
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
File: R-xTv901EyDomyxUG6zdTY1SoLM.mft (raw, json)
Hash identifier: SSjkUgNZ31OYutlyKsOGc48wFYvAijHgElwlLBToK3c=
Subject key identifier: 48:C7:86:52:99:79:FB:5B:09:A2:4F:48:36:7D:9E:2A:68:79:CD:DF
Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3
Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3
Certificate serial: 074D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
Manifest number: 072B
Signing time: Thu 16 Jul 2026 22:26:44 +0000
Manifest this update: Thu 16 Jul 2026 22:26:43 +0000
Manifest next update: Thu 23 Jul 2026 22:26:43 +0000
Files and hashes: 1: R-xTv901EyDomyxUG6zdTY1SoLM.crl (hash: 7R8P8J8vwsE/pdkv/IVKpq2ro8bQVwmuK7BsRc5vJSY=)
2: 0A6D07FC913D11F092E92E65C4F9AE02.roa (hash: N+hh0IsbREkCIUI5w/ClySR4LrvvV4rJ4CFoF8qj+kg=)
3: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (hash: 0FJPWWCgs74V2qR0+srXlHP3r9bzqp0VjgYjnq505c8=)
4: DC130EBC913A11F08A1B3D3DC4F9AE02.roa (hash: bNYRWc+xdCHr6Dqm6E4JXdO5OdveJW1Evylh8xk+joU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl
rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1869 (0x74d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173DB5, serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3
Validity
Not Before: Jul 16 22:26:43 2026 GMT
Not After : Jul 23 22:26:43 2026 GMT
Subject: CN=6a595aa4-9635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:93:2f:c8:dd:82:8a:38:12:a9:59:f1:44:21:
14:49:c2:10:ff:7a:cd:90:e9:b0:14:9b:09:c0:48:
f7:b4:7a:d4:19:5e:61:8e:92:50:30:ab:e2:8d:72:
44:ba:ea:1a:59:42:4f:8c:25:69:fa:bd:81:73:f6:
68:d7:08:d6:61:43:c7:61:df:ca:8b:8d:34:96:89:
d8:5f:ce:62:d5:c6:8c:96:c6:77:f9:35:f0:62:f9:
45:6d:e4:8e:9f:f9:48:3b:82:96:fd:d0:2b:b1:69:
cc:a6:1f:e9:2f:9a:0d:7a:d6:e9:05:61:b5:5b:47:
d4:ca:20:93:83:4d:9e:fa:09:89:b5:16:a9:20:5f:
51:c5:ac:67:9b:92:40:64:f3:b8:ce:82:c0:2f:71:
2b:74:5d:5b:98:4e:cf:5c:3c:54:1c:7e:03:eb:40:
2c:5f:d0:fa:ec:b7:d1:80:9b:43:09:97:bb:2d:9a:
5e:b4:66:86:38:09:47:c7:dd:59:fc:5e:b5:df:99:
df:82:6e:f7:e7:52:4a:ea:87:06:5f:c5:dd:59:cb:
43:c4:f5:21:33:74:3e:fc:2b:a9:c2:e9:19:e5:de:
ba:6d:33:96:90:71:0e:dd:b8:8f:0d:25:40:60:f2:
35:7e:94:70:d0:3b:57:63:3d:be:e7:f7:69:d2:fa:
fc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C7:86:52:99:79:FB:5B:09:A2:4F:48:36:7D:9E:2A:68:79:CD:DF
X509v3 Authority Key Identifier:
keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:c9:b9:11:55:58:b1:6b:6f:b2:7f:c3:1d:2d:37:04:e3:4b:
1f:2c:f8:e0:29:4a:92:e6:60:4b:a5:28:59:4f:5d:cb:cd:23:
19:2a:e0:42:9e:16:f8:87:0f:39:f7:a9:68:40:06:d4:7b:ca:
8a:07:fb:07:ac:d0:00:75:29:4e:55:54:80:78:90:87:2c:34:
82:67:78:f6:21:65:dd:a8:81:cc:a3:16:30:c9:86:b4:33:0e:
3f:05:9c:65:da:cc:d8:4e:aa:82:2f:94:06:65:a5:96:5d:12:
7b:87:19:aa:67:6e:60:53:30:7f:fc:52:db:ae:4f:2f:21:70:
e2:c4:21:7c:b1:47:a9:fc:a7:b3:e0:d9:cd:11:e5:0c:44:b0:
63:23:b0:98:6e:7f:20:b0:59:d1:a1:35:7b:a0:e9:de:56:c1:
42:7b:85:28:2c:6e:64:a7:e9:ba:ef:25:9d:89:bd:7b:3e:7a:
10:5f:82:05:58:ec:9b:73:db:99:29:3e:ec:83:e3:64:20:6e:
81:24:e9:80:38:53:9f:4c:7a:f7:40:34:fc:cb:db:71:92:7a:
60:f1:ba:a9:c8:bc:1b:0b:5e:b3:cf:66:cd:64:98:3a:d1:1b:
c5:cf:c4:b9:bc:d3:c5:9f:b1:72:e7:e7:a6:90:fb:67:cf:d1:
6d:e8:3b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:16:10 2026 by rpki-client