
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json)
Hash identifier: 6Elawjn464Hppm8h9NzbLEc+nIxg8lT3V6wCVJKTdSk=
Subject key identifier: E9:18:77:81:E1:F7:E8:9A:7D:64:2E:B2:66:F2:4B:52:C2:A7:64:54
Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35
Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35
Certificate serial: 3572
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
Manifest number: 3565
Signing time: Thu 16 Jul 2026 14:40:21 +0000
Manifest this update: Thu 16 Jul 2026 14:40:21 +0000
Manifest next update: Thu 23 Jul 2026 14:40:21 +0000
Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: NahA5juUB+Llcr5k3BjYX10IRypRNAKwBylToSYNeN8=)
2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: lk8+oDVmkh0IMVihDlSAF01esZtzK+ueFBrIlPTYmfg=)
3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: +9NKbw4Yf5cbYoj9nHJEgGLqyGEjkbYD3jkxgLpPwwo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl
rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 14:40:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13682 (0x3572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35
Validity
Not Before: Jul 16 14:40:21 2026 GMT
Not After : Jul 23 14:40:21 2026 GMT
Subject: CN=6a58ed55-f263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:df:48:e5:72:45:82:f8:1f:d7:1c:a6:93:63:
f2:6c:b8:2a:95:46:57:d6:a5:3f:ed:80:6f:d6:d7:
e6:97:d6:46:2d:4c:89:fa:e9:d6:64:f1:20:81:f0:
ee:9a:b5:53:06:67:2d:a2:69:ff:81:02:21:10:d3:
5b:6c:71:7a:4f:21:e5:58:93:19:62:ca:f3:1f:df:
72:12:7f:9b:c4:10:b3:b1:a8:e9:1d:c4:c1:70:86:
d2:5f:2d:bf:59:ad:96:d8:e0:6f:11:a3:48:ba:e5:
c1:bb:8d:a5:04:ed:af:39:b5:4d:48:05:e5:f3:35:
4a:f1:6b:bc:47:0f:5f:46:5a:15:b1:1d:86:bf:38:
66:b1:e3:7e:9e:2f:77:ba:e6:2a:75:62:72:d7:97:
d5:46:75:8f:ff:13:ea:f4:d0:fb:f5:31:c5:ed:a9:
e5:be:4a:06:60:20:3b:11:41:67:d7:43:da:97:c6:
29:7d:3e:c0:52:29:9f:c6:46:7a:6c:a3:d3:8c:21:
2a:a8:7b:21:68:a6:a5:46:36:72:45:92:e3:19:30:
12:ab:a7:c0:14:57:14:5e:e4:b8:d6:20:34:ee:25:
1d:92:e2:d4:33:47:57:0f:00:09:55:28:f5:b9:7d:
9c:45:49:90:95:b5:92:83:a1:4c:1c:a9:7e:0a:90:
63:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:18:77:81:E1:F7:E8:9A:7D:64:2E:B2:66:F2:4B:52:C2:A7:64:54
X509v3 Authority Key Identifier:
keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5d:b8:a0:2d:d9:bf:1e:7b:79:cf:7e:3d:43:23:16:07:f5:96:
21:a8:07:c8:5a:d9:50:69:0b:67:5a:fd:ad:18:8b:5d:69:78:
ad:df:de:6a:03:a9:5d:a0:8a:dd:67:4e:95:a5:9c:f3:72:f3:
99:77:e3:80:14:bb:38:c7:b0:4c:7f:8f:22:6e:1e:1a:fb:d5:
3d:8b:6c:2c:40:00:f0:77:89:b7:df:b7:d8:a8:13:61:44:dd:
6e:99:4a:b7:69:f7:53:11:69:48:56:eb:ac:82:66:46:2f:02:
a4:d3:92:fb:f8:64:6e:8d:c0:9a:6e:f5:17:5b:f0:a9:0a:69:
26:f7:3f:d9:8e:b6:cc:00:7d:a8:fb:39:2f:02:60:9c:c5:f2:
ec:56:33:00:fc:14:81:30:27:e3:40:17:00:34:99:5e:05:97:
81:e9:62:87:6d:0c:4f:c7:45:71:c1:6a:0e:d9:45:40:94:a8:
89:d3:0b:bf:09:9e:ec:dc:3e:a4:99:6e:31:a3:14:30:3c:af:
81:d4:37:84:b2:5c:a1:8f:14:d6:51:72:45:d5:3f:48:80:2b:
ba:26:0c:39:75:28:1a:5b:46:e5:5d:25:38:9b:14:9f:42:52:
70:28:58:8e:92:1d:0b:e2:10:6a:98:bb:ee:8e:e0:3a:3d:f2:
f6:54:e4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:03 2026 by rpki-client