
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json)
Hash identifier: DZ52Iz1aefJ3114bsLbZjA6MHzt0yF5aznKL9o9pSGg=
Subject key identifier: 0A:61:29:74:D4:DB:38:E2:B5:49:6F:8D:2D:7E:58:47:D7:52:9A:F4
Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86
Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286
Certificate serial: 0731
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
Manifest number: 072B
Signing time: Thu 16 Jul 2026 14:48:34 +0000
Manifest this update: Thu 16 Jul 2026 14:48:33 +0000
Manifest next update: Thu 23 Jul 2026 14:48:33 +0000
Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: O34N/Ihb++FCPBzdhlojwVGrpqtdMNzQoQe+x1s8LnU=)
2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: nifz0lZY0B16BBA+MbGH96xeil4xf4rsxF/RU1Jcvug=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl
rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 14:48:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1841 (0x731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917D4C4, serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286
Validity
Not Before: Jul 16 14:48:33 2026 GMT
Not After : Jul 23 14:48:33 2026 GMT
Subject: CN=6a58ef42-5ef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c9:ee:bb:a2:cd:31:83:0d:05:e3:11:ce:5f:
f9:73:c0:83:a6:17:af:d3:e5:bc:6f:ba:97:f8:a2:
0d:91:20:a3:7b:66:a4:c4:15:e6:96:e8:4f:f5:a4:
d4:79:f5:17:ae:69:04:1b:89:5c:19:3a:27:d5:5f:
31:a8:8d:c5:90:0d:35:23:1c:db:e0:8a:f0:f2:f9:
89:64:9b:0f:fa:34:f0:74:80:05:d8:20:fc:ca:00:
84:97:d8:50:f2:7d:11:cf:56:59:ed:96:62:3c:11:
4b:56:1f:a2:66:46:1c:44:7a:ae:87:8f:59:f7:c1:
e1:14:62:c9:03:e0:61:e8:b4:d1:e3:77:4d:23:6d:
4b:09:67:49:4e:11:e3:9f:27:a6:3b:8f:5e:12:12:
16:10:9d:af:03:01:47:c1:19:65:69:26:59:ce:86:
2e:86:ae:af:2f:c5:16:d8:47:74:13:7a:15:cf:f4:
ee:cf:7b:65:ac:99:b3:d6:6c:31:f7:8b:5d:5b:99:
af:f7:fd:66:15:41:6a:a7:1e:4b:f3:e0:36:dd:9a:
ac:62:56:cd:26:88:80:40:55:a4:15:a2:46:7b:57:
bb:88:db:55:2b:fa:36:5b:44:35:94:c1:a0:38:8d:
24:59:fb:d1:1a:59:48:87:8c:16:63:7a:40:bd:11:
6c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:61:29:74:D4:DB:38:E2:B5:49:6F:8D:2D:7E:58:47:D7:52:9A:F4
X509v3 Authority Key Identifier:
keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c3:43:77:fc:c2:6f:bc:23:61:1e:f0:f8:f2:1e:b6:4d:69:2e:
bb:3f:44:15:d1:1a:83:16:f6:ea:b4:b9:de:3f:76:28:2c:b3:
e2:a8:a3:a5:a2:89:53:a6:c9:4c:f4:cb:87:5a:2a:81:c7:92:
2d:04:d6:cb:c6:1f:c6:c4:af:d4:e5:b3:48:32:fb:d5:ff:92:
c4:1e:ca:44:eb:a6:90:f6:ed:62:22:be:8b:bb:86:eb:8d:f2:
7a:e5:ac:e3:6f:27:19:13:8b:46:d2:e6:fa:25:8f:01:93:47:
c9:91:68:0b:b9:ab:a8:fc:a1:96:2b:14:30:cd:d8:79:92:d4:
10:e7:99:06:bb:0c:1a:a8:82:3a:30:82:69:81:9b:63:f3:c3:
6a:d5:b0:8c:cb:be:cc:fc:b7:29:b4:67:41:67:1c:0f:16:bd:
a0:83:f1:ec:01:db:48:f6:05:28:b8:5d:d9:f3:1c:af:5e:16:
0b:f5:32:d9:9a:09:3b:04:ca:f9:aa:88:fc:ba:e4:3f:15:eb:
1c:75:75:50:5b:bd:70:42:16:13:1d:84:a6:b9:81:d8:21:02:
af:3c:7d:9d:b3:9b:24:57:b9:b2:b4:16:b5:e0:cd:75:42:aa:
3d:20:5c:f4:d0:f8:cb:f1:48:65:12:af:39:06:c9:ad:5a:90:
86:f1:22:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:31 2026 by rpki-client