
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json)
Hash identifier: TNF1EC4t1c5cXMWTdwKsxdWHTHxfvPJqtlW2BIWzJH8=
Subject key identifier: 71:C5:93:07:FF:20:02:2A:14:74:E6:D0:30:59:F0:5A:2D:CB:12:31
Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6
Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6
Certificate serial: 0162
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
Manifest number: 0155
Signing time: Fri 17 Jul 2026 06:17:58 +0000
Manifest this update: Fri 17 Jul 2026 06:17:57 +0000
Manifest next update: Fri 24 Jul 2026 06:17:57 +0000
Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: T6/NMdIHVn9r5wqoo3izGaPCkQfS/QpU5UzY1TdKvgU=)
2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: /vNUIQMQmo/+bpr7T8qr5NTsbD+Gg65QmwR+l9u79do=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl
rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:17:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354 (0x162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6
Validity
Not Before: Jul 17 06:17:57 2026 GMT
Not After : Jul 24 06:17:57 2026 GMT
Subject: CN=6a59c916-17c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6f:bf:f5:c4:cc:80:57:7e:b6:89:b3:bc:2d:
82:a2:56:5d:57:16:4c:02:3d:1c:33:ac:5e:6f:3f:
b2:a7:4f:99:53:32:6c:8a:0f:68:dc:79:24:14:16:
d6:df:d5:81:d5:c8:d2:26:ee:8f:e3:46:84:d5:0a:
3a:36:9b:a8:ac:de:ab:66:e6:51:94:ce:c5:f4:88:
f0:3b:08:3c:a4:69:4c:58:87:f1:d3:cc:a2:cf:dd:
74:bb:5d:7f:32:36:61:4f:b1:9f:8d:84:52:31:46:
b7:99:6b:68:f5:1a:65:a5:68:59:66:9c:46:43:38:
13:7c:50:9b:16:55:13:65:8c:6d:ee:ee:b6:f1:ef:
ef:05:5e:b3:a1:9e:ab:dd:f4:df:4b:e5:29:5d:46:
14:53:8d:5a:be:1d:ff:99:68:6a:40:5b:36:a3:3f:
2a:e4:7a:17:06:27:39:b8:b9:c5:f5:4b:d2:9d:2b:
f7:ae:4c:f3:dd:bd:77:41:40:29:c5:32:23:e9:c5:
2d:b3:0d:fd:e7:72:cb:da:c1:a0:44:8a:99:38:f2:
da:5b:5b:af:2c:30:e4:39:af:f8:7c:76:e4:78:3d:
1c:f4:01:da:e8:af:ac:c8:c0:82:75:08:49:31:a9:
5c:57:7f:b9:c4:77:81:9d:e2:c4:67:1e:4f:b3:98:
05:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C5:93:07:FF:20:02:2A:14:74:E6:D0:30:59:F0:5A:2D:CB:12:31
X509v3 Authority Key Identifier:
keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:62:ec:88:7c:4c:8d:6d:63:23:b6:44:c9:0c:85:18:4a:3e:
cf:5d:0f:3e:a3:d8:d3:5f:78:55:a6:0d:7c:b3:89:6f:ad:fc:
7e:9c:4b:2b:c1:31:05:a1:8e:e8:0d:7d:76:27:1b:d3:f9:a8:
52:dd:a1:a9:25:7a:98:c4:ed:7f:91:eb:55:fb:15:72:22:49:
a2:d1:10:eb:8b:10:e3:b8:7d:83:15:d9:3e:d6:33:27:ec:37:
7e:09:27:fc:40:f2:d7:2d:42:eb:9c:e2:7c:bc:90:fe:3f:6c:
1d:56:31:73:b5:7f:dd:ed:ed:48:6d:dd:18:86:5f:7a:f0:c6:
a0:1e:c0:be:ee:18:ab:e4:94:e4:b0:50:ad:90:00:2b:99:6e:
ee:2c:ab:c7:17:40:d5:2d:4d:21:f7:55:ed:9b:58:2b:c6:54:
38:e1:f6:20:bd:95:9b:94:ac:b1:eb:d9:c0:75:81:b2:21:d2:
3a:3d:20:97:9d:00:1f:8a:6d:0b:c5:7d:a1:5f:a7:8e:45:0f:
f6:af:10:97:c0:d4:dd:8c:84:bd:07:9d:ec:4b:1f:7b:b7:85:
3d:65:18:38:0e:e0:25:be:20:73:6b:ba:53:d5:3f:11:01:76:
67:dc:d8:0a:e3:7d:d6:18:db:35:c1:5b:68:49:4d:77:ef:3b:
06:36:1a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:39 2026 by rpki-client