c:4e:ec:
80:5d:fa:32:0f:57:f7:a3:3a:ea:5a:f8:bf:a6:ad:
f5:26:28:29:87:1c:86:03:bb:d0:4a:54:7b:cb:d4:
e9:ca:c3:45:3f:93:16:71:15:3d:9d:dc:f7:b9:e0:
f2:c6:6b:4c:98:f1:cc:a3:c6:28:c4:45:ba:a7:56:
ec:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CE:3D:C4:94:E5:0A:F6:28:02:7C:31:EF:B4:AE:67:87:69:36:22
X509v3 Authority Key Identifier:
keyid:E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3c:74:a5:c3:b6:54:82:ad:f8:87:47:5f:1d:54:c5:1f:b5:c7:
ce:3f:b1:34:70:b6:98:b2:56:c8:af:18:e9:c0:2c:38:61:07:
7c:da:18:38:ca:28:dc:dc:c1:8a:b4:47:39:a5:c0:08:67:1d:
d3:19:3a:99:79:2b:67:c6:d7:42:ef:d0:1c:fe:83:2f:40:5d:
f4:bc:dc:ab:e7:e0:4d:8f:14:e0:a6:04:77:c8:79:01:c8:4a:
40:f4:82:7c:ff:f9:2e:25:e1:6d:f9:a0:d6:67:e7:f3:0c:93:
60:67:cb:95:a8:e7:ef:9b:78:ef:cd:e8:55:7e:9c:d7:1f:bf:
28:15:70:b0:d0:42:db:d6:ef:46:d9:58:72:fa:cb:77:12:d9:
39:d9:36:66:44:9b:52:fc:49:01:dd:d9:e4:ad:29:70:07:77:
73:79:bc:f1:6e:c4:74:ec:77:8d:4e:92:16:1f:8e:00:f9:21:
1a:9a:66:93:48:98:f1:ae:ea:46:41:1c:4a:7c:5c:2d:4a:f9:
6d:a6:de:38:75:a3:6e:00:5b:af:c8:f7:e5:0f:b2:86:c0:b2:
f4:df:03:6c:f5:e7:bf:3f:ab:32:8c:02:cd:ad:7e:16:d8:57:
2a:75:f1:8d:cd:0d:e9:10:24:89:ad:e6:27:f8:77:b1:41:5e:
8d:bd:6a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:52:41 2026 by rpki-client