
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
File: tU4IRltUXO7x4uEAl3XZG6QStj0.mft (raw, json)
Hash identifier: hgfBrOpMn6KjqQTyNzcGK9NzEP9wUJXPVAhYCGp6S2g=
Subject key identifier: E5:1E:3F:88:06:DF:49:EF:09:A3:E9:42:7C:0D:D8:FF:D5:70:E4:21
Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D
Certificate issuer: /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D
Certificate serial: FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
Manifest number: C3
Signing time: Fri 10 Jul 2026 01:30:07 +0000
Manifest this update: Fri 10 Jul 2026 01:30:07 +0000
Manifest next update: Fri 17 Jul 2026 01:30:07 +0000
Files and hashes: 1: tU4IRltUXO7x4uEAl3XZG6QStj0.crl (hash: TbjAeCI7VvFYkrAjtH7R7jMdA+wQVoPWC7sfvChMvCE=)
2: 1E9FD7DA27DE11F1A118CE77A7833773.roa (hash: 4HZ72AqLXMi7Oo7fFl4c7MxtfYI6Hr7/6V24G0+ZxdI=)
3: DF3E21307BFE11F198B5A8F78EA30FBC.roa (hash: NT30pur8xhY9PcKqmg6IwjPQmddy3T3G46Qh5vdQmt8=)
4: 5B9CF7B8541011F193006E3293833773.roa (hash: UEPdDUTRui+ayW3AbcnrWggT880Cdd6becbTRiUrqEI=)
5: ABCCE66C445C11F1AD9768EE92833773.roa (hash: 9iBZLQ9uktWZ65mu8nlRlZWV5ecR8Ndx/Ji4IWLuSGw=)
6: DE9579CE528511F18C1495C7C8833773.roa (hash: 9LcZVZAD8l45RehazmTe3zQA3/WAaY/wjpC8CzfMy6w=)
7: 0D0B98CA4E7A11F19ABC63EAAE833773.roa (hash: MYyEucLCCxrI3FOhoLhSAqiBaqtBwcoKacKk+luCAfA=)
8: 0F05CF767A6011F1976E05638BA30FBC.roa (hash: 7B1bqD+6h9jyiiQRYsB8Q16/B9nLv79GenM8klf3G4g=)
9: CFF23F5457FA11F1947AF89298833773.roa (hash: 70J08+H/ExNxc8jpD+BsqCt2q0k+wbGOjpsoiz2ROjA=)
10: 7E20B24444FB11F1B2B16DC3CD833773.roa (hash: Z/aKf77qoC/D2esHAmrCa6cvuliS7eMoobwi4UM9D1o=)
11: 5493E832AF1511F09DB9CB78C4F9AE02.roa (hash: uIjz1D93M1fso+Y//Hqt4d2aDi49XaTeerlMUnOZ7Ao=)
12: 050E38E62E3E11F18FB4E28692833773.roa (hash: /JFZwhWSwSdVNSAIA2VslFfJ0mFpMyrPcYB8jKhIelI=)
13: A7349B8A499E11F19CE2905A97833773.roa (hash: tv8Ttyi8smlY2FRZQxJdaalHWRaIZpl5MIGpz7txhiY=)
14: 0E6E84F47A6011F1976E05638BA30FBC.roa (hash: HtUuAkol0mHQrD42lO6MoPJ+Ejb03iZZDhqfCwpcfTY=)
15: A2517D166EAD11F18743D71861A30FBC.roa (hash: EXYW07HU+PDuF2Sjxw7qGLvDdb4Ds1WxfwmESxYCYx4=)
16: 300E55D2645B11F19DFE990E7247A888.roa (hash: B8rZI43b2LUCXU8rE+xRAPdthQYs+K3MurmJh+dDXVg=)
17: 12D3C456798D11F18BD54AEC8BA30FBC.roa (hash: iqjwxBM/xPRItizIfkoRZ8d39s+vsumVsT3NzLhc768=)
18: FB82DC8A6A1C11F1881DA3A97247A888.roa (hash: N0zMx8My4TWgAR5jhXc7+cT4VI2HQZTJlqsT8xkjuJQ=)
19: 1A44C40648FF11F1AE16E45D93833773.roa (hash: q7YWA5SPxz9lm686m7SUsJ/DXFlxCYiGkRbWYzw7qBs=)
20: 36B69F0C218F11F19319393A0D3D8C67.roa (hash: KJ//K7GtgLc3Sie2BItNl434WLtJNinu64G7n9RU6IE=)
21: 23967BF24A7711F1A7BED77BA6833773.roa (hash: Fp0dYx6TPqms3ShBwcnNza2eQIEhSvJF0hdWgmkuGzo=)
22: C05133CA7BFE11F1B1FDF1F38EA30FBC.roa (hash: sON07Xmszv6tMVxnscl8FXCGzQ5QM890dEvXynJ/axE=)
23: D2D5E3A2429111F1A9B50A47B2833773.roa (hash: JNJnwJdlLDhaD1G/+iNzHqjRU67B9dzGcdSz2okho74=)
24: B9DCE45A347111F19700968FA5833773.roa (hash: 6QpnuOmxKQrcMtBDCLToCXkzosmzHxUQUPokRTTJH3w=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl
rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 01:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253 (0xfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D
Validity
Not Before: Jul 10 01:30:07 2026 GMT
Not After : Jul 17 01:30:07 2026 GMT
Subject: CN=6a504b1f-92fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c4:af:4a:35:ab:4f:b6:81:cd:32:2a:2c:80:
21:20:10:bd:c0:28:55:6f:6e:b1:56:5a:47:c9:6d:
4f:0a:13:ba:ab:3d:6a:f0:24:13:43:59:43:ad:9b:
62:7b:ac:eb:f9:5f:a4:e5:4c:38:f6:b1:66:ca:99:
58:93:b0:a1:41:b5:40:d5:66:be:7a:0b:f1:d2:04:
13:48:b2:aa:b5:19:4e:c2:14:5c:d2:e2:ff:46:04:
3f:2d:dd:06:b6:9d:5c:a4:5e:05:16:9d:2d:1e:ce:
e7:24:e9:df:33:71:65:27:06:c6:c8:c9:17:84:ab:
3c:5a:d9:68:72:fd:09:97:b7:d4:a1:82:99:e7:46:
52:53:84:1b:49:4a:e4:84:3c:e0:4e:0a:8f:25:98:
00:57:73:84:d1:b8:88:bb:c9:da:d3:da:8d:07:e2:
9b:00:87:b1:1e:9d:02:2d:50:dd:cb:4e:db:90:5b:
93:96:6c:b9:1c:b3:52:7b:86:2b:4f:66:a3:bf:68:
1c:ea:33:fc:4c:74:81:32:9c:3d:01:b5:a0:50:9c:
c2:80:47:8c:b1:eb:c6:ca:0b:5b:7c:3e:4a:bb:33:
ff:45:6c:d2:5e:ba:1a:67:81:39:fc:1a:a4:e4:f8:
fc:95:9b:27:62:48:1e:12:f2:04:33:c4:75:2e:12:
b9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1E:3F:88:06:DF:49:EF:09:A3:E9:42:7C:0D:D8:FF:D5:70:E4:21
X509v3 Authority Key Identifier:
keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
21:ba:6d:dc:f4:7a:d3:51:2c:f1:39:a2:aa:47:56:e5:c0:d7:
b5:3a:3b:d3:30:a6:2c:9d:da:ed:49:84:b1:27:69:e2:60:94:
74:4e:d9:60:1b:80:48:b7:3f:35:fd:f7:19:03:92:16:db:0c:
62:84:e8:6e:aa:c5:50:9b:a5:74:ae:33:56:2a:dc:48:a1:85:
42:ee:ac:c4:9e:e4:7e:c9:e3:0d:03:a3:c1:c9:dd:40:f0:57:
82:7b:b7:1b:5f:6a:00:d2:b0:3a:95:f4:35:d7:76:49:58:d8:
e0:f2:95:16:62:52:4e:d0:65:6d:47:66:79:5f:56:01:e7:23:
b4:28:ea:66:3c:c9:52:0c:43:e1:07:5a:c2:92:c9:e3:98:e9:
af:ad:f0:10:08:1e:12:b8:a6:80:92:37:ef:00:0a:e7:a5:91:
2f:ec:06:4b:48:59:4b:de:1a:78:2d:98:ad:07:81:39:84:d7:
75:d8:e5:8d:b7:bb:eb:60:c9:4b:09:7e:57:a1:34:8f:ec:0e:
e3:b6:48:a9:8f:1d:be:9c:75:58:3d:77:95:37:f2:89:fa:45:
c8:ec:22:c4:cd:8e:67:f9:cc:12:f1:e5:52:d2:93:a4:ed:e4:
06:e4:3f:c4:2a:71:01:9e:66:a6:90:3c:5c:f3:9b:32:c8:ba:
e5:9e:bc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 03:24:23 2026 by rpki-client