
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json)
Hash identifier: iRaEnkLn7TwF1R8ckzNlnVoOUNPFav76p4s+gfcgIe0=
Subject key identifier: D5:E3:DF:65:42:5C:CE:91:41:B0:78:A2:9E:5C:C9:98:14:AD:75:89
Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A
Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A
Certificate serial: 0CE3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
Manifest number: 0CD2
Signing time: Thu 16 Jul 2026 18:37:54 +0000
Manifest this update: Thu 16 Jul 2026 18:37:54 +0000
Manifest next update: Thu 23 Jul 2026 18:37:54 +0000
Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: RIUTK63YezHeHwjd94DFZTGggd22HfLObqHzR3O1+mQ=)
2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: 8Kzq8ge3wSUVu+VYpnFOyTT3NcPx0P4ByioHfNwqHSQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl
rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:37:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3299 (0xce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A
Validity
Not Before: Jul 16 18:37:54 2026 GMT
Not After : Jul 23 18:37:54 2026 GMT
Subject: CN=6a592502-8d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:99:7e:00:55:55:9f:e1:4a:48:2d:9a:00:5b:
b6:91:c6:e8:43:2e:73:36:0b:81:fb:5f:b7:48:c4:
f8:9c:c4:11:70:a1:97:4f:04:5c:70:8e:56:25:8b:
c8:ab:a6:f4:a8:03:0b:5c:70:2b:b0:6e:b6:e0:0b:
76:36:23:9e:2a:78:4b:d0:74:e8:42:88:72:88:c4:
06:4a:ce:b3:52:7f:95:81:ce:c6:ff:17:43:fb:2b:
37:2f:8e:50:28:f2:73:17:4b:18:a3:cf:d0:9d:b2:
51:7f:92:25:7e:b1:76:94:87:f7:17:42:11:de:92:
91:d5:9a:99:1f:de:6c:17:b8:0e:16:6b:50:56:d6:
68:a3:ed:e9:93:5c:d9:d8:ee:98:03:43:d4:6a:97:
d1:a3:e4:4c:6d:17:0b:b4:a6:7c:52:97:c2:e9:b5:
b1:26:f1:10:81:53:2b:e2:c8:4f:1f:69:ab:a7:ca:
56:7f:51:c8:ca:4f:c0:92:f4:33:07:c9:4e:d2:ef:
b9:04:1f:2d:cc:3d:af:01:ab:9e:8f:64:5d:5f:36:
64:7f:4a:2d:ee:09:86:dc:20:24:59:09:54:e2:4a:
9b:0d:bb:95:2a:73:49:19:4e:db:70:e9:bd:b9:86:
8f:24:08:e7:07:66:17:15:54:33:a4:73:96:57:31:
2a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E3:DF:65:42:5C:CE:91:41:B0:78:A2:9E:5C:C9:98:14:AD:75:89
X509v3 Authority Key Identifier:
keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
57:38:be:5c:e7:c9:5b:fc:c7:d4:d5:24:40:b5:4d:6e:0a:64:
a4:3a:34:b7:1f:14:1b:9e:91:f7:ef:f2:56:f7:fe:88:f8:28:
02:9d:25:18:62:b1:88:a0:b6:be:b2:0e:3e:00:13:cb:70:5f:
5a:e1:d0:27:76:8b:48:49:47:00:6c:28:2b:2e:4b:d0:a9:99:
57:f3:5a:11:6a:2f:87:7f:5b:39:6e:69:01:14:a1:f6:9f:54:
04:2e:ae:dc:92:3d:42:a9:ee:89:ef:e6:e9:71:49:6e:4b:d2:
38:66:9a:01:0c:af:fb:5f:7c:a1:2a:0a:04:3e:36:40:34:26:
a1:0e:05:76:6c:55:e9:31:72:59:ec:a9:30:19:f0:e6:96:5c:
f3:a8:37:68:f0:70:54:67:37:9c:cb:b1:86:1f:ba:f7:3a:1d:
4b:da:4e:86:59:d5:05:f5:ce:9b:11:ab:ba:1d:b2:dd:20:ee:
8c:df:2f:88:0c:3c:72:17:b2:9b:bd:7e:5d:05:bc:69:6a:be:
c6:e8:f3:ee:c9:d5:4a:3a:12:72:9f:d0:a9:d2:78:8f:6a:a1:
b2:db:b2:79:66:8e:2b:19:29:fb:b0:f9:fa:0d:71:44:04:43:
62:fc:f6:28:7b:bc:83:c8:ca:61:33:54:d2:a0:e1:7e:57:1e:
fe:71:98:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:20:43 2026 by rpki-client