
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft
File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json)
Hash identifier: YLIKWpSqGr/zp1nVZCrNQl5flS8K1JZX6P610qmW2S0=
Subject key identifier: 90:71:31:62:33:96:4A:5C:D3:1F:AC:BB:22:22:6F:8E:7B:29:01:46
Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2
Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2
Certificate serial: 01E6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft
Manifest number: 01DF
Signing time: Fri 17 Jul 2026 04:31:50 +0000
Manifest this update: Fri 17 Jul 2026 04:31:49 +0000
Manifest next update: Fri 24 Jul 2026 04:31:49 +0000
Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: MX5KAoUE9SgNjaStBIBMsgzXgWrvEb6Z6xve6Ql295c=)
2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: kzX0teoGqCYcrXmXpjad2Lv+QKDn7uXbylM76fvPiSQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl
rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 486 (0x1e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2
Validity
Not Before: Jul 17 04:31:49 2026 GMT
Not After : Jul 24 04:31:49 2026 GMT
Subject: CN=6a59b035-82ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3b:6b:a2:0e:f9:f2:ea:cc:c6:a1:d1:43:58:
52:05:57:10:72:74:6e:ad:4b:df:e2:b6:db:6b:1b:
d7:a9:ee:11:48:cc:25:c7:6a:f8:9a:18:d2:b5:19:
dc:a5:ce:1c:04:ad:be:d2:5c:f5:7f:a6:4a:8c:05:
07:35:a6:e9:85:08:3c:c5:5e:ee:57:1b:ba:33:59:
25:e1:ce:f4:f5:bb:3b:08:8f:66:62:f3:ee:6c:d4:
b8:fa:39:49:8a:79:28:b0:d4:d9:fc:e1:01:5c:ba:
43:fb:42:1b:0a:a7:5f:4b:9c:2a:aa:22:12:cf:35:
c1:bf:98:ba:13:ed:3d:3a:dc:10:5c:19:59:c2:53:
b1:d2:a2:d6:34:79:39:ed:9b:4b:37:af:04:3f:9a:
b3:ca:7d:34:b1:c6:2d:37:81:fd:81:4f:53:69:d7:
80:00:cf:ee:ef:50:cf:c7:b5:ec:bd:fe:91:9b:b0:
5d:06:1e:0a:41:44:99:01:09:43:3f:fb:8b:85:50:
ba:94:04:48:70:18:4e:1b:82:50:a9:a5:6e:84:47:
69:ce:aa:e8:17:2f:d5:32:62:ca:8d:42:53:fb:ba:
01:b2:18:74:09:51:4e:98:48:08:65:68:ad:b2:5d:
d9:22:fa:d6:ba:4f:a2:a1:cc:d1:1e:78:d0:fb:64:
90:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:71:31:62:33:96:4A:5C:D3:1F:AC:BB:22:22:6F:8E:7B:29:01:46
X509v3 Authority Key Identifier:
keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:26:db:6d:d8:6a:a1:d2:bc:95:1f:e9:0a:98:6b:ec:8e:94:
b1:8f:f5:a3:bb:6f:32:c5:8b:29:8e:43:13:9b:9c:3f:29:ff:
53:85:c3:0a:89:f7:72:f4:ef:fd:bd:11:5c:86:70:1b:f2:ef:
86:7f:b9:68:2a:56:7f:93:8b:67:87:b4:ce:1e:a4:12:dc:44:
6b:74:8c:0f:8d:08:fc:43:71:e6:37:2d:ff:57:51:f6:fc:37:
54:e6:4f:23:87:f4:58:c3:3f:41:fe:ce:da:59:b0:87:2a:81:
08:a0:e5:c5:61:16:d9:77:72:69:28:d4:79:94:e1:bf:94:fb:
fd:e7:68:0a:bb:aa:6f:a3:51:d1:80:9e:67:7d:cc:90:03:7d:
23:2e:0a:9d:5e:20:6d:51:bd:d6:a9:78:ad:d0:9e:39:c2:a9:
ab:65:18:29:95:51:a3:b4:a5:ee:4b:76:4e:c2:d5:8a:f4:95:
4f:0b:a4:f2:e5:c8:c2:95:ff:d1:c5:25:6f:24:0f:86:b3:0e:
ae:c3:a5:15:2a:e5:7a:7d:81:da:a2:45:30:27:46:4e:0c:7e:
7e:20:2f:84:a2:76:9c:44:14:60:ae:64:70:1a:ed:c5:fb:bc:
88:a1:60:c6:67:d5:66:25:4c:b4:8e:82:84:53:a9:f7:33:a9:
12:5c:31:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:43 2026 by rpki-client