
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json)
Hash identifier: ojiNstuv0SqkbakJhNOvYgT5c1vS0TZaRPSV9lmw+p8=
Subject key identifier: 20:65:0D:9B:50:ED:0E:A0:C9:97:99:23:86:CB:C0:4D:2F:40:02:6E
Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D
Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D
Certificate serial: 0609
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
Manifest number: 0600
Signing time: Thu 16 Jul 2026 23:24:14 +0000
Manifest this update: Thu 16 Jul 2026 23:24:14 +0000
Manifest next update: Thu 23 Jul 2026 23:24:14 +0000
Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: TnonN0Pain60rXmNBhr9iPpLf3FN5vJsM1URFVi9bys=)
2: EC7B7E82DFD811F08F00FF64536F56BC.roa (hash: GBcRPAk26rh6dyuaJcennk1M9baT+ZU2RXBW85It44s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl
rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:24:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1545 (0x609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D
Validity
Not Before: Jul 16 23:24:14 2026 GMT
Not After : Jul 23 23:24:14 2026 GMT
Subject: CN=6a59681e-922a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5a:d5:89:49:d3:5a:b9:4b:99:34:e3:8a:99:
7a:8d:29:71:ed:66:48:38:e2:c7:19:12:1a:fa:7a:
e7:af:d7:46:d7:e4:34:4a:24:d6:51:bb:64:17:6d:
11:42:d7:39:36:98:72:f9:d4:83:3b:51:36:fc:85:
77:52:88:83:63:77:90:97:bf:0b:18:c4:f2:41:d2:
eb:06:47:e1:b5:45:0c:a5:a1:e8:c2:61:32:31:ae:
ec:b5:d9:7e:1c:0a:54:b3:80:00:0e:e1:94:50:57:
dd:59:9c:8a:d4:0e:b5:b5:ff:8f:6b:1e:6c:7d:7d:
3f:bd:09:66:dc:44:c7:f0:e9:6a:ce:96:17:f3:dc:
8d:a7:0f:ce:bf:2c:76:71:2d:e1:b0:80:c3:c7:7b:
1a:92:42:0e:b8:e1:27:42:6d:12:4a:f8:2a:f1:ea:
51:6f:01:cd:35:48:09:b6:4f:be:bb:dc:15:cf:09:
57:ce:fb:84:13:cd:e6:27:46:3a:1b:34:bf:fb:f0:
e0:42:47:d3:08:eb:29:19:eb:17:91:0c:cd:eb:49:
fe:de:54:5a:9f:ab:31:8c:ce:05:e5:79:60:9c:f8:
04:a6:28:8e:f9:b3:70:31:04:18:05:99:69:8a:da:
76:67:2f:66:cd:b6:7e:e3:23:83:79:da:fd:4a:08:
f5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:65:0D:9B:50:ED:0E:A0:C9:97:99:23:86:CB:C0:4D:2F:40:02:6E
X509v3 Authority Key Identifier:
keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:89:e1:d4:30:64:91:a4:b6:e5:af:09:a9:d3:af:f2:de:6d:
a8:c6:f6:cc:a4:80:6d:99:a9:b2:d4:b2:05:41:4a:13:7d:67:
57:3b:c4:d3:54:18:c3:1f:63:a7:f1:20:6a:5c:95:53:4b:36:
70:29:7a:81:a2:11:3d:87:ca:3e:4c:85:72:34:4e:12:d4:26:
7f:db:0e:e3:c3:f5:71:cb:65:93:36:aa:33:43:33:b0:3b:0e:
47:84:80:0a:76:d8:e9:c4:4a:46:d8:1a:7a:d3:64:2f:5c:37:
9f:1f:1f:e9:5e:fa:ae:e1:4c:e3:86:50:cc:73:96:c8:db:3a:
6f:52:98:f5:2e:db:a9:df:bb:f5:61:d6:61:01:2f:aa:a0:fa:
83:31:d7:58:7c:42:66:ae:e5:c2:fa:59:4c:95:1c:b4:a2:28:
75:8d:fa:d6:d5:8f:c1:f8:85:8a:72:5d:e9:f2:e4:e4:3e:1a:
72:18:1e:84:3a:59:bd:42:51:41:78:33:3f:e1:bc:78:c9:bb:
95:d0:9e:48:bc:67:03:aa:e4:4d:1c:8d:5f:fe:90:51:c6:d1:
e9:01:26:80:88:62:7a:4b:1d:3a:f1:47:3d:5c:e3:9e:26:57:
fe:9e:c5:de:7c:43:7c:6b:f0:b6:55:88:37:90:6b:92:28:86:
08:b6:e8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:46 2026 by rpki-client