
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft
File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json)
Hash identifier: i5PZ5DiafL+v+vNiCE1RqW/mA0sp8EpHRnwjMAELq6g=
Subject key identifier: 0F:9D:83:29:48:C5:7B:E0:EE:97:6D:53:BD:49:36:BC:61:BD:BF:14
Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE
Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE
Certificate serial: 0122
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft
Manifest number: 0119
Signing time: Wed 01 Jul 2026 07:30:12 +0000
Manifest this update: Wed 01 Jul 2026 07:30:12 +0000
Manifest next update: Wed 08 Jul 2026 07:30:12 +0000
Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: 5SVpsmNvEHlehb02iIX253dB7LnZzQd5BDfpRqp8vQE=)
2: 854C34B410A611F1B36A7FF1393D8C67.roa (hash: T+es4R7Kz78aarIocXiX4PtIykpBJj/m83J7r+F3puc=)
3: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gMKROOsdZBai7uwNPJMhA7wmGBXyz5SGNbYDb5CcdnA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl
rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 07:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290 (0x122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE
Validity
Not Before: Jul 1 07:30:12 2026 GMT
Not After : Jul 8 07:30:12 2026 GMT
Subject: CN=6a44c204-080f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2d:d2:39:9e:24:fd:c8:88:1a:c8:96:72:5f:
c2:7e:6a:32:d7:25:dc:29:7f:a8:9e:16:ab:e2:9c:
56:b6:b6:54:9f:69:a3:6d:75:38:b0:fa:cb:ca:13:
15:2e:bf:c0:e7:95:6f:90:a8:10:c1:c2:2e:53:48:
d0:f9:3b:a5:bd:02:a9:83:7a:be:39:66:3c:b9:d5:
50:58:0a:c7:3a:45:ec:63:4a:e3:b7:85:b7:06:9a:
42:4a:27:f6:ce:7c:d0:27:14:d0:68:22:97:62:9f:
27:83:49:d3:e3:9e:f8:c2:36:37:aa:ed:a8:41:35:
1c:52:f3:80:93:f4:6e:44:c1:a8:2d:f4:2e:a7:96:
17:04:1d:67:fb:b2:22:a9:e5:db:14:c0:ec:f0:41:
d0:0d:ef:30:29:e4:11:46:89:e9:a8:46:13:c9:f0:
56:8e:f1:3c:86:18:d5:f5:94:33:59:68:84:b0:da:
74:00:ac:70:8e:7f:d4:68:97:a0:7d:0f:b6:51:3c:
28:d7:b7:bd:12:c4:c4:06:52:3d:e8:98:cd:bc:30:
a0:a3:90:9d:b6:09:6e:63:17:66:6d:60:d5:9b:5c:
d4:28:3f:42:19:e8:ec:94:4e:0e:e6:0a:f0:4d:9b:
08:48:b0:b8:52:68:42:a9:27:eb:53:60:7e:a5:90:
53:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:9D:83:29:48:C5:7B:E0:EE:97:6D:53:BD:49:36:BC:61:BD:BF:14
X509v3 Authority Key Identifier:
keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
96:db:86:ae:32:c5:ac:ef:f1:f6:bb:59:8d:0a:65:0e:34:40:
48:df:c2:62:85:1f:df:45:1f:db:80:9e:fd:c4:23:d1:88:68:
5b:53:93:2c:3c:7d:9e:6b:f5:18:e9:ce:3b:32:ce:bc:60:81:
95:27:b6:16:bc:6e:0e:0d:cc:34:85:fd:fd:ae:0b:32:25:c6:
bb:17:ae:c0:a7:e3:ab:25:2c:d3:58:3e:ec:ef:e8:64:99:f8:
78:ec:a0:47:11:5e:14:5b:3e:d6:ed:4d:28:1d:28:1f:ec:6b:
4f:92:c3:f9:2e:96:05:9f:4b:ea:c2:11:29:f6:16:92:ea:93:
8c:95:f1:e8:67:95:2b:86:a2:6f:ee:33:19:1c:3c:d8:19:ae:
61:a4:71:64:0c:4c:fe:cd:53:4e:0f:40:24:73:27:ae:d4:f8:
7e:ae:45:cd:f2:64:0b:36:f8:ff:49:37:55:c6:c4:db:06:24:
65:d9:ad:e7:be:e9:3a:2e:47:04:12:d5:71:c7:33:3c:60:1b:
8f:47:d1:b4:89:d4:ef:be:10:f8:95:32:ce:4e:79:a9:5d:85:
c9:f1:42:61:7e:75:60:ae:4b:1d:bb:b5:ac:21:ff:b8:cc:d2:
57:d0:ca:fc:b8:54:94:23:e2:ff:8a:99:f1:e0:bb:36:e0:04:
3a:b8:32:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 02:07:01 2026 by rpki-client