
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json)
Hash identifier: cgdiAY1N9vzc23eamByrWw6jWeLNkBiJHX7FBV2B0M0=
Subject key identifier: C2:39:A6:FF:D8:37:B5:C8:12:1B:AD:D8:22:17:DC:6B:57:00:F5:A2
Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1
Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1
Certificate serial: 0B96
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
Manifest number: 0B8D
Signing time: Thu 16 Jul 2026 19:19:18 +0000
Manifest this update: Thu 16 Jul 2026 19:19:18 +0000
Manifest next update: Thu 23 Jul 2026 19:19:18 +0000
Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: jTwdVGljPnvwuQK2pmzBySXYKS+n369Fi9ihNDwfjTc=)
2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: ZatHv2sHyWRSC6zewOoWADYzth7DnWj+eG5J7PvU3G0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl
rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 19:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2966 (0xb96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1
Validity
Not Before: Jul 16 19:19:18 2026 GMT
Not After : Jul 23 19:19:18 2026 GMT
Subject: CN=6a592eb6-5b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c1:ff:9f:b7:48:31:b0:3d:42:12:98:47:fb:
7d:f3:49:ef:91:f9:52:06:ba:64:19:3c:e2:b8:2d:
e3:0d:ca:f2:6b:f1:d1:d5:f1:8e:1a:0c:1f:7a:51:
cd:cc:9c:5e:9e:3d:87:4c:37:d1:e9:1c:90:74:51:
80:9c:d8:65:50:8a:35:be:c7:48:3a:53:d3:55:48:
e3:92:b8:46:68:a0:47:42:97:9f:e7:54:ec:69:76:
66:cc:ea:16:9c:08:eb:f6:fe:bf:f2:4e:85:1e:02:
5b:21:0c:46:5b:33:9e:28:8e:e6:c4:58:40:69:df:
1c:08:5f:3b:c3:9e:67:0d:9e:7a:f0:90:51:92:e8:
a8:24:5e:6a:cd:60:5e:b8:49:48:d7:06:5e:b8:6d:
8c:95:56:32:56:dc:bb:2c:bf:7d:74:79:af:d3:d9:
2c:34:e5:b1:04:ff:d1:f8:d5:ef:1d:c8:9c:ea:c4:
8a:ef:7c:f6:13:2c:c6:b4:94:5d:fc:f6:ef:27:55:
9a:53:e6:cf:35:5f:04:fd:f9:cf:e5:5e:7c:6a:c9:
e1:fa:a3:5f:ea:87:68:17:be:5d:d4:b7:0e:32:bf:
ca:e8:f2:cc:d5:8e:2c:ee:f6:f6:bb:16:25:96:b4:
c7:20:48:0f:60:6a:36:05:44:6d:67:89:34:f5:81:
f1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:39:A6:FF:D8:37:B5:C8:12:1B:AD:D8:22:17:DC:6B:57:00:F5:A2
X509v3 Authority Key Identifier:
keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a7:0a:0c:78:68:51:53:7a:47:6f:9b:28:04:2c:8e:d9:63:ed:
e5:0b:5b:1b:a8:cf:fe:4e:1d:62:2a:b7:b1:77:8f:58:2c:2d:
b1:1d:be:e5:54:87:75:9f:2d:45:16:4a:28:cc:f8:b7:cd:85:
b5:18:df:4b:e2:3b:ef:9b:67:cb:4c:e4:c0:2b:1a:07:b1:da:
91:4a:d8:f5:16:d7:9f:63:db:19:40:90:39:2f:28:91:5c:13:
24:c8:f7:3d:62:13:7c:d1:cd:f9:b7:65:f6:68:86:4d:2d:06:
f1:8f:89:1d:3d:b7:d0:97:41:5c:ee:dc:2c:75:1a:6e:67:ff:
2a:28:b8:b7:77:3c:3f:6d:f2:f4:1c:0c:33:a4:91:0d:2e:47:
fb:20:a0:16:59:49:b8:96:15:f6:fd:61:8f:aa:40:e9:fd:2c:
70:af:ca:20:c5:28:b3:1c:d8:e4:10:df:bc:2c:5f:7a:e8:e5:
89:a5:06:97:5b:93:c5:e8:d6:bd:a5:79:21:3c:e4:43:b1:26:
68:cb:8a:cf:cb:6a:28:93:c9:e6:e7:c7:cb:60:86:a7:52:15:
8d:62:2d:48:a5:6d:26:32:87:d7:3f:8b:ff:d8:88:58:af:82:
9c:86:79:70:4d:e9:43:75:da:15:5c:99:28:0a:67:7d:9c:3d:
17:96:fc:a6
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD
QjcxQUIxQTEwHhcNMjYwNzE2MTkxOTE4WhcNMjYwNzIzMTkxOTE4WjAYMRYwFAYD
VQQDEw02YTU5MmViNi01YjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6MH/n7dIMbA9QhKYR/t980nvkflSBrpkGTziuC3jDcrya/HR1fGOGgwfelHN
zJxenj2HTDfR6RyQdFGAnNhlUIo1vsdIOlPTVUjjkrhGaKBHQpef51TsaXZmzOoW
nAjr9v6/8k6FHgJbIQxGWzOeKI7mxFhAad8cCF87w55nDZ568JBRkuioJF5qzWBe
uElI1wZeuG2MlVYyVty7LL99dHmv09ksNOWxBP/R+NXvHcic6sSK73z2EyzGtJRd
/PbvJ1WaU+bPNV8E/fnP5V58asnh+qNf6odoF75d1LcOMr/K6PLM1Y4s7vb2uxYl
lrTHIEgPYGo2BURtZ4k09YHxFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMI5pv/Y
N7XIEhut2CIX3GtXAPWiMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy
REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz
YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm
VVRZVkVJcFVSOHJMY2FzYUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEApwoMeGhRU3pHb5soBCyO2WPt5QtbG6jP/k4dYiq3sXePWCwtsR2+5VSHdZ8t
RRZKKMz4t82FtRjfS+I775tny0zkwCsaB7HakUrY9RbXn2PbGUCQOS8okVwTJMj3
PWITfNHN+bdl9miGTS0G8Y+JHT230JdBXO7cLHUabmf/Kii4t3c8P23y9BwMM6SR
DS5H+yCgFllJuJYV9v1hj6pA6f0scK/KIMUosxzY5BDfvCxfeujliaUGl1uTxejW
vaV5ITzkQ7EmaMuKz8tqKJPJ5ufHy2CGp1IVjWItSKVtJjKH1z+L/9iIWK+CnIZ5
cE3pQ3XaFVyZKApnfZw9F5b8pg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:41 2026 by rpki-client