
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
File: YG6ylYJUrJi2M26qQayAstyxnG4.mft (raw, json)
Hash identifier: 1VneecaJ3gXUFATriwId76Jz+Ugy0XyTB8VS+Ih+osw=
Subject key identifier: FB:D9:EB:B1:AC:20:FA:4E:8F:31:94:7F:36:A2:EE:B6:7B:61:E6:B6
Authority key identifier: 60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E
Certificate issuer: /CN=A9170D3E/serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E
Certificate serial: 0140
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
Manifest number: 013C
Signing time: Fri 17 Jul 2026 06:33:34 +0000
Manifest this update: Fri 17 Jul 2026 06:33:33 +0000
Manifest next update: Fri 24 Jul 2026 06:33:33 +0000
Files and hashes: 1: YG6ylYJUrJi2M26qQayAstyxnG4.crl (hash: 0XBJZc5k5yDq8dQ+95DVVe/CIQsK6XvCH2+g//geO4k=)
2: 181772049FD811EF8680B438C4F9AE02.roa (hash: nlnEqbRNBdElRTHPRbYW578QyapawXEp7sk2hMeS67g=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl
rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320 (0x140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170D3E, serialNumber=606EB2958254AC98B6336EAA41AC80B2DCB19C6E
Validity
Not Before: Jul 17 06:33:33 2026 GMT
Not After : Jul 24 06:33:33 2026 GMT
Subject: CN=6a59ccbe-1ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4f:b8:3c:07:e1:b3:19:7f:ce:7a:9d:60:c0:
04:6e:b1:d3:c1:c6:ee:58:cd:cd:b0:dc:fe:ac:c9:
19:ca:b2:a1:72:6e:3c:86:35:d2:b6:89:b8:04:77:
75:56:0e:69:88:e1:48:02:9f:53:e7:fb:55:43:da:
a5:a0:43:6a:30:35:b2:d0:ed:08:1e:36:15:a8:e9:
63:af:ec:a9:f9:aa:d7:c7:05:74:61:c8:28:b5:05:
f6:be:d1:47:63:8e:80:2f:e8:58:08:66:8a:32:15:
97:54:6f:23:29:19:a0:93:2f:be:eb:0c:30:84:36:
01:4e:84:2e:eb:13:f2:d4:16:94:d7:d8:10:42:9b:
b4:40:33:a0:0c:44:24:49:a0:a8:fd:45:2e:19:1d:
1b:9e:7e:66:42:0c:6a:35:16:3e:a7:ab:d0:41:09:
f5:36:a3:b9:d3:6a:f3:4f:68:99:23:93:37:f8:05:
34:bc:56:ef:d4:91:f1:6f:b7:05:4a:f8:90:ce:c0:
ca:5e:58:c7:dc:1e:e9:90:6b:b2:fa:04:e4:62:c0:
3e:f9:99:0e:2b:c6:e7:e3:7d:d3:17:c0:70:96:ed:
49:f0:f6:05:10:4d:49:14:4f:cb:40:82:9e:4d:94:
41:1b:1f:84:99:b7:bb:ab:f6:4a:c7:b2:5f:fb:7f:
ae:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D9:EB:B1:AC:20:FA:4E:8F:31:94:7F:36:A2:EE:B6:7B:61:E6:B6
X509v3 Authority Key Identifier:
keyid:60:6E:B2:95:82:54:AC:98:B6:33:6E:AA:41:AC:80:B2:DC:B1:9C:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YG6ylYJUrJi2M26qQayAstyxnG4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170D3E/B5DFC8C09FD711EF9E38A837C4F9AE02/YG6ylYJUrJi2M26qQayAstyxnG4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
76:aa:1c:cd:4b:83:ab:23:58:1f:7b:ce:45:17:fa:c9:e8:06:
f9:d7:96:e5:3f:11:21:d1:46:78:8e:b2:47:e3:75:60:38:0c:
3e:fe:86:6b:a8:50:3d:fb:0d:e1:c1:21:29:79:a8:0b:a4:2e:
d4:78:4b:6a:da:fb:cc:0f:32:3f:71:c8:6f:e1:f2:73:8e:59:
d4:b4:7b:cd:e8:3e:22:54:57:d5:51:e1:83:2d:c9:4b:27:fb:
9b:fd:af:bf:93:ed:04:e0:da:db:2b:19:1a:01:48:ac:de:5a:
70:16:de:67:a1:06:2c:c9:6a:ad:9c:0a:9c:b0:8e:7d:30:1b:
38:1b:c1:8f:b7:11:71:63:27:03:4f:18:b4:01:bd:56:c8:c5:
a4:99:c4:b0:b7:e9:bd:25:6d:53:0b:14:e5:24:22:d1:58:d1:
d4:22:8b:60:b2:e6:76:45:2d:21:1b:a5:d0:6c:4e:9a:48:d6:
e6:a5:d3:5c:a5:32:05:3a:e1:74:be:65:b5:f0:3e:e1:2a:5c:
8c:55:6f:39:c0:ac:19:87:e2:be:68:f8:85:6b:53:9c:0c:0c:
87:cd:d3:4b:62:fb:63:77:39:4d:5b:42:0c:d5:69:44:ac:12:
74:11:3f:e2:4c:5f:de:e0:c1:54:bb:ad:ae:3d:50:81:2f:1e:
f5:5f:13:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:53 2026 by rpki-client