
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json)
Hash identifier: 4GQg3qoOuCWuAuHZBSkXf0xAXPUzI2XABHv+Kq3YppA=
Subject key identifier: 27:11:8E:39:A3:35:40:33:9B:D7:26:15:8B:15:9F:42:FA:9A:CB:DF
Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA
Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA
Certificate serial: 0295
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
Manifest number: 0268
Signing time: Fri 17 Jul 2026 02:59:57 +0000
Manifest this update: Fri 17 Jul 2026 02:59:56 +0000
Manifest next update: Fri 24 Jul 2026 02:59:56 +0000
Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: orKvGYPz9Fw+cQ9I0oli4ysoicpFwDkvpmXIrQ5ws3U=)
2: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: LUHYZ/6kqurL/jOA9WsqOIbXqqpGM7KM4Mk7l+DENE0=)
3: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: GKQTSqIzwIY4GOth+FkYLT5SOAlB26R/4wVLOg8mq+Q=)
4: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RremoPLYHwOMsWIoI3OXSWs8zLNwfSA8SoWwpFXqkZA=)
5: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: sE0FXcv6AB6dmDFKiWcu8KQiOOpk2VVY0iuOGiUmgoI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl
rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:59:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661 (0x295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA
Validity
Not Before: Jul 17 02:59:56 2026 GMT
Not After : Jul 24 02:59:56 2026 GMT
Subject: CN=6a599aac-b4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:aa:11:34:f2:51:2f:28:3c:eb:aa:c6:c2:bc:
05:44:f5:0c:0e:25:75:3d:60:e7:47:eb:5b:75:08:
70:03:c4:13:c6:eb:f3:70:f2:d7:5c:1a:42:b0:0d:
5c:cc:5b:fc:99:a2:c8:2f:d8:87:b7:a0:ab:76:98:
6c:bb:83:1e:9c:04:b3:5c:fd:e9:6b:90:06:ef:1c:
77:83:aa:46:d3:34:b8:1f:b2:de:4f:f0:14:28:b8:
cb:1c:3a:18:12:2a:84:7c:6a:af:29:e2:51:1c:a8:
3e:90:2d:d1:5d:b8:5d:c9:46:5d:d6:ab:6b:5c:f5:
a4:7b:4b:9a:8c:8f:b7:3b:fb:c8:82:e8:e4:ab:0d:
8a:df:9f:6f:77:54:73:01:cb:fb:f0:d1:5c:0a:1d:
00:96:64:4b:54:d7:95:70:70:38:58:c7:38:fc:89:
9d:23:5e:e6:4a:a2:3b:59:92:4a:38:98:e3:d9:5c:
4f:63:6e:df:28:5d:99:41:c7:02:2a:bc:f8:9f:c9:
61:01:0a:64:65:70:cc:8a:f1:65:b0:f5:b8:9c:ef:
47:d4:a3:30:85:6d:19:a7:70:4f:9f:98:53:93:fe:
64:32:a3:c0:39:91:2b:94:dc:c3:05:2a:45:f6:9b:
1b:a9:81:a0:e1:ec:ab:5e:03:a2:ca:bc:fa:c5:cf:
55:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:11:8E:39:A3:35:40:33:9B:D7:26:15:8B:15:9F:42:FA:9A:CB:DF
X509v3 Authority Key Identifier:
keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
30:6a:96:df:5e:8d:37:58:e0:27:20:db:05:c0:cb:13:33:cc:
ef:26:18:22:58:e8:92:38:2d:5e:c8:e0:8b:c2:96:35:50:1d:
23:51:2e:d4:7e:6d:80:be:3e:a7:69:25:93:df:5e:19:71:f7:
6d:ac:8d:63:1f:6b:bf:83:cf:85:af:8e:41:19:db:d9:b5:24:
b8:02:ce:ba:3e:39:27:9c:49:0f:dc:f6:1f:2a:82:f7:16:ad:
31:ea:e0:3e:48:6a:8e:dd:bb:e4:c0:a8:fc:81:40:2e:2b:e7:
17:ea:9b:f1:9e:cd:64:0e:3a:df:28:23:54:0e:2a:4d:a1:a2:
7f:da:3a:46:a7:94:23:97:ce:82:f6:e1:e8:df:df:7f:80:26:
40:2d:12:70:a5:52:65:ed:01:6a:9e:06:75:4e:f3:1d:27:f1:
1b:7d:a1:d2:1d:fa:4f:05:dd:e8:5a:b5:e8:5b:96:b4:89:8b:
31:61:99:1b:c8:94:7b:3a:38:3d:cf:96:01:23:ac:d0:31:2c:
e9:0c:20:06:5c:1b:ef:16:7a:cb:11:09:e1:01:a8:d8:fb:f4:
79:c7:2f:a8:fa:65:57:3d:74:be:7f:bc:1d:fd:46:6d:48:e1:
4d:01:73:42:90:90:95:e9:0d:7b:06:d3:0f:3a:fe:ff:c8:41:
f4:85:c9:c4
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF
RTI4QjVBQUEwHhcNMjYwNzE3MDI1OTU2WhcNMjYwNzI0MDI1OTU2WjAYMRYwFAYD
VQQDEw02YTU5OWFhYy1iNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0qoRNPJRLyg866rGwrwFRPUMDiV1PWDnR+tbdQhwA8QTxuvzcPLXXBpCsA1c
zFv8maLIL9iHt6Crdphsu4MenASzXP3pa5AG7xx3g6pG0zS4H7LeT/AUKLjLHDoY
EiqEfGqvKeJRHKg+kC3RXbhdyUZd1qtrXPWke0uajI+3O/vIgujkqw2K359vd1Rz
Acv78NFcCh0AlmRLVNeVcHA4WMc4/ImdI17mSqI7WZJKOJjj2VxPY27fKF2ZQccC
Krz4n8lhAQpkZXDMivFlsPW4nO9H1KMwhW0Zp3BPn5hTk/5kMqPAOZErlNzDBSpF
9psbqYGg4eyrXgOiyrz6xc9VbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCcRjjmj
NUAzm9cmFYsVn0L6msvfMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB
NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX
cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp
Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAMGqW316NN1jgJyDbBcDLEzPM7yYYIljokjgtXsjgi8KWNVAdI1Eu1H5tgL4+
p2klk99eGXH3bayNYx9rv4PPha+OQRnb2bUkuALOuj45J5xJD9z2HyqC9xatMerg
Pkhqjt275MCo/IFALivnF+qb8Z7NZA463ygjVA4qTaGif9o6RqeUI5fOgvbh6N/f
f4AmQC0ScKVSZe0Bap4GdU7zHSfxG32h0h36TwXd6Fq16FuWtImLMWGZG8iUezo4
Pc+WASOs0DEs6QwgBlwb7xZ6yxEJ4QGo2Pv0eccvqPplVz10vn+8Hf1GbUjhTQFz
QpCQlekNewbTDzr+/8hB9IXJxA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:27 2026 by rpki-client