
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft
File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json)
Hash identifier: iBdO7Umo8Ot2aEZW2k7+s0PfeJmmv5IG8ZRv2Kma6PU=
Subject key identifier: 8E:6C:EF:51:08:58:59:D7:55:22:C6:0F:6B:8C:13:07:9B:EB:5E:15
Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C
Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C
Certificate serial: 03F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft
Manifest number: 03E0
Signing time: Fri 17 Jul 2026 01:11:55 +0000
Manifest this update: Fri 17 Jul 2026 01:11:54 +0000
Manifest next update: Fri 24 Jul 2026 01:11:54 +0000
Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: 8S6SrFEwesw+aN77AhovRGsKIpC/JhRg/UZ8VafscvY=)
2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: 4btki8MufbxcYjK/3ldd2OyHnoFsKyUfQZm8u1lkOas=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl
rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1013 (0x3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C
Validity
Not Before: Jul 17 01:11:54 2026 GMT
Not After : Jul 24 01:11:54 2026 GMT
Subject: CN=6a59815b-a3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:75:09:b5:04:b8:89:f1:32:01:a3:a9:6d:a7:
0e:8d:b7:25:9c:c9:33:7a:c3:00:40:b0:80:5c:5e:
56:0f:c4:90:b1:16:9d:b4:89:57:af:15:11:8b:52:
8d:1c:f0:a8:c6:c6:b8:44:18:86:3f:1b:67:cf:95:
8a:cc:3c:50:22:92:36:82:0a:5f:af:6f:0c:85:52:
0d:93:3b:d7:c0:d7:5a:f2:ed:3a:b6:7b:4a:63:f9:
e8:83:2d:e1:b7:61:43:e7:f4:cc:d8:fb:d3:61:e6:
1e:83:bc:b2:46:3f:fa:4b:20:e9:a9:0a:b0:87:9b:
5f:9c:89:34:76:f0:50:73:ab:d6:3e:8b:80:f3:07:
e7:f7:c4:dc:28:0e:12:b5:64:21:bd:93:fd:bc:da:
75:b2:56:72:a4:0c:7d:1d:69:10:bf:58:cf:0a:ee:
94:6e:be:d2:0a:10:90:04:6f:c1:ba:94:e1:17:32:
12:fa:dd:2d:b7:3a:6e:87:de:57:6a:55:2b:9f:65:
9e:8e:ef:12:49:4b:1b:48:2d:31:9f:9b:78:09:a1:
41:fd:67:af:5c:0a:9f:4c:99:f7:2e:ca:04:2c:ed:
0d:97:08:c9:69:49:06:da:d4:85:e2:a8:3a:de:e8:
cc:4d:e6:e6:98:ea:a5:43:0f:9a:7b:f2:44:a7:db:
62:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6C:EF:51:08:58:59:D7:55:22:C6:0F:6B:8C:13:07:9B:EB:5E:15
X509v3 Authority Key Identifier:
keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b0:c9:2e:82:bc:1e:23:9e:f9:2e:36:b2:95:a0:a6:6f:9c:56:
b8:84:17:fb:81:1c:04:4e:8c:ac:c4:76:a0:f8:ed:37:bf:40:
51:f4:e7:d8:90:74:5f:5e:da:fd:18:c6:4d:63:09:b0:19:90:
be:de:70:88:e0:89:64:ae:79:2a:29:c0:52:23:20:92:82:81:
69:32:41:bb:0c:21:b4:aa:4f:4e:cb:94:79:af:8a:a2:6b:77:
78:a3:1f:9d:7a:0a:d7:aa:e0:11:02:18:1a:f8:22:d8:60:56:
fe:d3:52:8d:3f:18:c0:28:dc:4a:f5:79:8a:14:09:74:6d:05:
c9:60:8e:db:e7:ec:24:e7:86:68:14:0c:87:f0:38:03:80:53:
80:1d:a8:1e:d5:49:ce:a8:5c:d4:9a:04:fa:a9:4f:67:f6:40:
15:61:b6:90:91:aa:e6:1b:b7:e5:c2:e7:10:83:20:ce:2a:4c:
fd:7f:7f:30:30:3f:71:e0:fc:e4:b8:15:a9:bb:c9:03:87:46:
58:12:84:5f:d2:14:a4:79:c9:d3:61:15:b5:ca:90:9a:08:40:
47:12:85:bf:2e:fd:47:7a:cc:1a:f7:8a:3e:bb:b0:19:3c:5f:
03:de:a9:8c:48:c5:da:c9:36:73:d3:60:be:79:d9:74:02:42:
b9:d2:7c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:16:19 2026 by rpki-client