
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft
File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json)
Hash identifier: MtOkYIZzAfK7s6ECeBQc2Z/HN7dc9u+alIZB0Jr2NmQ=
Subject key identifier: F5:04:6B:59:DD:83:36:AC:F6:5D:B7:2C:96:71:E1:A6:8C:9D:D9:8D
Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9
Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9
Certificate serial: 0257
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft
Manifest number: 0251
Signing time: Sun 05 Jul 2026 02:52:44 +0000
Manifest this update: Sun 05 Jul 2026 02:52:43 +0000
Manifest next update: Sun 12 Jul 2026 02:52:43 +0000
Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: b2ceT9wbwSF8iBuiFgZcO6H9h8H6thvTStQDjhBvK1s=)
2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: 96xubeejwotb/hrUfi/Ps7KKGla8pOPnZEA9PFgwYCM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl
rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 02:52:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 599 (0x257)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9
Validity
Not Before: Jul 5 02:52:43 2026 GMT
Not After : Jul 12 02:52:43 2026 GMT
Subject: CN=6a49c6fc-a41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:12:9b:9c:80:8c:00:87:99:03:1d:e5:b1:
01:c3:38:8d:82:d0:03:54:49:25:15:14:cc:d7:65:
bd:53:37:25:9f:6a:42:7f:23:37:40:7d:92:b2:80:
db:b1:fc:d6:35:35:a5:cf:20:f8:89:b5:42:9d:e3:
d2:cc:51:8c:4b:b7:6c:a9:44:4a:13:0d:36:50:34:
82:c8:59:3f:8e:8d:74:ab:7a:17:ca:5e:a1:e3:82:
bd:dd:18:c0:7b:cf:4f:92:15:83:4e:7e:36:17:e9:
2e:39:59:a2:a1:c8:b7:31:15:ea:18:30:df:11:5d:
c2:61:5c:0b:a1:c8:50:8e:34:f0:29:5a:db:89:48:
5e:6a:bb:b0:f9:17:2c:64:47:d0:b9:96:eb:80:57:
5a:44:df:93:16:fa:14:ed:10:c5:ed:01:1d:17:a6:
00:e7:73:c0:68:7a:09:b5:05:0e:1e:2c:0d:e0:c9:
d6:38:cd:30:e0:f8:2a:61:c2:77:fe:67:f8:d0:74:
3b:3a:b5:d4:8a:81:60:b8:ca:b5:ed:a7:b7:ab:3d:
5f:93:8d:20:7a:1f:a1:b9:b8:14:af:a0:39:4d:b7:
08:0c:f4:7f:d2:bf:57:bb:89:96:8d:a0:40:55:92:
b5:1b:8b:55:b0:51:1f:ff:48:74:db:0e:db:e2:89:
16:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:04:6B:59:DD:83:36:AC:F6:5D:B7:2C:96:71:E1:A6:8C:9D:D9:8D
X509v3 Authority Key Identifier:
keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:49:80:e8:3e:ed:2c:b5:0b:3c:f3:5b:de:fc:d9:18:8d:eb:
f9:c8:ae:89:74:55:9d:82:81:30:1f:41:ae:f3:8f:f1:5e:c2:
e8:04:ce:4e:d0:31:d7:f8:8c:5a:04:ab:3b:3c:63:aa:f9:bc:
4c:2b:23:23:e6:ee:f0:f1:d0:e7:5c:2d:96:54:bd:6c:56:90:
49:cb:8b:ed:45:2f:84:4a:8b:51:0c:b7:e1:25:91:a8:aa:14:
bd:ed:12:c2:de:71:78:d8:fe:25:f6:99:0e:3b:b3:08:bb:ff:
eb:a0:a6:55:05:e2:c6:98:3a:4f:c9:0d:35:96:a4:69:9b:69:
de:6f:5f:f9:27:91:90:f7:e3:eb:25:9a:8e:af:bb:77:fe:df:
2e:50:a7:72:a7:0b:0b:e0:17:ba:35:4e:79:27:a2:14:d1:85:
d8:70:59:57:50:f0:6f:06:63:48:76:bc:00:6b:6d:67:90:48:
f3:f6:ea:72:0c:81:8a:7c:73:78:83:ed:4e:96:b3:99:6a:5d:
d0:0c:86:4d:fe:6f:b4:14:83:6a:7c:95:ca:c3:52:18:7f:75:
f6:87:a6:55:6d:22:4c:57:38:1e:db:d7:f9:bc:ba:18:8b:c8:
32:99:eb:15:65:89:1c:bd:4e:3a:45:1a:0f:30:a0:35:cd:16:
5a:47:08:b7
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3
OUJDNjk5QzkwHhcNMjYwNzA1MDI1MjQzWhcNMjYwNzEyMDI1MjQzWjAYMRYwFAYD
VQQDEw02YTQ5YzZmYy1hNDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvBsSm5yAjACHmQMd5bEBwziNgtADVEklFRTM12W9Uzcln2pCfyM3QH2SsoDb
sfzWNTWlzyD4ibVCnePSzFGMS7dsqURKEw02UDSCyFk/jo10q3oXyl6h44K93RjA
e89PkhWDTn42F+kuOVmioci3MRXqGDDfEV3CYVwLochQjjTwKVrbiUhearuw+Rcs
ZEfQuZbrgFdaRN+TFvoU7RDF7QEdF6YA53PAaHoJtQUOHiwN4MnWOM0w4PgqYcJ3
/mf40HQ7OrXUioFguMq17ae3qz1fk40geh+hubgUr6A5TbcIDPR/0r9Xu4mWjaBA
VZK1G4tVsFEf/0h02w7b4okWJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPUEa1nd
gzas9l23LJZx4aaMndmNMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw
OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt
Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj
VmFlc3lnaksyeWg1dkdtY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAm0mA6D7tLLULPPNb3vzZGI3r+ciuiXRVnYKBMB9BrvOP8V7C6ATOTtAx1/iM
WgSrOzxjqvm8TCsjI+bu8PHQ51wtllS9bFaQScuL7UUvhEqLUQy34SWRqKoUve0S
wt5xeNj+JfaZDjuzCLv/66CmVQXixpg6T8kNNZakaZtp3m9f+SeRkPfj6yWajq+7
d/7fLlCncqcLC+AXujVOeSeiFNGF2HBZV1DwbwZjSHa8AGttZ5BI8/bqcgyBinxz
eIPtTpazmWpd0AyGTf5vtBSDanyVysNSGH919oemVW0iTFc4HtvX+by6GIvIMpnr
FWWJHL1OOkUaDzCgNc0WWkcItw==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:28 2026 by rpki-client