
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json)
Hash identifier: qrOV5ayoLgDukWE8Ml7xBgCbRP9Ve+7sGR2hqApl+SA=
Subject key identifier: 03:39:8F:4F:18:5F:C4:0C:A2:82:29:31:D7:50:15:F7:AA:F0:15:89
Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62
Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62
Certificate serial: 0A9C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
Manifest number: 0A8A
Signing time: Thu 02 Jul 2026 19:44:34 +0000
Manifest this update: Thu 02 Jul 2026 19:44:33 +0000
Manifest next update: Thu 09 Jul 2026 19:44:33 +0000
Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: tsUI2wWUb3V21W7IYdGhvrA3mNmcDwoR889vNmpYDVM=)
2: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=)
3: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl
rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 19:44:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2716 (0xa9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62
Validity
Not Before: Jul 2 19:44:33 2026 GMT
Not After : Jul 9 19:44:33 2026 GMT
Subject: CN=6a46bfa1-dac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:31:8f:f1:64:60:6b:01:54:c5:dd:49:11:
d4:73:db:ab:7f:9a:be:fc:14:e1:75:87:31:e0:67:
e3:3a:ea:26:08:4a:f1:b2:da:61:f5:83:08:76:9e:
85:ea:b9:b4:ad:d4:97:3d:4a:62:80:4a:81:30:c8:
eb:18:86:c2:d9:0a:a3:38:70:1c:7a:33:ec:57:72:
e4:02:3a:31:8b:d9:e2:83:d7:03:7e:41:ee:2d:5f:
57:20:d6:36:e1:fb:d2:86:e4:39:1e:b1:c0:d1:dc:
d3:22:55:87:d1:2d:f0:5e:61:6a:50:0f:6b:ea:e8:
e9:c7:91:d0:ec:70:b4:17:02:6d:9e:fd:a5:4f:d1:
0b:68:9e:b6:25:a0:3d:86:26:2f:8e:b3:62:53:28:
d5:ef:5c:c1:3f:ec:20:f3:28:63:42:38:d6:9f:77:
d8:3f:a5:b2:fa:4f:e4:c3:07:a4:48:df:b7:64:c9:
b9:a3:5f:59:e3:87:c5:d5:46:26:77:e7:cf:98:b9:
a9:a9:17:c2:9d:19:ca:17:b4:3c:cf:e0:a2:77:a2:
a0:fa:a6:d8:f0:70:f2:0d:0e:73:07:7c:2f:57:c6:
2d:93:e8:e4:d4:65:55:d0:d1:32:d2:47:cb:ba:14:
3a:cd:e8:30:cb:e0:b9:15:8d:2c:74:df:25:8e:7c:
ce:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:39:8F:4F:18:5F:C4:0C:A2:82:29:31:D7:50:15:F7:AA:F0:15:89
X509v3 Authority Key Identifier:
keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
f0:69:55:32:98:a0:96:58:2f:43:0e:fd:61:4e:40:02:a8:69:
35:fe:2b:92:ea:62:a1:02:dd:df:92:6f:3a:da:6c:fb:74:67:
d0:4c:45:21:26:5f:56:1b:c9:6b:20:1b:ff:01:9a:ac:2f:84:
ba:c5:f1:94:c4:e8:d6:65:bd:85:d6:42:5b:3e:df:12:4f:11:
b7:46:ef:e2:02:bd:36:ef:90:2c:b0:67:f4:19:45:4d:a3:01:
e8:4b:b8:70:0a:73:9e:4c:4c:ca:f6:da:ce:17:59:0b:32:86:
c5:a7:0b:17:f7:c7:0b:ac:31:3d:e9:5d:9e:fe:d2:0b:44:48:
3c:8a:52:bc:5a:4a:0a:db:27:09:fd:45:88:1e:24:d4:59:9f:
4e:4d:45:bb:72:f5:6e:2b:80:ed:df:e4:1d:47:74:31:d2:4a:
a4:12:fd:65:a9:59:41:3f:b3:69:39:53:9e:cf:43:15:18:d1:
3a:91:c9:d0:e0:75:4f:c0:d6:62:e6:f8:4d:f6:8e:0f:4c:02:
fc:5e:05:03:d3:f7:92:c0:64:80:f3:b3:ef:61:9a:86:07:14:
c2:d0:55:56:41:6d:0e:dc:13:7f:65:17:1a:b7:36:f1:4e:e8:
73:36:a7:fa:fb:6c:b4:7f:3f:30:1c:ab:20:ee:56:12:af:1d:
88:b6:ee:50
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC
NTJENUZCNjIwHhcNMjYwNzAyMTk0NDMzWhcNMjYwNzA5MTk0NDMzWjAYMRYwFAYD
VQQDEw02YTQ2YmZhMS1kYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq0oxj/FkYGsBVMXdSRHUc9urf5q+/BThdYcx4GfjOuomCErxstph9YMIdp6F
6rm0rdSXPUpigEqBMMjrGIbC2QqjOHAcejPsV3LkAjoxi9nig9cDfkHuLV9XINY2
4fvShuQ5HrHA0dzTIlWH0S3wXmFqUA9r6ujpx5HQ7HC0FwJtnv2lT9ELaJ62JaA9
hiYvjrNiUyjV71zBP+wg8yhjQjjWn3fYP6Wy+k/kwwekSN+3ZMm5o19Z44fF1UYm
d+fPmLmpqRfCnRnKF7Q8z+Cid6Kg+qbY8HDyDQ5zB3wvV8Ytk+jk1GVV0NEy0kfL
uhQ6zegwy+C5FY0sdN8ljnzOXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAM5j08Y
X8QMooIpMddQFfeq8BWJMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz
OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt
MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh
MTRFajNVRmRaWnUxTFYtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEA8GlVMpigllgvQw79YU5AAqhpNf4rkupioQLd35JvOtps+3Rn0ExFISZfVhvJ
ayAb/wGarC+EusXxlMTo1mW9hdZCWz7fEk8Rt0bv4gK9Nu+QLLBn9BlFTaMB6Eu4
cApznkxMyvbazhdZCzKGxacLF/fHC6wxPeldnv7SC0RIPIpSvFpKCtsnCf1FiB4k
1FmfTk1Fu3L1biuA7d/kHUd0MdJKpBL9ZalZQT+zaTlTns9DFRjROpHJ0OB1T8DW
Yub4TfaOD0wC/F4FA9P3ksBkgPOz72GahgcUwtBVVkFtDtwTf2UXGrc28U7oczan
+vtstH8/MByrIO5WEq8diLbuUA==
-----END CERTIFICATE-----
Generated at Fri Jul 3 21:49:00 2026 by rpki-client