
$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json)
Hash identifier: yxMhV+qJCzUJWV48HEGCWMoo0Q9ewjaLNVHulC3RxyM=
Subject key identifier: B6:22:D3:D5:70:D3:DC:59:E1:A9:CB:DF:99:A6:7B:DA:64:C5:A3:51
Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89
Certificate serial: 0418
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
Manifest number: 040C
Signing time: Fri 17 Jul 2026 00:59:48 +0000
Manifest this update: Fri 17 Jul 2026 00:59:47 +0000
Manifest next update: Fri 24 Jul 2026 00:59:47 +0000
Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: /TjzZhZw10A76gJsMNwzKLW9yda8DNxkyxaX8PHo5QI=)
2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: Q8R/e0WkRoUvhV/duXOH10RMzYjCZjcCedO7vhrkXRQ=)
3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: lA+CaygcBrj0YtEqp60seW0ZCX6+tWFwXRqNraQ10Ek=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl
rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:59:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1048 (0x418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89
Validity
Not Before: Jul 17 00:59:47 2026 GMT
Not After : Jul 24 00:59:47 2026 GMT
Subject: CN=6a597e84-e45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:ac:11:89:ab:c0:d3:2a:ee:25:97:d5:c5:
a6:60:f8:04:79:a0:3f:b5:4b:47:7a:fa:31:57:ce:
19:93:84:02:5a:ed:23:18:79:77:dc:93:2c:73:82:
2f:76:a8:8d:2f:1e:aa:bc:bb:25:e2:a6:b7:ca:e6:
7b:62:0b:2b:8d:cd:db:f8:25:8d:4f:18:af:94:c4:
8a:12:94:69:3a:de:bc:7f:83:06:76:1b:b4:c9:80:
d8:02:55:4f:11:f7:a0:a7:84:d0:3e:6d:26:14:14:
7d:89:c4:49:b4:e1:50:1b:14:c3:ad:37:42:4d:e3:
ee:d3:1e:74:7d:64:32:a0:5f:9e:0c:55:cc:4c:57:
5b:2d:ae:3b:a3:ce:67:6f:ee:46:aa:0a:99:15:5a:
93:fe:80:a5:6d:b1:bc:2c:d2:02:e4:c8:9a:28:35:
2f:62:f7:b6:83:0c:68:fe:cb:2e:71:9a:7a:f0:ef:
a4:2c:fe:62:3a:3f:eb:87:53:9d:f7:b5:2a:9e:70:
6d:7c:0f:1d:e8:d2:95:bd:3d:b0:76:e2:cc:6b:a8:
88:2c:99:d6:79:81:71:12:d6:31:6d:a5:ec:1b:2c:
99:c9:90:cd:c2:a8:41:43:99:06:d2:f0:b5:2e:8f:
b8:b1:ec:d8:b7:a9:c4:80:10:69:0a:08:bf:f9:46:
1f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:22:D3:D5:70:D3:DC:59:E1:A9:CB:DF:99:A6:7B:DA:64:C5:A3:51
X509v3 Authority Key Identifier:
keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:15:91:94:59:7a:b9:0b:89:34:e9:2e:26:dd:1d:dd:52:a4:
7b:f8:b6:5e:78:7f:bf:fc:05:68:94:1a:9a:44:ed:92:63:57:
67:61:17:f3:13:65:4e:29:35:61:11:b3:f8:19:e6:c2:c8:8a:
59:5a:14:3f:51:45:e2:aa:28:be:f2:1a:7e:0a:85:57:3d:21:
6b:c0:ed:13:03:fb:09:b7:79:a7:99:2b:ab:fb:05:dc:0a:48:
62:54:4b:ce:00:a2:ae:66:c1:e0:4b:2a:04:d8:1f:50:d5:4b:
28:57:b9:ce:4c:73:98:25:5e:2c:74:4f:63:e8:35:cd:46:7c:
ec:e8:6a:35:22:5b:dd:58:0f:22:af:65:0a:60:80:65:49:25:
66:14:6e:60:d2:38:d0:ce:d0:e1:70:3d:28:8a:27:94:c8:d4:
c2:c2:80:54:da:e0:7a:67:a2:7b:0c:81:aa:7d:07:d0:5d:1a:
09:fa:fb:62:9f:bf:e0:8c:23:13:6d:c0:3c:4f:82:bb:8b:71:
86:ed:06:5e:45:1b:1d:e6:e7:f6:70:2c:49:de:f1:ed:b7:a6:
e6:a1:3b:ae:12:af:d2:bc:fd:31:9b:05:ed:59:fc:61:87:b8:
b6:40:06:1d:c8:6e:b9:a8:5a:52:75:7d:7b:bf:57:d5:11:d1:
9e:4e:6c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:28:12 2026 by rpki-client