
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft
File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json)
Hash identifier: 9KhYRQGz2C+rQOBHMumKToatTuhzcUz7+IqhYsSK9Us=
Subject key identifier: DE:98:FD:AD:5D:03:76:5B:0C:D6:0F:3D:E3:6E:15:C7:F5:D4:75:D7
Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A
Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A
Certificate serial: 0D04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft
Manifest number: 0CF0
Signing time: Sat 04 Jul 2026 18:28:43 +0000
Manifest this update: Sat 04 Jul 2026 18:28:42 +0000
Manifest next update: Sat 11 Jul 2026 18:28:42 +0000
Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: 37YXDCsHRt6xTf6qSRmnHFbPvcLP79dIoHYbERMwthA=)
2: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: KI0wtfrpzzeldL0TKgebNaTut7M4MCF1WK3HZwTSHVM=)
3: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: c63Et1Ir/YnB7K8uol85rXXmz9MoXTQl05iq46Egj80=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl
rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 18:28:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3332 (0xd04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A
Validity
Not Before: Jul 4 18:28:42 2026 GMT
Not After : Jul 11 18:28:42 2026 GMT
Subject: CN=6a4950db-45ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:d1:36:cd:0f:cd:0d:3b:9f:54:96:d8:a8:
0e:87:90:a5:ef:c8:76:a1:27:6d:42:67:a9:e9:1b:
22:07:fc:30:a5:7c:28:c7:68:ed:6e:f7:89:36:f2:
e9:14:ce:b5:5d:b8:eb:d8:0c:a1:07:9c:02:8a:7e:
ee:f4:2d:dd:9c:9b:1e:12:ea:75:62:83:7c:e3:77:
ae:1b:7a:94:75:d2:ba:a2:3d:d1:66:8a:7d:36:c3:
b3:bc:30:93:cd:02:12:05:77:09:14:b5:40:30:5f:
f9:f6:54:44:9b:00:1f:84:fa:ce:e0:f0:ac:d8:53:
a1:66:60:14:96:cd:c5:a9:76:7a:e9:43:18:2a:20:
92:36:f0:15:93:6e:4d:4f:52:4d:ea:a5:40:61:1e:
44:5c:fb:b7:4f:9b:5b:88:03:62:1c:17:bb:8b:ff:
73:c7:87:71:f3:ab:e0:13:1f:ce:fe:5d:5d:53:bd:
a8:0f:3d:c9:be:74:26:a6:0a:d1:73:65:cf:03:33:
1d:f9:d6:8d:59:50:28:12:7d:07:e6:f5:ec:b1:fa:
5a:04:df:0c:26:4c:d0:c3:d4:15:f1:09:fa:a4:7e:
58:cb:85:e6:da:ef:bb:74:c7:65:74:bc:46:5c:09:
d6:30:3e:44:89:60:17:53:d9:56:16:93:d9:c8:9c:
7d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:98:FD:AD:5D:03:76:5B:0C:D6:0F:3D:E3:6E:15:C7:F5:D4:75:D7
X509v3 Authority Key Identifier:
keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ad:87:59:c8:a4:4a:58:01:8b:34:1b:f6:32:a9:83:43:d6:74:
d1:86:a8:dd:8c:bb:f2:46:84:84:b1:bb:e5:b9:6a:63:9b:4a:
e3:8d:b7:0c:69:55:60:20:af:9b:13:32:32:91:b4:f4:d5:b9:
03:55:dc:d7:66:28:f4:4f:1e:60:63:35:20:a7:05:b8:57:83:
72:5b:fe:16:a2:86:b4:16:91:79:d0:14:55:ca:69:0e:49:9d:
54:f1:51:27:93:71:61:20:16:1c:d7:b7:73:a7:23:66:05:40:
ad:34:c8:92:ef:be:1b:ba:ae:c9:71:0c:c0:f0:26:f5:07:33:
b0:52:13:00:1a:e9:97:e9:f7:f8:71:83:56:ae:21:7a:bb:f0:
7a:0a:5d:bc:ef:d0:64:ad:5a:ba:64:a2:f7:0d:c3:be:a3:27:
a8:ee:e9:97:04:57:54:57:89:52:9d:48:62:b2:e9:2c:1c:5e:
c2:61:30:f7:20:74:28:f6:4b:da:0a:5b:03:8a:2b:7b:de:ab:
bb:29:e1:86:9c:39:29:15:32:7c:65:cb:db:97:3d:b6:8e:d6:
b9:a1:e8:5e:93:df:dd:d4:9f:03:f6:a3:e0:d5:21:d9:b9:94:
b5:29:b5:4f:ec:f1:4d:c7:69:1b:78:d3:4a:97:bb:bb:e1:4c:
f0:8b:b4:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:39:24 2026 by rpki-client