
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
File: HgqTik3H07rU9fll3NVeCymMQts.mft (raw, json)
Hash identifier: ubRY/UCM7KQpkV7xSdat3Vps48gyJAFyhFdNVmtvEJo=
Subject key identifier: 36:63:E4:D7:73:81:41:46:A6:8C:6F:4C:92:AB:5C:4C:65:78:7B:A6
Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB
Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB
Certificate serial: 0ED3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
Manifest number: 0EC5
Signing time: Tue 14 Jul 2026 17:46:22 +0000
Manifest this update: Tue 14 Jul 2026 17:46:21 +0000
Manifest next update: Tue 21 Jul 2026 17:46:21 +0000
Files and hashes: 1: HgqTik3H07rU9fll3NVeCymMQts.crl (hash: KMIumtmGgeVfSDutEw5/8EcfROxgUrGqqgeihyIMM4c=)
2: 7592203EB1B111E999187E66C4F9AE02.roa (hash: FPxJw4sExbccVQ2M9hVDSe9NeO0aMI9+xaKlLCWTwe8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl
rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 21 Jul 2026 17:46:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3795 (0xed3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9174A4F, serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB
Validity
Not Before: Jul 14 17:46:21 2026 GMT
Not After : Jul 21 17:46:21 2026 GMT
Subject: CN=6a5675ee-cc52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:dc:29:13:5e:d6:ea:89:cc:63:47:c1:37:29:
6a:e6:b6:5e:ae:53:a1:e2:55:9e:e2:81:ce:bb:8a:
1b:15:3b:d4:dc:3e:ec:16:f4:0a:41:3a:c1:90:10:
4e:df:0f:19:de:ee:14:eb:cb:3e:3b:54:44:a4:f7:
96:97:14:0e:3d:21:5c:99:0c:e9:2f:84:e2:2f:a2:
7d:69:62:bf:e2:37:b0:ab:fd:25:ab:be:fb:41:43:
07:cc:c0:47:49:e6:8d:e6:20:10:5c:cd:03:d5:47:
54:1a:91:8f:bb:d6:f3:83:7e:c4:ee:65:a2:36:d9:
2d:e6:3f:70:03:3c:fa:73:28:6a:b3:e1:30:ae:d1:
86:9a:93:8b:f6:75:7b:16:a2:97:a6:e9:aa:c9:72:
af:9c:a1:cf:b1:9f:01:86:43:a7:44:43:f7:c2:7e:
ec:ec:d4:4d:6a:4c:2e:b8:23:f2:b1:29:7d:c7:89:
a3:50:3a:64:61:9a:0c:a0:be:e9:03:bd:0e:40:8c:
f4:09:ca:e8:96:35:48:bf:ea:96:ab:c7:55:21:ff:
3c:70:1c:08:e4:ed:05:23:61:63:a9:87:c8:e5:7e:
33:44:a5:d1:97:cc:05:c1:5c:98:68:6f:4e:73:06:
5c:fe:15:ce:61:b6:75:2a:0b:3d:ed:28:27:4b:b9:
32:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:63:E4:D7:73:81:41:46:A6:8C:6F:4C:92:AB:5C:4C:65:78:7B:A6
X509v3 Authority Key Identifier:
keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:11:03:e3:21:a2:9d:e7:cd:98:7f:60:a4:3a:33:c2:a3:50:
1e:39:62:21:ed:5b:68:ee:53:7e:94:47:f6:83:44:d5:34:04:
ec:6b:e4:f5:b2:1a:63:9a:15:c8:0f:ee:71:01:ec:ab:65:68:
2e:05:e7:d1:83:55:9d:c2:04:9b:b4:a2:64:b8:90:4f:2b:d5:
47:0c:24:f3:a8:61:61:b6:2f:b6:df:62:5b:a7:da:58:19:23:
0d:af:0f:32:f4:4d:35:b4:45:f1:85:96:4a:84:0d:4c:cc:af:
24:d2:9a:57:47:30:aa:68:30:5f:5b:19:d3:68:30:32:76:a1:
e5:ef:86:27:b4:3f:55:ab:b6:11:5d:60:03:ea:ad:a0:1f:11:
8d:9d:2d:cd:10:aa:3e:bf:aa:e4:21:ce:2e:49:5f:e8:77:6e:
9a:b4:ed:a0:2e:b8:8d:cf:15:20:73:5f:73:f8:ab:6e:7b:97:
de:dd:68:b1:62:60:1b:c4:3a:1c:52:da:4c:fe:19:8c:06:c3:
ae:67:16:e9:68:0e:b5:8b:60:63:42:27:c6:19:ef:2b:35:49:
97:ca:c2:5a:35:5c:cd:da:a1:1b:17:54:57:a7:00:3a:4f:07:
5a:d8:3b:19:cb:72:eb:22:4d:ad:cd:42:0e:f7:28:53:de:5b:
c3:ba:94:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 10:20:03 2026 by rpki-client