
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
File: _Yje-aa92-pZOJ7cYXGq3KEGtQk.mft (raw, json)
Hash identifier: n3fQaMZbcLYDPrY7xXkI2V1/qYAiYFI0X6JHMUecIcQ=
Subject key identifier: 48:FC:69:C4:41:47:1E:59:09:F0:A8:9E:BB:4D:32:8F:FE:88:74:D0
Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09
Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509
Certificate serial: 013C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
Manifest number: 0134
Signing time: Fri 17 Jul 2026 06:40:51 +0000
Manifest this update: Fri 17 Jul 2026 06:40:51 +0000
Manifest next update: Fri 24 Jul 2026 06:40:51 +0000
Files and hashes: 1: _Yje-aa92-pZOJ7cYXGq3KEGtQk.crl (hash: ogcneWAV9sjIv8M9wS/UUu8+RClqt891Mp8WugPtaQY=)
2: 2D810A88AB4011EF849D9515C4F9AE02.roa (hash: ReDU3pM6puyTOqvPDYn/OPZQZEhbfRxZyleb6fyedWE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl
rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:40:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316 (0x13c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509
Validity
Not Before: Jul 17 06:40:51 2026 GMT
Not After : Jul 24 06:40:51 2026 GMT
Subject: CN=6a59ce73-220a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:44:b8:aa:f6:eb:b9:1a:9d:53:00:62:a5:37:
e7:44:ed:f0:0b:79:b6:58:64:48:32:42:88:87:5b:
07:1d:cf:90:51:76:db:87:ab:5e:f6:a2:03:4d:70:
94:83:90:a7:04:94:fb:d3:17:56:8e:90:fa:fc:48:
14:e1:d9:4a:b5:e8:c7:ea:2a:7d:b4:e9:18:ac:f1:
f8:9c:d1:53:70:f4:dc:74:f3:b4:3f:7c:94:3c:45:
b4:2a:9d:f9:a4:06:cb:dd:86:9a:58:6f:3f:3b:b4:
14:24:de:15:1d:9c:c7:40:51:ac:3c:7b:97:9b:26:
ed:21:7d:cd:5e:32:d9:70:37:83:f7:5f:ea:18:8d:
aa:f0:a8:cc:d1:54:c9:67:2d:7f:e7:63:b4:36:e9:
42:fe:43:4f:8f:39:ca:99:1f:5f:29:df:4a:b1:c0:
b9:61:5d:ce:dd:57:86:5f:14:dc:a2:ed:b1:c6:73:
35:64:e6:1b:48:04:16:80:47:6e:c8:2c:e0:17:2f:
aa:dc:0e:07:0e:9e:ca:97:07:0e:c0:59:62:9a:f9:
11:90:56:5e:f8:3d:c0:52:75:e1:1f:53:3f:d9:e0:
8d:5b:4a:c7:57:5f:e7:89:dd:88:00:bb:89:39:31:
28:6b:34:12:c5:f7:e5:bb:f0:bb:78:82:14:d6:4d:
7e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:FC:69:C4:41:47:1E:59:09:F0:A8:9E:BB:4D:32:8F:FE:88:74:D0
X509v3 Authority Key Identifier:
keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
06:51:7d:7b:eb:57:28:2d:21:1c:21:f3:5e:0f:c8:c3:6f:ef:
f9:f4:47:e2:ec:28:51:2a:fb:0a:3e:5f:50:17:2b:fd:1b:02:
3d:64:c8:30:35:34:92:b0:7a:2b:b9:a4:8a:e7:33:74:9b:ae:
0d:b9:fc:5a:ee:ed:e8:f7:57:e4:bd:6c:03:a4:90:fc:21:a1:
85:a8:3b:68:13:a2:e4:87:6a:82:7c:cd:71:1a:56:8f:cd:5f:
1e:37:71:2f:b6:f3:31:d7:5b:87:f8:cc:f8:2b:8a:be:87:9c:
00:5c:b6:28:7c:fc:7d:92:f6:47:9c:30:f8:c0:33:36:b4:03:
b7:fb:cd:84:24:5f:5f:62:6e:b9:e4:b1:75:56:33:c0:5f:e3:
00:48:d0:fa:24:6c:c1:e5:a3:87:91:96:c9:e1:12:5d:c5:ae:
96:e5:dc:ef:7f:c9:ee:16:c1:02:45:39:23:7c:04:d2:c7:3a:
23:4d:94:fc:83:31:c8:8f:a8:f7:08:5c:d1:7a:18:52:0b:82:
8c:cd:f2:cf:9d:b8:09:74:f0:51:41:4b:f6:48:6e:6f:52:be:
9c:18:db:10:b6:82:e8:9f:2b:28:1f:11:ee:ed:bf:32:12:9c:
5a:d6:ae:fd:86:3d:1a:53:50:d9:49:af:40:eb:db:d4:b8:21:
e6:a5:3f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:21:25 2026 by rpki-client