
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json)
Hash identifier: dXeJO5qmqy4ZgaXd0mIh3l9cTiE4dkNzF4bKGHS7JJA=
Subject key identifier: AC:0E:72:C9:F5:71:CF:15:AE:2B:65:9F:90:80:4D:84:7F:2B:3B:B9
Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11
Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611
Certificate serial: 0D79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
Manifest number: 0D67
Signing time: Thu 02 Jul 2026 18:05:51 +0000
Manifest this update: Thu 02 Jul 2026 18:05:50 +0000
Manifest next update: Thu 09 Jul 2026 18:05:50 +0000
Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: EaUu51t3d2yDgLiuXADrPGP8miY8bSBXBLAXNYD4Guk=)
2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: X8sSkThLSb4fvyIS1pC23KDUjsj3Bu29OZPUHsBaV1A=)
3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: Aw64/YmY/GSEcpV9lRNLIVB3nggqqcAVaMWqQLrAoig=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl
rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 18:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3449 (0xd79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611
Validity
Not Before: Jul 2 18:05:50 2026 GMT
Not After : Jul 9 18:05:50 2026 GMT
Subject: CN=6a46a87f-97f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:fe:9d:57:32:6e:f5:6d:78:8a:24:b5:c7:
2a:d6:13:b7:99:46:87:f9:03:19:01:ad:79:e6:08:
44:e6:79:85:61:b8:43:b4:13:ed:41:e2:e9:e8:7b:
31:74:97:f0:3a:34:0b:42:71:25:68:1c:5a:49:27:
31:b9:7d:74:96:f4:dc:02:3f:b5:13:43:7d:a9:ac:
5d:29:0e:da:0e:8e:f0:3e:22:e2:2f:c6:29:29:2a:
2b:8a:d6:08:29:3f:98:78:cf:d3:a7:46:38:0d:95:
aa:55:ba:59:fc:88:18:c4:b8:72:a2:a6:2f:2b:e5:
b9:1c:75:01:0a:f4:e8:79:9c:c3:8e:ce:46:46:9c:
c8:7f:42:13:5e:59:55:a1:5f:03:9a:01:33:3c:d8:
2c:f7:74:2e:e8:b2:2b:90:59:b5:9e:88:75:22:fb:
c1:28:c8:34:c2:64:a8:c8:ea:61:5e:cb:4e:2f:6f:
34:b3:43:5f:ee:b6:ff:9d:08:4f:54:45:c2:71:1c:
88:02:46:44:f7:ef:ae:c2:12:ef:5a:8c:38:c3:89:
84:3f:50:9f:64:4d:33:a8:71:45:9b:0b:8f:e2:09:
05:29:28:69:b3:97:25:a8:26:5b:c4:28:6c:36:b3:
be:ff:08:95:e8:7c:53:88:fa:a3:a4:a1:58:2e:ba:
8b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0E:72:C9:F5:71:CF:15:AE:2B:65:9F:90:80:4D:84:7F:2B:3B:B9
X509v3 Authority Key Identifier:
keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bc:81:83:a3:99:ec:69:c5:3e:7d:46:93:d8:c7:a1:67:ec:5a:
74:99:9c:23:dd:9b:29:ce:e7:ab:d9:62:5b:6e:bc:8e:85:20:
79:b8:6e:4b:ac:75:52:0e:bd:8d:a5:58:52:c6:6c:7e:b5:2e:
34:a2:8d:8b:48:49:e7:13:0d:0b:67:2e:89:79:16:7b:e2:9f:
e7:46:bc:6d:a1:eb:fe:a5:ba:6c:3d:59:d0:28:0d:95:55:aa:
1d:08:30:2d:ad:d4:e6:92:e9:09:55:5b:c1:38:ee:3d:0d:b5:
20:1b:44:ff:49:1f:41:e2:89:00:f4:2c:29:f2:75:56:c1:a3:
71:a3:1c:9f:56:79:6e:47:88:4d:e9:55:a6:59:9c:f9:66:29:
92:b1:23:b3:c3:04:e2:cd:4e:46:37:8f:a3:24:fc:b9:45:ca:
e8:5e:1c:66:dc:17:ed:3d:0b:bd:fe:7d:8f:74:59:5c:a8:a9:
37:cb:4e:b2:32:94:7f:90:a0:0b:74:fd:3e:16:bd:b3:01:1b:
03:e1:bd:92:00:72:51:af:95:56:77:7d:c3:cf:73:a2:07:0c:
d7:75:c8:52:66:d5:d6:a7:60:07:7a:1e:5a:fd:14:2b:42:6b:
21:49:e8:47:48:2f:f2:2a:7f:25:57:ff:c2:55:57:6f:a4:6f:
97:b1:c6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 16:08:57 2026 by rpki-client