
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft
File: g4-9CzleqQcGxsKJrCaw1zigQkE.mft (raw, json)
Hash identifier: SlosXNyKi6JFFWhE9UopYNRd1vCHt5guRh056u6/RvU=
Subject key identifier: 4C:2B:C5:E5:CA:24:30:69:91:37:AB:EE:37:18:B3:71:EB:F9:7D:67
Authority key identifier: 83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41
Certificate issuer: /CN=A917BB9A/serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241
Certificate serial: 0132
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft
Manifest number: 0129
Signing time: Fri 17 Jul 2026 06:58:59 +0000
Manifest this update: Fri 17 Jul 2026 06:58:58 +0000
Manifest next update: Fri 24 Jul 2026 06:58:58 +0000
Files and hashes: 1: g4-9CzleqQcGxsKJrCaw1zigQkE.crl (hash: 6AIzHR71igQ/NDHZJcknQ40qbJjbFZAqfWxy9pYhS1g=)
2: 0CBF3110D59011EFB76D6824C4F9AE02.roa (hash: YjXpPUbmw3AhrjvHC2ktn+1vhr7KJz4YOUKhnqHxCV0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl
rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:58:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306 (0x132)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917BB9A, serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241
Validity
Not Before: Jul 17 06:58:58 2026 GMT
Not After : Jul 24 06:58:58 2026 GMT
Subject: CN=6a59d2b3-37d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:36:df:fb:f2:f1:c1:bb:80:82:5c:df:4c:e2:
ee:f8:34:cb:54:39:85:71:77:96:06:74:a5:3e:b6:
9e:27:1e:18:4a:e8:d8:ee:f9:c0:21:e2:fb:e7:c1:
9f:2e:9d:5f:03:ef:4e:a6:b2:45:83:a9:2c:e1:7f:
56:e5:c2:f2:e8:cc:10:15:8d:ef:a6:a6:da:d6:ff:
f2:d0:14:59:06:55:dd:18:f4:0e:5f:0e:a3:5f:6e:
83:e4:1b:4d:77:e0:91:8b:f4:15:2b:c1:18:e6:3e:
0c:fc:0b:80:79:bf:27:7c:5f:c6:31:d8:e0:b3:dc:
59:03:31:df:a2:ce:35:c3:ad:b3:2a:fe:1c:19:1d:
cc:a8:b0:bd:ac:a3:17:58:1d:b7:e0:c8:ae:99:a6:
a8:5c:68:e8:0f:8e:5e:d2:bc:da:3c:ee:56:69:f9:
49:80:86:c6:27:84:90:9d:5d:77:12:42:f3:16:2c:
61:be:20:e1:9f:1c:4f:eb:80:f3:3c:fa:7a:78:df:
c7:35:b8:34:c4:6f:5c:e0:f4:64:f4:06:c6:e9:39:
aa:96:81:9a:7c:77:0d:d4:17:e3:62:fc:a5:81:e6:
19:04:f5:14:f4:2a:3f:46:fb:ae:a2:a5:d3:32:3c:
7e:b0:a4:b7:05:ee:26:c1:4c:de:d3:32:16:18:aa:
51:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:2B:C5:E5:CA:24:30:69:91:37:AB:EE:37:18:B3:71:EB:F9:7D:67
X509v3 Authority Key Identifier:
keyid:83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
e4:47:ae:91:0b:94:74:ca:7e:7e:35:a4:79:15:07:fa:34:98:
b8:6d:a8:fe:e4:93:3a:8f:ef:56:64:90:84:e6:00:08:d4:3f:
25:61:dd:7b:68:02:5a:cb:d1:60:6d:7a:4a:04:ee:bd:76:82:
1d:65:42:32:28:66:40:7d:d9:2d:62:6b:f6:32:7a:23:44:fc:
dc:84:e4:d6:89:0d:bf:4c:70:df:04:0c:c8:a0:4b:14:72:37:
5a:9f:44:c4:8f:fa:3b:0a:51:53:1e:f1:39:45:cb:06:50:91:
31:ee:5f:83:4a:90:1b:cf:d7:86:5b:54:f5:80:2e:10:f1:58:
8e:02:ea:32:b4:dc:ac:0d:ff:9e:17:9a:9a:1e:8a:6d:bd:52:
7a:16:13:1e:92:b7:2b:eb:4a:ec:66:e5:b2:fd:7c:b9:fa:ea:
b8:a7:18:79:31:59:71:25:5e:fc:59:97:19:b1:20:4d:4c:60:
d9:f1:64:52:31:8a:c7:a0:86:22:05:18:ee:8f:dd:67:e0:54:
d2:ea:22:d5:17:f9:4a:4e:0d:b4:18:4f:ae:78:5d:17:58:e4:
67:42:2a:c0:31:07:77:08:74:a6:bf:a0:95:d9:33:79:d3:e8:
dd:6f:50:6e:b6:b4:4f:93:58:eb:93:d5:00:c0:a7:98:5b:ac:
d7:61:62:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:48 2026 by rpki-client