
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft
File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json)
Hash identifier: omnuNX6ndtvxPf0bERsMXVTO7k0+9eLhXvR9cYuk1OM=
Subject key identifier: 2B:89:5C:A3:E8:70:4C:E1:F6:B1:DE:27:06:1C:81:69:23:9F:01:19
Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF
Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF
Certificate serial: 0243
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft
Manifest number: 023F
Signing time: Fri 17 Jul 2026 02:59:54 +0000
Manifest this update: Fri 17 Jul 2026 02:59:53 +0000
Manifest next update: Fri 24 Jul 2026 02:59:53 +0000
Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: oaYXsK3y0xsinQwkZtlgxVaQmeUchzX8F26EdiH50Fw=)
2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: +cbg7WTVhCN77TjlGhzVzZ8b4DdK8TdFQRR1HQcoMJ8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl
rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:59:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 579 (0x243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170C53, serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF
Validity
Not Before: Jul 17 02:59:53 2026 GMT
Not After : Jul 24 02:59:53 2026 GMT
Subject: CN=6a599aa9-c3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:18:26:93:0d:e7:82:58:a3:39:71:fe:f1:1c:
6e:22:1c:cf:ac:b8:fc:35:dd:56:b7:19:c4:bf:47:
7d:d3:62:88:ac:c3:30:76:d6:7d:db:0e:99:47:56:
eb:7a:d2:65:d2:b2:9d:67:89:16:e7:00:f3:6f:43:
14:ea:0a:89:52:d9:c2:58:5f:c0:cb:87:cd:ac:a2:
27:41:39:fe:ec:62:08:30:f9:fc:71:a1:5b:84:c9:
f9:1f:b0:70:80:7a:71:af:29:ef:72:c4:b0:72:69:
26:61:31:57:24:5e:51:ab:8b:1c:2c:46:f5:94:27:
3e:d6:86:2c:18:fb:83:a8:80:6f:65:09:35:a2:65:
43:54:2b:2a:61:22:9d:a4:e7:31:9b:4c:45:82:6a:
06:76:d3:a4:e9:4b:5d:fe:6e:27:b7:8d:b0:0d:cb:
55:b4:69:8e:1c:47:e0:70:05:3e:13:b2:a9:37:65:
32:94:40:93:95:65:d0:22:ec:0e:e5:8f:b3:58:3a:
80:e3:03:61:81:f1:ed:30:9e:fa:d0:7c:39:aa:fd:
aa:9f:dc:a2:7e:a5:e4:09:af:9f:72:97:08:76:3d:
1c:1f:f4:5b:a5:5c:2b:ec:e5:c6:bc:84:2d:bc:cc:
2b:aa:ed:02:aa:be:39:64:fe:e5:a9:89:8b:dc:70:
72:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:89:5C:A3:E8:70:4C:E1:F6:B1:DE:27:06:1C:81:69:23:9F:01:19
X509v3 Authority Key Identifier:
keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
37:b6:fc:01:2d:84:07:f0:ec:56:be:79:1e:1e:6a:8a:a5:a0:
44:69:e7:18:df:ea:19:a5:75:f8:af:2d:4e:18:ba:40:83:cc:
6d:64:71:06:91:63:d0:dd:98:29:02:87:90:ee:26:ea:f6:64:
bb:36:85:ee:84:97:1d:44:ae:93:4c:71:df:5a:0b:f6:d4:ed:
a6:f6:37:fc:c0:aa:7d:9d:37:3d:7a:d6:75:f3:a2:37:33:35:
7e:01:31:89:66:f3:f5:cb:1c:b2:c2:88:04:f8:51:ae:29:02:
d5:77:68:9c:8e:17:63:61:92:3a:75:85:61:df:3d:42:0d:4e:
2f:29:54:98:fb:e9:99:50:0f:aa:2e:d4:8d:d7:26:1c:c3:3d:
77:be:df:ff:91:cc:49:33:d5:29:65:e5:55:6d:64:9f:50:b4:
a3:da:35:d9:44:ea:82:6e:46:e8:0b:d2:25:4e:07:6a:ad:59:
7f:a9:50:30:0e:82:b5:79:b0:2d:e2:f4:15:ae:dd:eb:57:de:
9b:d0:29:95:ea:01:a5:8f:22:d4:e9:b4:7e:4a:2e:5c:03:36:
b4:28:14:dc:bd:13:a3:5b:ed:6b:c2:b7:5f:ca:54:c3:f8:60:
72:b4:d3:1c:44:92:fd:32:d0:65:54:c2:14:07:74:00:3f:dd:
43:a4:6c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:31 2026 by rpki-client