
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json)
Hash identifier: mgy903/PW6nYu6QltpgHu8cqRel9XCEIkxat9dc6m2c=
Subject key identifier: 9A:D3:14:A8:39:78:78:0D:B6:3B:15:CC:B7:F9:FF:1D:DC:D0:23:DD
Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA
Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA
Certificate serial: 02BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
Manifest number: 02AB
Signing time: Sun 05 Jul 2026 02:09:26 +0000
Manifest this update: Sun 05 Jul 2026 02:09:26 +0000
Manifest next update: Sun 12 Jul 2026 02:09:26 +0000
Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: rPuYOqozf5CTR6gaeQnhX3cUIYG2zm9XduRg6Z03/cY=)
2: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=)
3: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=)
4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl
rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 02:09:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 700 (0x2bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA
Validity
Not Before: Jul 5 02:09:26 2026 GMT
Not After : Jul 12 02:09:26 2026 GMT
Subject: CN=6a49bcd6-a7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:4f:a6:88:eb:26:03:c1:cb:9a:34:c5:b1:
0b:d2:cf:7d:dc:63:69:81:76:69:1f:f4:77:81:73:
40:2b:c0:a6:31:74:ce:2b:b4:e6:b3:9c:c3:09:6e:
07:ec:87:ce:05:dd:ee:53:48:ae:52:06:a0:11:56:
73:d3:8b:d8:df:dd:9b:fb:29:1b:0f:ab:68:73:f5:
02:03:87:66:1f:97:69:35:80:26:26:91:d4:99:24:
8c:a4:58:4c:db:33:c6:5c:55:33:95:5b:ff:47:e9:
7b:2f:e2:f4:62:52:0f:03:ea:b4:82:24:d1:30:b3:
9f:69:cb:68:8c:83:46:d4:44:eb:88:8f:05:16:d3:
1c:48:23:00:cc:e9:25:ad:05:1d:a9:0c:bd:35:cd:
09:a1:f9:6c:99:c0:a1:06:23:98:38:d5:b2:63:d1:
83:7a:3b:b4:d2:24:d8:06:39:01:61:fc:6e:2b:88:
e0:c8:3f:29:f2:d8:23:be:26:1f:38:67:ff:5b:a5:
5a:32:f5:15:ce:5b:24:eb:2d:12:aa:0b:89:0e:f8:
fb:09:0b:da:78:6d:1e:70:7a:8f:3d:44:7d:b9:e2:
01:ae:ad:9c:4a:0d:a6:a2:35:cb:32:05:16:1f:ef:
96:fe:5c:4b:37:52:c7:0a:61:52:f3:19:3b:b0:a2:
09:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D3:14:A8:39:78:78:0D:B6:3B:15:CC:B7:F9:FF:1D:DC:D0:23:DD
X509v3 Authority Key Identifier:
keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
de:37:b9:e8:12:a9:e0:fa:4a:fa:aa:6f:3d:35:00:42:08:33:
c0:7c:55:cd:6b:6c:28:eb:58:c1:8f:97:b3:2f:57:cb:7e:e4:
92:48:a9:94:09:ba:06:ea:5f:41:14:c5:f5:83:a3:f5:4e:57:
0c:69:b5:cf:f4:b8:8c:5b:47:d9:ff:cd:d9:d6:12:7b:42:cb:
29:55:39:6f:e4:24:97:12:4a:e4:dd:4e:56:ad:2d:b5:47:7a:
1e:7f:78:cd:2b:9c:d9:45:df:5c:7e:bc:7c:f4:84:05:3b:cb:
fc:5c:d2:35:ba:21:84:80:b5:ed:cc:31:23:f0:b6:30:ad:cc:
da:2e:69:e9:6d:58:8a:4e:75:48:b6:dd:34:d4:4e:cd:9f:b0:
98:ef:39:6d:90:78:9a:f3:8e:a7:b9:c0:48:40:e1:f2:ef:65:
62:a8:69:43:e9:6e:57:46:86:7f:f8:9b:93:cd:ba:b1:c9:58:
93:da:dc:e8:61:34:6b:b2:78:6e:78:d2:4b:4b:e4:9b:29:dc:
4d:a8:bc:62:4c:96:32:95:12:2a:e4:f2:e7:b5:fe:95:aa:34:
41:c7:61:b8:a8:34:4a:99:93:89:22:a7:0a:77:0b:8b:2a:f3:
35:4f:e5:63:b1:03:38:60:95:32:c2:97:a9:79:11:2e:c1:8b:
41:f4:39:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:14 2026 by rpki-client