
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft
File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json)
Hash identifier: QlBzCJRf9a+O5WQIj5Vi0Wb94ZHW/xL8uVKzmOlHm8Y=
Subject key identifier: 65:7F:39:1A:C3:28:8D:5C:C4:49:D2:35:48:CA:21:E5:3E:89:87:DE
Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29
Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29
Certificate serial: 01CB
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft
Manifest number: 01CB
Signing time: Fri 17 Jul 2026 01:25:34 +0000
Manifest this update: Fri 17 Jul 2026 01:25:34 +0000
Manifest next update: Fri 24 Jul 2026 01:25:34 +0000
Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: B2zPZSMhB4UiIMewy73THHw1c1wvefsRHpokbGVA3uI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl
rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:25:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459 (0x1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199B85, serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29
Validity
Not Before: Jul 17 01:25:34 2026 GMT
Not After : Jul 24 01:25:34 2026 GMT
Subject: CN=6a59848e-3346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9b:23:aa:de:a3:2b:36:f5:c7:52:d5:bb:de:
f1:80:63:6b:e3:0d:55:72:b5:bb:16:33:94:d4:da:
39:ac:ad:ec:8f:86:f3:29:4b:fe:87:d3:5c:70:a9:
0c:74:89:65:80:70:1a:a2:0e:f2:5d:22:dd:a5:c9:
8e:c8:2b:53:45:1d:c5:ab:92:b1:25:75:da:4a:d8:
45:0f:2c:76:72:13:94:f8:f0:f9:77:ac:38:f1:fb:
35:df:4a:d1:93:76:03:27:a0:62:28:4d:d0:6f:3c:
95:5b:f3:3f:02:20:59:cd:2c:ce:7d:36:e6:4f:51:
c6:3b:74:95:8c:46:b0:8e:7b:ff:d0:ef:a2:98:f3:
8e:03:65:99:80:c1:a1:81:04:02:0a:aa:d1:85:9e:
3d:15:43:c7:3d:60:47:10:db:f0:a2:4f:53:b3:ff:
88:fe:28:34:f0:13:ce:0e:19:10:c5:c7:7c:76:1f:
e7:64:5c:b1:64:b6:11:a7:da:9b:48:f3:dd:51:2f:
1c:33:aa:22:fc:7f:3e:cc:98:55:46:17:5a:c3:4b:
75:05:68:4c:0d:c7:fc:21:65:2b:3a:c3:38:01:aa:
2f:a6:66:b1:d1:46:95:4c:bd:b8:61:91:8f:26:92:
91:2b:bf:92:a3:ad:8c:20:e8:7a:15:64:12:e1:c2:
c1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:7F:39:1A:C3:28:8D:5C:C4:49:D2:35:48:CA:21:E5:3E:89:87:DE
X509v3 Authority Key Identifier:
keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:6e:8c:f5:15:7b:ba:e7:d5:43:35:b2:40:7b:c8:51:5e:9e:
06:52:dc:99:f6:9a:d1:3c:c7:4f:46:80:96:78:d4:6b:90:0f:
89:45:3c:82:7c:7c:11:8b:5b:9d:82:d9:3f:23:35:85:dd:b0:
26:e7:ec:dc:fb:20:d6:5b:2c:7e:0c:ff:8d:38:b2:08:5d:a4:
a3:1c:21:06:e4:b4:33:4e:bf:e2:6c:4e:a5:5a:de:10:4d:84:
4a:ee:e4:7b:40:49:8f:99:e7:52:c5:8f:db:0d:af:45:cd:cb:
a5:c3:95:f6:95:36:b4:ac:ab:dd:46:29:24:7b:6f:2d:ac:b7:
ff:56:e0:ad:92:f9:e0:00:84:bb:2f:ba:ca:6f:60:03:7f:33:
b4:40:52:c2:75:d3:3b:79:44:1e:4b:67:b0:42:82:97:96:f5:
1a:78:de:ea:57:41:55:59:c4:59:06:35:3d:f9:fd:b1:bb:06:
2f:16:c7:ce:10:38:4c:fe:71:fd:78:e9:0c:ee:28:9b:6d:27:
8f:64:59:61:dc:4e:db:a9:3a:19:e1:e7:96:45:b5:80:8f:78:
a2:f4:4d:e1:01:bb:71:98:0b:e4:d3:3a:a8:81:b1:95:77:b3:
12:b7:33:91:50:02:66:fc:6a:b3:ff:5c:96:58:b8:59:b4:51:
0d:a5:de:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:15 2026 by rpki-client