
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft
File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json)
Hash identifier: 0kTg97xcBAg0i1mHNPGYorVSJSpAqhPJGbKHUGAeP/Y=
Subject key identifier: E8:06:53:65:5A:5A:7C:11:AE:53:99:4A:8E:06:6C:41:C1:86:2E:E3
Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF
Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF
Certificate serial: 0650
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft
Manifest number: 0649
Signing time: Thu 16 Jul 2026 23:09:57 +0000
Manifest this update: Thu 16 Jul 2026 23:09:57 +0000
Manifest next update: Thu 23 Jul 2026 23:09:57 +0000
Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: PZITP8UGCW/90S7uuiPMCTxERkUZ3AbUfQgWsv3a3DI=)
2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: r63sbdb81aS0Y3D1jhysh8/CnvmDL9CRF/6oUTPKQNI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl
rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 23:09:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1616 (0x650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF
Validity
Not Before: Jul 16 23:09:57 2026 GMT
Not After : Jul 23 23:09:57 2026 GMT
Subject: CN=6a5964c5-e658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:71:92:38:6a:41:3f:43:4b:86:a0:d0:8a:f5:
57:e3:7a:c2:a9:1a:c7:bb:e3:9a:e4:c8:8b:32:79:
de:1e:4f:8d:cb:77:29:5e:fd:9f:6b:ae:7b:94:e0:
f2:9a:06:0d:61:ff:ee:3b:2d:c5:39:47:9f:a2:59:
d1:d7:7b:2b:71:cb:8c:55:6d:09:fa:ae:0b:70:3f:
cc:2d:ab:5b:1b:19:92:34:d5:b6:7b:d8:cb:0f:8a:
8a:df:89:80:11:7b:0c:0c:e0:1e:cd:67:d3:29:84:
63:cd:b4:1d:a1:bc:3d:08:06:e7:4e:79:94:2e:93:
53:e8:08:9c:1f:f4:07:1d:0d:f6:69:e6:29:8c:eb:
4d:42:eb:99:c5:b8:d6:63:54:be:6d:dc:ed:62:1a:
8c:c5:ac:80:47:22:c0:5e:20:b2:2b:e6:f5:3e:72:
4e:5c:0d:5c:6e:70:e9:c6:7b:1d:c6:53:43:d2:54:
31:0f:75:1f:9e:36:2d:bb:eb:c2:4c:ff:c1:0d:84:
61:d0:f7:21:43:69:96:fd:e8:6d:1d:1f:8a:c7:ec:
2d:8a:51:3e:2b:e9:8e:f2:e4:d8:fc:1c:aa:75:2e:
08:4b:99:ae:20:34:3b:11:81:64:0a:38:1e:1d:8e:
43:d6:87:53:36:f9:a8:a3:58:6b:23:38:3c:33:8c:
77:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:06:53:65:5A:5A:7C:11:AE:53:99:4A:8E:06:6C:41:C1:86:2E:E3
X509v3 Authority Key Identifier:
keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9f:c4:c0:78:1a:1d:49:80:c8:f6:74:f9:74:a0:d6:74:e8:79:
02:b6:00:76:88:f1:dd:45:16:30:dd:5c:8b:50:88:9b:c9:26:
a6:5c:04:ff:4c:5c:82:8b:b2:a8:0d:ba:03:0a:b1:86:8b:b9:
a5:b1:01:4f:ff:93:30:d7:93:58:d1:a6:1c:a4:7c:5f:35:54:
1f:fc:ae:3e:35:ed:94:a8:f4:4d:58:6e:18:d2:93:4f:c0:6d:
0a:b1:41:9e:19:2d:66:07:17:47:f3:38:d2:b9:61:ad:bd:0e:
e9:4f:52:52:4b:04:51:5f:56:ff:84:34:66:cd:8e:18:ea:ef:
5d:5d:61:00:4e:4f:f3:c4:77:36:d3:ce:4f:3f:7f:b3:fa:58:
8f:d9:0d:c6:5c:2b:15:96:3a:85:c9:56:be:ba:8b:93:eb:0a:
db:7e:da:18:56:8c:cd:b1:08:b4:24:42:c9:5b:a5:30:fb:1f:
df:11:c9:c4:c6:15:57:6e:03:79:ca:05:c3:5d:df:69:91:04:
ba:01:24:4e:b7:db:f5:f7:9b:2a:82:0e:1a:2f:85:be:6f:05:
c8:73:f2:22:99:55:af:7a:bf:20:4f:28:d7:58:c5:ef:a3:0a:
99:69:a2:13:ba:1a:3f:5a:bc:ba:c2:58:a2:c9:a3:f1:95:7d:
dc:28:3c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:17:19 2026 by rpki-client