
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json)
Hash identifier: u3cruy5pIllxpZvMTEw/JArUYlZbQLX9u10BWZec7Jk=
Subject key identifier: AF:35:1E:4C:AB:32:DB:90:37:21:68:5A:6E:08:08:D2:B1:F9:EF:E1
Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75
Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75
Certificate serial: 0140
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
Manifest number: 0136
Signing time: Fri 17 Jul 2026 06:40:54 +0000
Manifest this update: Fri 17 Jul 2026 06:40:54 +0000
Manifest next update: Fri 24 Jul 2026 06:40:54 +0000
Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: 2lygd92WXBgD9sf6rwkyI83rLIiHkLg8h8PEIvZWxbE=)
2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: Ym98AGZEM1BksP4Y3kvzDkvtm38BxUohqAh//gTG7x8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl
rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:40:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320 (0x140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75
Validity
Not Before: Jul 17 06:40:54 2026 GMT
Not After : Jul 24 06:40:54 2026 GMT
Subject: CN=6a59ce76-713e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:2e:f8:88:11:0d:77:2f:56:ab:2f:7f:72:
70:e8:cb:4c:64:d1:86:a3:ed:3f:13:42:96:1f:10:
9b:2c:ba:1f:67:6f:03:b1:8f:ee:92:74:20:75:44:
46:5a:e5:1f:ab:5f:86:3c:fd:6c:3a:c3:5b:e4:4b:
d7:6c:c1:f9:0b:e9:01:62:d4:e0:c6:db:33:aa:56:
9b:59:2c:e0:79:5c:41:ef:dc:19:3d:d1:62:c1:4c:
b6:f4:74:ce:0b:e4:69:1a:de:31:84:de:70:66:e0:
a3:f2:56:0c:79:17:ee:c5:59:d8:44:83:4f:02:d8:
0f:19:fc:46:52:c8:d3:04:de:78:d4:be:fe:50:35:
be:98:af:6a:52:92:5d:b0:2a:04:f5:2f:c6:fe:f0:
b3:d6:cc:72:9c:79:8b:b9:7b:86:2c:5d:eb:74:d9:
dc:b4:48:25:fe:58:07:52:0b:cd:48:d3:8b:19:6e:
2b:ca:a1:1c:0b:51:15:41:1e:f3:06:05:75:ee:ac:
98:43:03:8f:9c:f8:15:fb:80:93:88:8c:0f:96:7d:
09:bc:34:58:ae:f2:d9:55:23:68:a9:fc:6f:51:85:
8b:10:0e:80:21:fc:06:47:76:ab:a1:e5:af:77:14:
29:05:0b:c2:99:ba:23:2a:19:05:de:45:d9:e2:37:
6e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:35:1E:4C:AB:32:DB:90:37:21:68:5A:6E:08:08:D2:B1:F9:EF:E1
X509v3 Authority Key Identifier:
keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
99:a2:51:ea:94:70:33:4b:27:83:cd:7f:f4:0e:02:22:55:3f:
5f:12:db:f4:54:0a:1a:e7:ce:88:73:33:78:5a:32:97:58:66:
08:74:70:df:f7:b3:ef:d0:6a:e8:ad:6e:4f:54:30:5e:bb:6b:
01:41:1c:11:1b:fb:e2:b8:3b:e8:66:a3:2b:4c:d3:ee:04:93:
6b:fe:c4:87:d7:9d:3a:7d:4e:99:26:05:ee:9c:6c:11:2f:bc:
6c:75:70:7f:29:ea:1b:1a:bb:0c:41:9a:be:52:c5:e4:69:f3:
07:6f:07:af:1a:e1:76:8d:0d:48:b0:97:95:b0:9c:ac:8a:d7:
75:7a:08:18:9f:df:9a:44:68:b7:61:0e:a2:c1:0a:da:cd:0a:
ef:4a:84:26:c3:c5:1a:8a:84:09:fd:da:48:29:43:62:1e:fb:
56:68:63:58:c0:c4:97:b1:77:79:6e:cb:60:be:3b:01:a5:de:
dd:c7:10:04:8c:58:67:b6:64:6f:1b:aa:e8:8d:20:4c:45:03:
a4:0f:26:69:18:3b:c1:67:6a:27:aa:8c:7f:c0:4f:1b:a5:25:
7f:4f:89:0e:6f:ee:4c:1b:0a:4e:ea:da:15:c2:bc:ee:1d:e6:
af:bb:18:81:fb:5f:78:2c:53:66:a9:76:67:cb:15:bb:f4:7f:
87:30:d3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:34 2026 by rpki-client