
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
File: Klc5bc5w61bAc94adgtipyKwR44.mft (raw, json)
Hash identifier: Cw9x4n3dMgsA/Ldjm4PU448FTrUP+FgP3gSijJV2JDM=
Subject key identifier: 88:F3:D0:EE:47:13:EF:C6:56:34:5E:3F:EE:E3:EC:22:44:33:9C:9E
Authority key identifier: 2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E
Certificate issuer: /CN=A9193B94/serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E
Certificate serial: 0131
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
Manifest number: 0129
Signing time: Fri 17 Jul 2026 06:50:45 +0000
Manifest this update: Fri 17 Jul 2026 06:50:45 +0000
Manifest next update: Fri 24 Jul 2026 06:50:45 +0000
Files and hashes: 1: Klc5bc5w61bAc94adgtipyKwR44.crl (hash: CzaiegFNOV53gtiMJra7yHJcX7tFUanU5Vvv6SVmej4=)
2: 329C17E6BCDA11EFA2D81814C4F9AE02.roa (hash: fMdXJV+1ucniyu3k/11VAI6qy/FxoiJSc5x07sN7B60=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl
rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:50:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305 (0x131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9193B94, serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E
Validity
Not Before: Jul 17 06:50:45 2026 GMT
Not After : Jul 24 06:50:45 2026 GMT
Subject: CN=6a59d0c5-934f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:75:fd:27:68:68:e1:85:74:6e:29:9a:ff:e7:
8e:a1:96:26:6c:ed:21:27:8d:a7:1f:61:08:e7:ee:
12:4f:df:a4:5b:5e:94:b2:75:fd:62:1e:db:5f:1d:
04:dc:e9:b0:3e:68:ac:23:36:77:26:33:9e:d6:28:
a2:25:69:60:d8:1c:15:6d:4e:0a:20:f9:e1:90:a9:
04:e5:55:9c:06:80:6f:44:6e:b8:f5:88:89:93:13:
90:15:1a:b9:46:6c:08:e3:9c:f4:a0:0c:cf:2e:a7:
e8:7f:07:61:78:52:aa:47:f3:e0:55:ca:bf:c4:2f:
c8:ca:4f:8b:9c:b6:65:76:66:d8:6e:19:21:ba:8d:
3b:08:88:8b:b2:6a:ce:04:c4:3d:0b:14:e4:b8:83:
b1:f4:9a:7c:5f:97:c5:70:2c:e6:9b:c6:66:ce:d5:
4c:62:b5:bb:73:b6:5a:95:6f:e4:cc:fd:45:0b:53:
57:4b:0c:97:c7:31:b1:5c:fa:82:82:6f:e0:73:fc:
45:91:fd:b3:21:46:2c:cb:4a:b3:d0:e6:74:9a:e2:
c0:8b:b8:5f:9d:9a:9e:a5:d2:47:d5:3f:ff:ec:7c:
f0:72:84:bb:fc:e1:0a:96:ff:67:cb:f5:16:f9:da:
a2:a6:6d:90:e7:b2:d8:6f:13:a5:df:43:3b:06:8a:
8d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F3:D0:EE:47:13:EF:C6:56:34:5E:3F:EE:E3:EC:22:44:33:9C:9E
X509v3 Authority Key Identifier:
keyid:2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
76:05:57:cb:2d:3e:1c:72:27:0f:12:d5:29:73:e4:01:b9:bd:
16:e2:dd:81:c5:5e:97:0a:3b:23:dd:b0:f5:f9:82:a3:f7:da:
f4:1e:77:d7:8b:34:bb:ef:e2:6e:ea:ba:d4:ed:85:8d:58:5a:
73:86:ab:b0:05:65:c4:de:42:57:6e:7c:61:4f:e0:5a:9a:44:
bf:cc:03:03:36:85:68:9d:e6:10:db:d0:0e:5b:f3:96:40:ac:
3e:e1:a6:e9:9a:31:d0:99:ec:fe:63:66:39:c2:94:56:19:2c:
ae:ee:9b:e8:90:c9:c0:64:28:57:b7:aa:79:71:fb:4c:23:5a:
f3:a9:ec:3e:cb:b8:ca:09:8b:d0:6d:55:ec:78:50:d6:76:1c:
7b:47:dc:32:d6:e4:6c:65:d6:46:f1:4d:4b:32:90:7a:95:ca:
66:0c:60:55:d1:09:bb:53:f7:9c:c1:bd:99:b6:62:37:03:a4:
23:38:c5:18:b6:d7:ad:14:88:0e:38:8d:85:00:ea:50:88:fa:
79:1f:c9:f1:2c:bb:0d:4b:51:5e:a9:be:60:87:ec:d3:6d:fa:
22:8e:41:8b:14:9e:69:e7:c0:48:af:99:a3:4a:0e:ce:09:72:
97:54:f0:17:51:3d:e1:a6:e5:3c:39:f4:4d:4d:cc:99:97:a2:
86:63:45:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:44 2026 by rpki-client