
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json)
Hash identifier: bXbIRpiTDFxquX4vyjNQG3VKyFayVnSGmIUECuw1FVg=
Subject key identifier: 44:0C:5C:B8:1A:9C:80:2F:F1:DF:DD:C4:ED:51:3A:44:6D:2B:39:AF
Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
Certificate serial: 0A7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
Manifest number: 0A56
Signing time: Mon 06 Jul 2026 20:10:12 +0000
Manifest this update: Mon 06 Jul 2026 20:10:11 +0000
Manifest next update: Mon 13 Jul 2026 20:10:11 +0000
Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: 5jNy9ik+C3P6NH0/5TlxG8e6dAFwDXWudcDmiz28DpU=)
2: 41622F82F82E11F0BC7D9928396F56BC.roa (hash: BOsXgTgRuoFK1Abqu9y4jRVX+t+6P8y+y8+yHdVIkmA=)
3: 92B2469A90D411F09BC0A564C4F9AE02.roa (hash: BkbQUsKXIX52vzOm2/vANASw4HXX+/0xUFcUl5+7lq8=)
4: 013B99DA986011F08FA4AB86C4F9AE02.roa (hash: SGPYvzHeLCeVexbh9lAx6+ESCRM1l3c2pzV/QopMYDM=)
5: 5AEF27A42ECD11F1AE5BE4D1C4833773.roa (hash: pJrOfhLTXJrzDjh1PttmKiJG9g18KY+/mTy+A26VFpE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl
rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 20:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2684 (0xa7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
Validity
Not Before: Jul 6 20:10:11 2026 GMT
Not After : Jul 13 20:10:11 2026 GMT
Subject: CN=6a4c0ba4-2f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:78:98:49:d3:7a:c7:d7:d4:4c:d5:fa:38:92:
60:73:41:1e:d7:dd:4a:30:f0:bc:f0:9d:91:44:2e:
fb:30:33:62:6f:69:18:b2:3b:0c:ca:07:46:39:0e:
93:7a:ca:cb:72:c0:6c:be:d6:3c:39:42:40:11:79:
6a:a3:96:89:f6:b3:00:b0:e5:26:eb:38:cf:a3:3a:
67:b6:b7:c5:31:67:e8:98:20:03:35:c2:23:4d:34:
9f:a4:d7:f1:82:03:70:15:3e:25:9f:b7:96:e9:7a:
e8:6c:48:87:1b:4d:bf:1c:25:f4:ec:7f:86:4f:3c:
a3:1f:64:b6:27:1a:75:d7:68:e4:67:d9:09:87:d7:
5b:5f:17:a2:3a:d4:1a:54:40:7c:cd:32:12:e2:98:
09:1f:d4:a1:95:74:de:ec:f3:08:62:6b:c3:48:74:
11:52:11:55:62:d8:3c:45:92:96:88:d3:30:86:c0:
db:78:71:da:8e:ad:85:97:30:9b:f2:88:60:41:a8:
4d:f1:9d:57:82:bd:1e:ba:62:84:1b:3e:c0:15:c3:
75:aa:53:3a:40:14:9e:8f:62:4b:08:fb:31:bd:2e:
4d:3e:6e:5a:7d:98:7a:81:f8:98:45:1a:f4:dc:04:
43:10:09:30:5a:b3:c6:1a:2b:b1:87:8d:3a:93:8c:
b3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0C:5C:B8:1A:9C:80:2F:F1:DF:DD:C4:ED:51:3A:44:6D:2B:39:AF
X509v3 Authority Key Identifier:
keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
25:c4:13:34:7c:3e:6c:13:92:a1:13:1f:65:24:cc:54:3a:b1:
4c:52:c2:0e:8b:b1:96:ba:f6:ac:a8:a8:f8:f5:d1:e9:17:28:
26:50:ab:a0:95:13:6e:5d:cb:29:bc:95:d5:eb:3a:b7:92:b9:
52:5b:85:c1:33:78:7e:9d:21:55:a9:62:53:f8:e4:72:d7:c6:
5a:48:f2:6e:fc:bc:40:12:63:27:20:68:8d:e6:f6:5f:62:0c:
d8:82:19:49:fc:20:c8:6c:b3:90:25:c1:fe:fe:99:50:e0:6a:
3f:b3:aa:8f:e9:a3:1a:d7:85:5b:9e:59:c5:3b:c0:a2:37:c2:
21:55:d6:51:c4:a0:e8:91:e5:a3:d1:a0:0c:8e:e7:c1:e8:2e:
b1:e7:00:29:55:dd:8a:93:66:b9:71:c5:87:77:0e:15:a3:6c:
11:91:0b:f0:d6:7a:98:ed:ce:95:75:98:d9:e2:c3:0f:5e:02:
34:56:7b:2f:74:34:d5:36:37:1f:dc:2c:2b:b9:91:f6:76:4c:
80:f8:7b:a5:ef:57:05:ee:19:84:fa:a4:88:ec:0f:a4:8c:35:
3c:49:7e:cf:6d:92:d6:c4:83:73:6c:36:64:cc:ae:8f:95:4a:
17:6b:0a:4c:cc:b1:e5:8a:af:4c:c1:28:0c:f3:65:35:72:bd:
6e:47:67:d9
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw
NkZCNjFBQzYwHhcNMjYwNzA2MjAxMDExWhcNMjYwNzEzMjAxMDExWjAYMRYwFAYD
VQQDEw02YTRjMGJhNC0yZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0XiYSdN6x9fUTNX6OJJgc0Ee191KMPC88J2RRC77MDNib2kYsjsMygdGOQ6T
esrLcsBsvtY8OUJAEXlqo5aJ9rMAsOUm6zjPozpntrfFMWfomCADNcIjTTSfpNfx
ggNwFT4ln7eW6XrobEiHG02/HCX07H+GTzyjH2S2Jxp112jkZ9kJh9dbXxeiOtQa
VEB8zTIS4pgJH9ShlXTe7PMIYmvDSHQRUhFVYtg8RZKWiNMwhsDbeHHajq2FlzCb
8ohgQahN8Z1Xgr0eumKEGz7AFcN1qlM6QBSej2JLCPsxvS5NPm5afZh6gfiYRRr0
3ARDEAkwWrPGGiuxh406k4yz/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEQMXLga
nIAv8d/dxO1ROkRtKzmvMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0
MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH
c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z
SDAwanY1aEJseFFHLTJHc1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAJcQTNHw+bBOSoRMfZSTMVDqxTFLCDouxlrr2rKio+PXR6RcoJlCroJUTbl3L
KbyV1es6t5K5UluFwTN4fp0hValiU/jkctfGWkjybvy8QBJjJyBojeb2X2IM2IIZ
SfwgyGyzkCXB/v6ZUOBqP7Oqj+mjGteFW55ZxTvAojfCIVXWUcSg6JHlo9GgDI7n
wegusecAKVXdipNmuXHFh3cOFaNsEZEL8NZ6mO3OlXWY2eLDD14CNFZ7L3Q01TY3
H9wsK7mR9nZMgPh7pe9XBe4ZhPqkiOwPpIw1PEl+z22S1sSDc2w2ZMyuj5VKF2sK
TMyx5YqvTMEoDPNlNXK9bkdn2Q==
-----END CERTIFICATE-----
Generated at Wed Jul 8 16:40:46 2026 by rpki-client