
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json)
Hash identifier: 2M5KY9UltPHIYQUtPTq9WXSzGFqvbrrgnoAXYEWecnE=
Subject key identifier: 8B:59:3E:28:4E:1C:C4:6A:51:20:0E:94:33:AC:D7:A2:5E:82:A2:7B
Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47
Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347
Certificate serial: 11ED
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
Manifest number: 11D9
Signing time: Fri 10 Jul 2026 17:19:38 +0000
Manifest this update: Fri 10 Jul 2026 17:19:38 +0000
Manifest next update: Fri 17 Jul 2026 17:19:38 +0000
Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: nr4AwTZow+o0eB7ZrKx4SG0u0AEeEqlwCqs9U0RXwL4=)
2: C484F3C0B74E11F0823EBC10C4F9AE02.roa (hash: h2DwpWR+IjAMG7fxYPQ9pAtPnP4GTYNqqiG9hVcrgDE=)
3: 7F35DF3CB74E11F0B044DA80C4F9AE02.roa (hash: cXPjCHPaKFx65HIG8toHkGNypseR6/vfwRdThb3BfVw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl
rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 17:19:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4589 (0x11ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347
Validity
Not Before: Jul 10 17:19:38 2026 GMT
Not After : Jul 17 17:19:38 2026 GMT
Subject: CN=6a5129aa-aab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7a:04:ff:b1:f6:9a:f2:86:8c:fb:6c:2c:47:
58:8f:31:80:c3:5a:59:39:05:63:23:da:c5:60:10:
41:d5:b2:97:fe:4d:8c:48:ce:9b:e4:29:e8:5c:2c:
34:21:41:a1:ad:b4:0d:4c:21:64:f7:08:f1:5f:68:
78:71:a1:9a:ee:47:a3:36:8d:9c:0e:52:b9:15:88:
6b:11:52:f5:69:5f:58:14:e6:5b:dd:ec:6b:58:a2:
62:61:30:ca:3c:9a:c1:d7:48:6e:51:ac:27:67:0e:
34:05:8c:de:10:2c:37:bc:ad:54:98:82:59:00:c5:
d4:80:de:7b:ac:75:97:60:b5:25:25:1a:a7:cb:17:
81:49:25:01:af:12:04:3e:ab:c5:72:87:da:34:d8:
d7:4b:ef:dd:4d:97:e6:74:b7:a9:5d:48:99:db:51:
de:85:6b:42:50:0f:97:f1:12:47:a1:f4:0d:fb:da:
11:fa:23:74:1e:98:5a:01:68:5f:93:15:31:6f:ee:
cf:4c:64:1e:6a:36:05:45:3f:59:5f:33:32:6c:8a:
a4:b3:9e:fc:26:8b:9f:90:f6:6d:82:2b:1f:ae:24:
f7:16:e7:04:31:11:16:de:1b:bb:07:71:8c:6c:e1:
94:6f:02:ca:e6:ff:c6:6d:19:08:ef:af:f1:b7:c3:
d7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:59:3E:28:4E:1C:C4:6A:51:20:0E:94:33:AC:D7:A2:5E:82:A2:7B
X509v3 Authority Key Identifier:
keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2f:be:b4:59:4c:37:df:3c:ac:47:6b:3c:8a:53:ab:1a:3b:c2:
0b:bd:2e:11:c4:b8:3b:21:2e:79:71:e5:3d:d3:a2:fe:f0:cb:
87:18:86:8c:54:d4:d9:99:ce:4d:e7:1c:1c:43:1b:b1:d9:64:
a4:9a:05:16:06:b1:18:b9:ac:8a:3b:de:c6:31:7a:9e:6c:72:
16:24:fa:fb:3e:89:5a:92:b7:5b:d4:92:62:9e:7f:98:14:3e:
cb:40:91:39:19:7c:3b:dd:a7:6a:06:d2:22:f1:53:cf:c3:11:
a0:a2:ab:1e:45:53:88:64:ef:f8:3a:9a:03:50:c6:67:48:c8:
1f:e4:9d:2d:82:91:bb:b9:b4:97:e6:53:6f:29:53:32:3c:6e:
30:37:b3:2c:3a:bc:d6:cd:a3:98:66:69:fd:8b:6c:88:47:34:
0b:c3:2c:a0:f5:60:f2:8e:21:85:ef:47:ca:da:3c:8a:1c:40:
c6:48:8a:67:5f:61:76:3e:5f:cb:e0:81:9f:71:8a:0f:85:cb:
e0:ca:15:92:f7:89:62:62:6e:83:4a:6d:b0:c0:67:14:68:b5:
6c:cf:7e:d6:65:24:8f:6a:6e:b2:64:85:72:68:af:b6:60:e4:
4e:e0:af:05:74:d5:7e:e0:8c:52:34:e2:38:01:ab:06:94:5a:
68:f3:1a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 13:10:02 2026 by rpki-client