
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json)
Hash identifier: ll6yQTDLQXUsXLeclHTirCh6vM+AoBy5msUDE9Vmqgk=
Subject key identifier: 18:93:8A:7E:FF:F8:7D:B2:55:21:2F:FD:AF:80:FC:38:B5:BF:67:27
Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8
Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8
Certificate serial: 04E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
Manifest number: 04E1
Signing time: Fri 17 Jul 2026 00:20:32 +0000
Manifest this update: Fri 17 Jul 2026 00:20:32 +0000
Manifest next update: Fri 24 Jul 2026 00:20:32 +0000
Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: Xi6d5DT+iSUBdphNAGQwazhOmuz7mJrX05g8dZMod1w=)
2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: OpFOQ/Qs7pTcBKY6eGcg4iGZBHwfeCp3YAy8fBKvp0Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl
rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:20:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1256 (0x4e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8
Validity
Not Before: Jul 17 00:20:32 2026 GMT
Not After : Jul 24 00:20:32 2026 GMT
Subject: CN=6a597550-acf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ab:b0:e0:12:93:1d:91:ee:ba:cd:fc:65:73:
0c:f8:6c:cb:85:4f:a2:a8:9f:87:7c:e5:a3:e8:56:
cc:5f:89:55:cd:a5:68:67:b6:ee:b7:36:d2:64:e2:
69:3e:64:eb:3f:fe:08:59:88:ee:64:ae:25:9e:f2:
4c:b0:e5:b9:e9:d9:6d:6c:1c:42:18:22:05:a7:9e:
55:a4:c3:b4:4b:1b:bf:c6:16:ec:83:c6:56:b4:f1:
52:57:e2:d0:09:4c:34:04:2f:c4:9c:82:8e:cf:f5:
6a:1a:ae:8c:32:eb:14:e6:72:fc:e3:c3:4d:72:b5:
35:c3:7b:bb:43:d3:bc:0a:85:fd:7b:14:f1:63:42:
5c:71:f2:b7:f6:43:f9:4d:1f:a9:dc:cb:25:04:3b:
b6:7e:c0:8c:ab:24:f8:a3:d1:20:93:a6:fd:44:bb:
8d:f0:f2:1d:d8:c6:2c:26:90:a9:ac:f1:b1:0b:09:
74:1c:52:70:e9:d1:6e:05:51:f0:1e:99:91:70:1b:
49:6f:83:51:07:52:49:fd:8c:81:39:20:31:fd:78:
25:a3:b5:7d:ad:e6:b4:3c:5d:26:d2:9c:dd:3f:c0:
ac:ea:95:3d:c2:c0:69:ef:89:c4:dc:19:53:ee:6c:
13:07:f1:b6:bf:5b:a9:d3:f4:a4:a8:1e:2b:46:d1:
e3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:93:8A:7E:FF:F8:7D:B2:55:21:2F:FD:AF:80:FC:38:B5:BF:67:27
X509v3 Authority Key Identifier:
keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
50:33:41:12:63:24:6b:36:ec:ca:9b:03:53:0b:be:e5:5d:c2:
a9:c8:47:a4:1e:0b:d6:32:3b:89:00:8f:f4:65:32:e6:c1:16:
ba:9b:7b:91:a6:4c:62:b8:cf:80:aa:3f:8c:29:1c:50:08:3e:
7c:06:cd:65:81:df:f6:19:db:48:69:71:9f:c0:6b:ca:8b:75:
21:75:4e:c5:b3:a7:4e:1b:bf:66:5c:83:56:74:ed:23:83:ec:
48:b5:e6:3d:8d:6d:8b:d3:be:86:72:43:81:b7:97:57:96:b6:
05:06:0a:11:a5:47:a1:c3:1a:f8:98:aa:40:14:a1:86:37:a1:
20:61:12:b8:09:c6:39:e1:22:6f:ae:fb:a9:c0:05:c3:19:6d:
87:d0:9b:1e:c6:0d:9a:5a:fb:e0:79:e5:a6:89:14:42:66:55:
cd:62:55:50:80:29:a3:d1:7f:20:1e:38:85:19:42:82:76:b5:
ba:8e:bb:0a:f3:34:60:f7:2b:df:fe:4d:fa:1b:d7:66:47:a7:
35:3c:9e:91:06:50:bc:2b:20:fb:6b:fa:61:24:e7:52:5b:a6:
aa:dc:f4:e8:9c:7a:a0:de:81:c4:29:ab:49:b0:58:43:e4:1b:
04:49:84:cc:e7:98:83:33:43:80:d0:48:88:fc:25:e8:a2:33:
07:70:b0:51
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF
QjQ0RkQ1RTgwHhcNMjYwNzE3MDAyMDMyWhcNMjYwNzI0MDAyMDMyWjAYMRYwFAYD
VQQDEw02YTU5NzU1MC1hY2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwauw4BKTHZHuus38ZXMM+GzLhU+iqJ+HfOWj6FbMX4lVzaVoZ7butzbSZOJp
PmTrP/4IWYjuZK4lnvJMsOW56dltbBxCGCIFp55VpMO0Sxu/xhbsg8ZWtPFSV+LQ
CUw0BC/EnIKOz/VqGq6MMusU5nL848NNcrU1w3u7Q9O8CoX9exTxY0JccfK39kP5
TR+p3MslBDu2fsCMqyT4o9Egk6b9RLuN8PId2MYsJpCprPGxCwl0HFJw6dFuBVHw
HpmRcBtJb4NRB1JJ/YyBOSAx/Xglo7V9rea0PF0m0pzdP8Cs6pU9wsBp74nE3BlT
7mwTB/G2v1up0/SkqB4rRtHjGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBiTin7/
+H2yVSEv/a+A/Di1v2cnMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF
QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx
ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr
ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAUDNBEmMkazbsypsDUwu+5V3CqchHpB4L1jI7iQCP9GUy5sEWupt7kaZMYrjP
gKo/jCkcUAg+fAbNZYHf9hnbSGlxn8Bryot1IXVOxbOnThu/ZlyDVnTtI4PsSLXm
PY1ti9O+hnJDgbeXV5a2BQYKEaVHocMa+JiqQBShhjehIGESuAnGOeEib677qcAF
wxlth9CbHsYNmlr74HnlpokUQmZVzWJVUIApo9F/IB44hRlCgna1uo67CvM0YPcr
3/5N+hvXZkenNTyekQZQvCsg+2v6YSTnUlumqtz06Jx6oN6BxCmrSbBYQ+QbBEmE
zOeYgzNDgNBIiPwl6KIzB3CwUQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 13:33:31 2026 by rpki-client