
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
File: iaMdROlPHMJ4ULusFsAsIKqznOU.mft (raw, json)
Hash identifier: 2sKuSAlLr8TLAaT2RejDPtgxH4ZtsVqJkJjO415xXIw=
Subject key identifier: 10:80:97:A2:3B:DC:AD:3B:E9:01:13:4C:EC:07:A4:65:A1:9E:23:32
Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5
Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5
Certificate serial: 0B99
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
Manifest number: 0B83
Signing time: Sat 04 Jul 2026 19:15:19 +0000
Manifest this update: Sat 04 Jul 2026 19:15:18 +0000
Manifest next update: Sat 11 Jul 2026 19:15:18 +0000
Files and hashes: 1: iaMdROlPHMJ4ULusFsAsIKqznOU.crl (hash: jbfBPycsVrMQ/vFSWQwBmSRAia9wax+KwJXLeXaaaMs=)
2: F392CF9E53A311EAB1641213C4F9AE02.roa (hash: hK13KfCAsMi+xHUuka2Pkznncer1XgUOHCwFnVLDtqM=)
3: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (hash: JuE06CSNAAV8+NliC0AVlzjHWrODAM4vJnnB5WZLKk8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl
rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 19:15:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2969 (0xb99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9196F73, serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5
Validity
Not Before: Jul 4 19:15:18 2026 GMT
Not After : Jul 11 19:15:18 2026 GMT
Subject: CN=6a495bc7-f518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c4:c4:c6:c8:56:80:3c:7f:7a:a6:5a:09:4f:
c9:d3:ca:e9:dc:9c:de:c0:15:bc:fb:44:6e:d0:51:
d3:bd:24:c2:18:a0:a1:eb:b3:22:24:43:c3:fe:98:
78:76:59:5d:09:d9:d5:d5:24:9f:25:30:19:b1:fe:
28:22:a7:a2:02:92:52:65:98:9b:70:1a:fb:6d:4a:
87:af:12:5b:37:fe:e3:72:32:7c:78:36:b3:65:9b:
c9:02:54:09:73:37:2b:e4:be:ec:1b:5f:9a:44:af:
21:14:2f:85:7e:38:c9:29:cc:bc:ad:fd:7b:61:45:
7a:e4:2e:52:8f:00:3a:77:6e:f9:f7:74:ff:7b:47:
ef:33:ec:8c:32:0c:fb:38:52:ae:ad:f1:90:db:d1:
5c:89:7b:f1:8e:1e:e9:b0:e4:68:44:92:a6:ca:75:
fa:d1:65:1d:be:99:ff:a7:dc:3a:f0:d5:ba:86:f3:
41:e4:76:39:b6:c5:30:c5:1d:97:8b:ed:6f:74:01:
26:f8:8e:58:e4:75:a3:dc:38:52:b1:ff:21:3a:63:
4f:94:1d:fa:6e:c9:3d:d5:df:26:e6:3d:c1:62:40:
c9:c7:c6:16:0b:a8:02:8d:97:3b:d6:e7:8f:29:f8:
91:a1:69:fa:4b:2c:23:83:dc:b6:60:ee:93:94:59:
36:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:80:97:A2:3B:DC:AD:3B:E9:01:13:4C:EC:07:A4:65:A1:9E:23:32
X509v3 Authority Key Identifier:
keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
42:fd:f4:03:37:de:2f:0d:ba:d0:33:14:43:63:2c:3b:f8:d8:
94:5d:ea:a4:c9:34:17:70:ef:c4:8c:32:52:23:cb:57:05:be:
92:38:53:c2:3d:ca:3e:63:17:ba:6c:d6:6f:df:e2:e2:d0:5d:
bb:ee:f7:20:65:d2:67:ee:92:77:fc:2f:a1:3a:e0:10:f7:fa:
2e:9c:c0:d0:19:77:f9:4c:fb:36:f3:5e:f4:10:85:04:1f:6b:
9d:74:d9:8d:02:2e:0b:4e:3a:c3:82:8b:42:af:88:6e:38:64:
46:db:73:21:e5:11:00:44:41:92:bb:60:25:da:20:2f:70:96:
60:69:39:bd:c5:35:70:d4:c4:3f:1c:c5:51:74:cc:7a:cf:e8:
a6:84:e3:55:c3:67:53:9c:7f:d7:c2:57:e1:43:a4:d8:f7:d0:
43:99:67:b2:c5:6c:e3:92:ac:ef:7c:15:2d:f3:a3:e7:58:b9:
5c:60:7c:7c:e0:d2:16:f8:be:7d:3f:bf:d8:08:e3:21:5f:cd:
38:40:d7:a9:e2:3f:43:cf:98:c5:71:02:69:49:01:aa:7d:32:
ba:e5:b3:8d:88:18:3e:00:f0:3d:4c:c1:4d:b4:01:5b:29:72:
da:ec:3b:bc:ba:82:9e:d3:bf:d1:98:fa:be:aa:43:7a:54:0a:
89:31:1b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:14 2026 by rpki-client