
$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json)
Hash identifier: zLHHiuz+xrSR/3qydWuSn/KRH027inZ34j3werOGooQ=
Subject key identifier: FA:52:1B:9E:8B:87:32:75:3A:C2:B0:0E:A2:8A:1C:09:50:D7:11:FC
Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37
Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337
Certificate serial: 017B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
Manifest number: 0174
Signing time: Fri 17 Jul 2026 00:50:32 +0000
Manifest this update: Fri 17 Jul 2026 00:50:31 +0000
Manifest next update: Fri 24 Jul 2026 00:50:31 +0000
Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: hjCwa5QfakQllZUoP8dYmrkjdg7zegqQ3ASJyS5Ipxs=)
2: A6D577E2754D11F18B0D078183A30FBC.roa (hash: 55tJBQHzkVQe/2MtjgyE37tRr0q4GYCshDeazyFaUhU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl
rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379 (0x17b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337
Validity
Not Before: Jul 17 00:50:31 2026 GMT
Not After : Jul 24 00:50:31 2026 GMT
Subject: CN=6a597c58-6219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b3:d4:67:3d:93:2a:52:64:05:98:b7:9b:5a:
c6:cb:35:66:39:9e:29:c2:c0:73:fc:2e:2b:5b:dd:
37:72:d5:99:7d:ef:5a:c4:ec:b0:9a:0f:d3:b4:15:
b7:a7:c7:b2:4a:65:d9:07:aa:5e:06:b2:5b:d1:41:
77:66:53:88:9d:a3:49:38:c3:54:ab:ff:b3:21:1a:
fc:a2:12:a7:60:4f:f4:5b:3e:ce:d7:53:bf:47:2b:
0f:be:dc:d1:2b:b3:81:64:48:ec:c5:03:9e:4f:38:
27:32:26:fa:f0:78:6c:30:8e:7d:36:e7:81:b8:d7:
3d:21:9e:67:01:07:72:cc:9b:d6:af:e1:ed:29:6b:
8e:3b:d8:e3:cb:36:ce:f3:73:8f:3c:00:3b:f7:5d:
e7:6c:90:2d:86:d0:d8:44:ca:e5:71:da:1b:1a:42:
bb:92:23:25:36:05:c3:7a:ad:1c:5e:50:10:48:a4:
e1:80:a9:ee:e4:cd:92:3e:99:fa:3b:96:29:a2:73:
a5:26:f7:42:ee:12:91:58:ad:57:c5:77:c4:25:bf:
64:bf:6c:7b:04:7e:80:73:9f:92:cb:ab:62:29:81:
0b:9b:2a:9b:4a:54:02:1f:67:15:1c:f5:fd:23:1f:
70:0f:ca:91:50:25:42:f3:a0:10:c0:34:d7:cb:55:
36:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:52:1B:9E:8B:87:32:75:3A:C2:B0:0E:A2:8A:1C:09:50:D7:11:FC
X509v3 Authority Key Identifier:
keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
20:df:83:37:73:b1:db:24:c2:4b:2e:9a:9e:5d:2e:bb:75:dc:
bf:2f:ee:88:f6:be:41:80:84:25:ac:e6:3f:1a:5c:49:4d:bd:
8d:ad:ca:99:32:98:33:23:de:13:47:e1:02:b4:4c:cb:d9:8e:
bc:d1:8a:93:fe:bd:ba:1e:04:29:ff:aa:74:db:de:68:0a:3f:
96:6b:8b:6d:9a:e9:d8:6a:61:c0:ce:3e:a2:b5:4b:47:d4:b9:
4c:a3:76:f8:5c:08:bf:84:50:f3:61:36:98:8b:1d:18:1d:d8:
c5:5a:67:5a:e3:69:5e:c2:1c:ba:29:5e:1c:82:68:31:58:c1:
16:6f:66:92:80:30:50:37:dc:75:b0:9d:57:c3:74:dc:81:a3:
60:78:df:97:f1:38:68:90:da:35:3b:81:87:b6:8a:7b:74:bb:
15:27:3b:ee:4c:14:5a:14:91:96:c5:ad:62:ab:6a:6a:04:f8:
f4:d7:86:b0:05:e3:d3:09:0f:0e:2b:99:8b:8a:7f:87:b6:d4:
16:6a:ea:38:70:cf:26:eb:ea:5d:0a:14:e1:66:4e:8c:1d:7a:
b4:da:6b:2a:2e:99:2f:8b:e2:1d:95:d7:e6:1c:fc:ff:0b:8f:
52:63:2d:23:8c:90:a1:61:b1:44:39:1f:09:ea:0f:f6:5e:97:
a7:90:79:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:12 2026 by rpki-client