
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft
File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json)
Hash identifier: sHPDsHASNSJ2P6IHmfhsyrLMsaeYQ/eveDJUVj9ciI0=
Subject key identifier: 19:27:26:79:55:19:F6:F4:39:03:8A:0E:F3:AC:DE:9D:4F:64:4E:EC
Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A
Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A
Certificate serial: 3578
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft
Manifest number: 3566
Signing time: Thu 16 Jul 2026 14:26:15 +0000
Manifest this update: Thu 16 Jul 2026 14:26:15 +0000
Manifest next update: Thu 23 Jul 2026 14:26:15 +0000
Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: N4gxiWOf7XsVj11Fsfjsi/XrztAnENdY3LBiD9f6TQw=)
2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: TYTool8z77Qm0uVA+1XtSBmD4W/ew0FLlQD2j6h3SPU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl
rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 14:26:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13688 (0x3578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A
Validity
Not Before: Jul 16 14:26:15 2026 GMT
Not After : Jul 23 14:26:15 2026 GMT
Subject: CN=6a58ea07-cbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e1:94:8a:21:1c:ca:40:17:b7:84:4a:a6:14:
a2:b8:b3:b3:80:82:00:9a:57:46:9f:20:46:27:7a:
05:ba:1e:24:7a:f1:7d:d6:95:ef:9d:77:38:89:a0:
07:a4:3e:c6:9e:95:2c:41:06:56:b2:8d:fa:73:a2:
1f:e9:90:05:a1:f5:58:01:ce:93:b4:b6:4a:b7:b8:
5e:47:4f:9c:c2:21:32:64:d1:80:fa:09:04:31:05:
0c:1b:b0:e8:a3:2d:47:cc:85:26:69:28:ec:83:ed:
8b:f9:c4:9d:c6:13:bb:9f:13:d6:13:95:8e:20:1c:
70:58:f2:ca:ca:59:0f:46:a3:9f:8a:0f:dc:16:bd:
46:d9:54:88:46:61:ea:d5:1a:db:08:5f:fa:f1:a7:
e5:2e:b2:7f:2d:06:67:d4:7b:d2:db:85:56:a2:b1:
9b:be:c0:53:57:68:85:f7:59:39:49:65:7a:67:1b:
27:df:75:09:02:80:74:d4:b7:a8:cb:dd:6a:3e:f0:
ba:a1:1d:ba:12:2f:9c:11:7b:67:45:c1:0a:c7:67:
87:75:3b:7b:b8:50:9d:87:06:c1:e6:5b:f9:bb:ce:
00:97:8a:60:53:2b:fe:05:e1:11:ee:0e:f0:1d:69:
58:14:88:8d:ef:0b:ba:0c:4d:98:aa:67:29:50:9d:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:27:26:79:55:19:F6:F4:39:03:8A:0E:F3:AC:DE:9D:4F:64:4E:EC
X509v3 Authority Key Identifier:
keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:39:96:70:71:f3:34:06:ef:02:47:2a:3b:c8:d5:d9:0e:f7:
ee:98:cd:7c:37:e4:ac:6a:d2:94:66:28:41:7c:c6:ad:db:67:
ca:bd:b1:2f:15:da:79:9a:ac:12:b4:9a:9a:0b:fc:22:25:a4:
cf:d6:6f:90:2e:fa:f4:f5:ad:de:07:3d:4f:ed:48:b2:a3:21:
36:8f:15:cd:65:cd:aa:7d:d6:28:f5:40:cc:05:02:1c:c2:6c:
81:74:9f:68:4a:3c:ad:9c:f8:64:5e:1b:2b:12:0a:e5:b6:56:
52:08:b6:d1:a4:ba:fb:06:d7:30:85:7e:15:a3:83:47:2f:ed:
8c:ed:e2:37:c3:85:35:fb:0e:b6:a6:5a:3a:cc:68:ec:89:ba:
fd:f1:61:e9:18:94:c7:03:83:d6:6e:02:0d:68:70:a8:9f:ac:
a5:40:9a:04:05:61:e8:ad:3a:61:d2:bb:46:b9:9f:0d:52:73:
7f:ea:72:ee:ad:86:51:14:85:ad:5e:b1:9b:33:7f:c5:25:f7:
a7:c6:87:56:6e:95:11:e3:17:0b:17:24:92:5d:a3:06:74:4a:
52:86:4d:af:a2:3e:f3:a5:10:c8:77:3d:82:b3:0d:d0:2c:42:
f6:ab:09:94:73:b2:cc:71:aa:5a:f7:c4:a6:61:a8:3f:87:24:
30:7e:b8:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:05:05 2026 by rpki-client