
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
File: O0irhhZS-u7X4dElg_Frt_uyiRM.mft (raw, json)
Hash identifier: VcN6GcBnNd1ngAKphp7gQBioxIHmhXXvrZEbyT8HjTY=
Subject key identifier: 59:99:1E:59:BC:9D:89:F8:28:94:8F:55:4A:E1:01:FF:E9:1C:DB:D0
Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13
Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913
Certificate serial: 02E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
Manifest number: 02CA
Signing time: Fri 03 Jul 2026 01:53:10 +0000
Manifest this update: Fri 03 Jul 2026 01:53:09 +0000
Manifest next update: Fri 10 Jul 2026 01:53:09 +0000
Files and hashes: 1: O0irhhZS-u7X4dElg_Frt_uyiRM.crl (hash: j/Qcyi9RipT1HzDDW/fBAfyatrDYyUTejlWrQnZXVww=)
2: EDE89884DB1711EF8929832EC4F9AE02.roa (hash: ZAAc7Mnkor/okk5rhdONOcQdFtaHRUehKntnjNXP9g4=)
3: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (hash: 4a9piE3zoyvSIfp92HY2+LDrMoD2lXfFwMPpviHmbTA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl
rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 01:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 737 (0x2e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9176909, serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913
Validity
Not Before: Jul 3 01:53:09 2026 GMT
Not After : Jul 10 01:53:09 2026 GMT
Subject: CN=6a471606-5013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7d:d1:c9:ea:3c:3b:ef:1f:66:53:72:76:a3:
92:cf:23:b8:69:21:71:4a:89:50:88:ec:12:cf:7b:
be:0c:98:4c:85:8e:27:be:aa:c4:65:16:4d:78:d1:
ed:05:f2:2b:aa:e1:ba:02:ee:88:97:77:81:81:46:
c7:3f:9f:44:a1:f3:ec:54:28:88:63:4c:22:5d:fa:
bc:68:79:b6:19:92:44:8c:80:de:26:f1:b2:63:7c:
6f:e2:fb:fb:a7:fa:74:ae:33:a9:5d:e9:eb:72:8e:
a8:98:92:fe:e5:35:d5:a6:0a:75:02:e7:9b:0c:e6:
1b:cf:d4:be:6b:b9:a3:25:05:53:1d:40:34:76:a4:
42:33:94:f5:fb:29:a3:21:06:78:36:72:95:c7:c8:
5a:b0:a7:f2:01:ca:c0:13:12:17:45:20:cb:15:0d:
b5:5c:7b:7a:b3:86:cc:ec:86:7f:38:06:64:5b:5b:
5d:7d:e5:18:27:5c:b0:a1:27:3e:d2:e6:0f:51:f6:
4b:16:6b:51:ad:f6:61:8f:9e:a9:04:83:90:56:b2:
1b:59:5b:70:fa:cb:c6:7a:4c:7d:fe:4b:da:50:d7:
a7:69:b4:05:43:eb:76:3d:1a:9c:8b:5f:fb:44:f3:
88:0b:f8:0f:52:96:fe:69:c6:29:2c:a7:eb:d4:80:
cf:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:99:1E:59:BC:9D:89:F8:28:94:8F:55:4A:E1:01:FF:E9:1C:DB:D0
X509v3 Authority Key Identifier:
keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ba:b4:68:fc:e1:3d:ab:25:84:a8:df:19:f4:9d:0d:ed:e6:7f:
54:86:bc:26:87:5b:e7:84:5d:b9:8c:a1:93:bd:95:74:a0:34:
08:41:0b:63:a0:f2:ba:d5:84:48:b4:6e:b1:07:98:9a:a1:a5:
f5:cf:81:aa:f4:70:e8:5e:d4:5f:55:e1:52:7c:ce:52:66:aa:
2e:d0:20:72:c3:17:74:a2:ca:4f:ac:21:f8:0c:96:68:49:32:
65:72:fb:db:3f:98:2b:86:32:7b:8f:ab:e1:d5:e2:78:9d:b1:
78:ba:1d:2b:8f:95:1e:ec:4c:e3:02:ae:26:a6:ff:39:21:ad:
98:b9:8c:00:7b:21:f6:a9:2d:ac:cd:45:a6:96:bc:a2:d4:d8:
54:6b:cb:a7:cc:2b:b4:21:7d:6f:c2:cc:35:8a:12:c5:97:af:
f5:1e:ba:9a:05:48:47:4e:fd:15:1e:15:9a:b1:7b:db:8f:3b:
e8:47:18:dc:eb:b5:c4:75:25:1d:e4:ff:5f:d7:93:fe:69:ba:
8a:6f:ba:17:c9:91:67:b0:ec:c0:1e:33:b6:ea:8d:6c:67:fd:
d9:73:dc:86:a8:34:26:3e:a2:c9:e3:23:80:07:51:d3:c7:a3:
5e:9c:24:d1:dc:b1:10:e9:60:2e:80:8f:e2:fb:aa:f8:53:85:
03:68:5b:c1
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3
RkJCMjg5MTMwHhcNMjYwNzAzMDE1MzA5WhcNMjYwNzEwMDE1MzA5WjAYMRYwFAYD
VQQDEw02YTQ3MTYwNi01MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwn3Ryeo8O+8fZlNydqOSzyO4aSFxSolQiOwSz3u+DJhMhY4nvqrEZRZNeNHt
BfIrquG6Au6Il3eBgUbHP59EofPsVCiIY0wiXfq8aHm2GZJEjIDeJvGyY3xv4vv7
p/p0rjOpXenrco6omJL+5TXVpgp1AuebDOYbz9S+a7mjJQVTHUA0dqRCM5T1+ymj
IQZ4NnKVx8hasKfyAcrAExIXRSDLFQ21XHt6s4bM7IZ/OAZkW1tdfeUYJ1ywoSc+
0uYPUfZLFmtRrfZhj56pBIOQVrIbWVtw+svGekx9/kvaUNenabQFQ+t2PRqci1/7
RPOIC/gPUpb+acYpLKfr1IDPjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFmZHlm8
nYn4KJSPVUrhAf/pHNvQMB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE
Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp
Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
NjkwOS85QUJBQ0FDODREQ0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11
N1g0ZEVsZ19GcnRfdXlpUk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAurRo/OE9qyWEqN8Z9J0N7eZ/VIa8Jodb54RduYyhk72VdKA0CEELY6DyutWE
SLRusQeYmqGl9c+BqvRw6F7UX1XhUnzOUmaqLtAgcsMXdKLKT6wh+AyWaEkyZXL7
2z+YK4Yye4+r4dXieJ2xeLodK4+VHuxM4wKuJqb/OSGtmLmMAHsh9qktrM1Fppa8
otTYVGvLp8wrtCF9b8LMNYoSxZev9R66mgVIR079FR4VmrF724876EcY3Ou1xHUl
HeT/X9eT/mm6im+6F8mRZ7DswB4ztuqNbGf92XPchqg0Jj6iyeMjgAdR08ejXpwk
0dyxEOlgLoCP4vuq+FOFA2hbwQ==
-----END CERTIFICATE-----
Generated at Sat Jul 4 09:30:56 2026 by rpki-client