
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json)
Hash identifier: Jq+zDfhtyqle93lVRfCHnQD/N8a5x+O5X8Ryt8reNoE=
Subject key identifier: BA:BE:0A:AA:9B:81:02:76:01:D9:D6:B3:46:45:84:1E:25:28:38:39
Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57
Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957
Certificate serial: 2C3F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
Manifest number: 2BEA
Signing time: Thu 16 Jul 2026 15:36:41 +0000
Manifest this update: Thu 16 Jul 2026 15:36:40 +0000
Manifest next update: Thu 23 Jul 2026 15:36:40 +0000
Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: p0BkfTHW4Cd1u9jSB2bt+iJ6x5LYyaxMVJukXopjC8s=)
2: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: e0sKc/3PzukaFrJycUXB6K4Zrj8DGKsFURALFcSQcVU=)
3: 994EDA7E477011F19156235992833773.roa (hash: cW3AAUhFV3UrR438cEqC9lCUETRlljc4Il2HXpHaPiI=)
4: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: Eo31vAFnAsF5u9q6EjT+7W+u7j0+BA8u4cDp5rL/syM=)
5: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: KdnM+2nBmwCpA+MGMHO0Bl1xzd46blXEMYh3gkA7MWA=)
6: A2842DA6E07D11F0A337A81D3B6F56BC.roa (hash: BXRFGNYuity9lTYV79AbAsykkMdd6+n6EZ7PrTkQhsk=)
7: 67651980457511F1A878DB0BB4833773.roa (hash: GjVTK2ytg9BrTHoilrkMS80z8PqnneVdCKJsJLnsMTU=)
8: E8573BE8F1C111F098487417396F56BC.roa (hash: F0Fv187N1RGFhEEbx/oMjZ1udUPLSoWgSQeuKM9bGms=)
9: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: 80yPdyzDWGKZGoqPlrkXe6z7oxzuh7a6qYo6nHURbRI=)
10: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: lwhgxQ+LgrJn47zyUAnLsM4ouCqlk1HX6qTOZMFb/HM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl
rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 15:36:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11327 (0x2c3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957
Validity
Not Before: Jul 16 15:36:40 2026 GMT
Not After : Jul 23 15:36:40 2026 GMT
Subject: CN=6a58fa89-51c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2c:54:65:c9:5b:f3:d3:24:58:93:34:6a:a9:
ab:f9:e2:be:18:63:b8:16:a1:fa:58:e2:be:6c:11:
19:0c:98:04:6d:34:26:51:5c:99:dd:d5:d8:78:7c:
62:23:d0:0c:3d:cd:7a:8c:c5:4d:0d:18:b3:45:53:
29:84:4f:3c:46:9c:82:41:ba:5c:d8:82:43:05:48:
a5:27:a4:95:78:f5:6b:80:df:1d:fb:c9:9c:9d:f5:
fc:c2:0d:e9:18:fa:f6:a5:6a:70:e5:81:7a:8b:d9:
15:20:e9:6c:84:01:cb:ca:07:18:78:fe:ed:2d:cc:
89:eb:07:65:4c:2d:64:06:e1:22:c9:59:f5:f4:ee:
6a:bf:c2:e4:43:1e:5a:1a:22:ab:f4:2b:23:45:6a:
86:33:47:3b:bf:ff:5f:80:cb:b7:00:be:3c:c4:a3:
9c:8c:54:2e:fd:76:f9:ab:7d:eb:ab:27:f2:cf:dc:
cf:30:47:07:8d:80:0b:b4:84:c5:5c:e6:da:96:21:
a0:b6:46:e8:61:27:cc:d8:7c:76:a0:d1:9c:18:ad:
f4:4f:b9:8d:bc:71:94:80:b2:7b:9d:8c:62:0f:af:
f6:22:34:25:f9:1b:56:f5:7b:14:de:9f:f6:cc:93:
86:3d:c7:ce:e7:80:4a:54:b1:4e:e5:70:ee:1a:c2:
96:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BE:0A:AA:9B:81:02:76:01:D9:D6:B3:46:45:84:1E:25:28:38:39
X509v3 Authority Key Identifier:
keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7e:a1:3e:45:d3:2b:a5:fd:3a:23:56:26:02:18:3b:41:a3:9d:
bc:a7:b7:64:1e:b5:dd:4d:9d:88:9f:c1:3b:55:a2:8e:ee:2a:
6b:9c:1b:6e:13:e9:ce:ba:fe:cc:2b:f0:76:78:3a:7e:5b:d8:
5a:97:a3:a0:c5:4b:14:0b:a5:7d:75:20:66:49:68:a2:50:1a:
94:bb:5f:a0:79:1c:59:34:14:49:3c:c9:89:e4:9a:28:53:9f:
d4:2e:69:e3:b1:7a:b7:9f:57:7a:81:47:3b:30:36:32:8c:5b:
7e:7a:59:af:4e:b5:45:72:ee:97:0c:06:ab:87:67:57:53:d1:
a9:6f:6f:d5:11:e9:18:47:f6:9b:f9:b9:4d:f6:97:f2:86:da:
b0:3b:93:6c:19:48:9c:e4:16:0b:a5:6c:dd:d8:dd:64:ae:be:
44:8e:7f:42:9b:2c:2b:ed:74:d0:15:67:73:18:41:4e:94:48:
6b:d7:f7:82:cd:76:b2:8a:72:e9:b8:3e:9f:2e:2d:2b:7d:bc:
1d:ea:fe:f2:82:a7:2d:37:53:a0:95:48:cc:65:9e:b9:3b:f0:
15:40:22:9a:6c:03:be:7f:5d:e3:04:f0:2f:cc:4d:82:f9:78:
b3:4f:0d:76:67:8f:bb:91:bc:71:2d:65:28:6b:fd:8a:5e:d9:
8f:3e:4f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:44 2026 by rpki-client