
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
File: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft (raw, json)
Hash identifier: fLCJxg3FUY+7cv/qRSOdx0lXzAiqg7BdfS3tC7BBtWo=
Subject key identifier: C7:FF:C5:7D:7E:3C:9F:61:A2:FF:78:C0:05:2D:D0:E2:B2:2A:22:F2
Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21
Certificate issuer: /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21
Certificate serial: 088C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
Manifest number: 0870
Signing time: Thu 16 Jul 2026 21:09:08 +0000
Manifest this update: Thu 16 Jul 2026 21:09:07 +0000
Manifest next update: Thu 23 Jul 2026 21:09:07 +0000
Files and hashes: 1: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl (hash: 6hyRy+ZGdOdFPM416oz/Zi2l98N7LS9S2McIZNyred4=)
2: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (hash: sI6tR4a2HYfJurDOPfrB4Umd60Gjw1lCZTz+9gBI5MI=)
3: CD284E600CEE11EB88376B5BC4F9AE02.roa (hash: 816YLoIvH9Oaj07rOnlACoUv6ymscAs9lYY/BFhZ/Lc=)
4: B811CFA2BF7811EE80314533C4F9AE02.roa (hash: 3fw6mHPeADEWBETyQZxIVf42hLtCqb+tAcCFeXIzWNM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl
rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 21:09:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2188 (0x88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EE77, serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21
Validity
Not Before: Jul 16 21:09:07 2026 GMT
Not After : Jul 23 21:09:07 2026 GMT
Subject: CN=6a594874-b077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b5:c8:b2:98:e7:14:f2:39:ce:07:a0:c8:47:
bd:ed:d9:62:70:2f:cc:ce:72:ed:39:01:b6:1d:21:
3d:5c:c7:2c:10:87:35:bd:e8:59:95:3c:05:d4:6f:
20:40:68:3e:6a:14:b5:92:d8:40:57:b9:75:38:34:
2a:03:d2:96:f2:35:9e:82:76:88:9e:46:b3:a7:2b:
c1:94:8a:76:64:f6:c9:b3:82:f0:dd:00:88:c7:49:
27:9f:22:8a:72:af:d9:7a:34:2b:99:72:98:10:46:
a1:ec:c8:fe:6f:09:19:8e:e1:4d:2d:96:b0:62:ba:
ce:4e:af:a3:b0:6c:a5:9a:15:58:14:df:2c:3c:95:
56:47:bc:e0:9b:21:12:9d:e7:06:0a:0b:73:b8:e5:
83:cc:c2:0f:ac:1f:70:dc:01:2a:5c:0b:8b:c1:f0:
f5:59:fb:f3:20:1c:66:81:bb:22:50:d6:2f:20:e1:
e0:c1:15:53:fd:94:f7:24:cb:b1:31:de:e8:f4:fc:
76:33:e6:92:8b:b8:47:46:3d:e9:41:ae:c2:9f:35:
5b:d4:cc:cc:38:11:12:6c:4d:04:bf:15:da:c5:5c:
e9:06:9c:68:47:d2:20:ab:ab:ec:1c:16:5b:18:1d:
3a:c6:e7:4a:02:07:7b:7f:93:c7:e0:48:ce:78:22:
d5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FF:C5:7D:7E:3C:9F:61:A2:FF:78:C0:05:2D:D0:E2:B2:2A:22:F2
X509v3 Authority Key Identifier:
keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5f:ad:54:3d:95:d2:f3:5d:65:07:72:2e:9f:16:27:cd:df:13:
29:79:8f:04:bf:28:a7:07:af:da:5f:2d:55:6e:8c:74:1f:42:
ad:e9:cb:bd:7c:9d:14:14:60:e8:19:eb:24:1b:72:05:98:e0:
ee:b5:3f:a9:1f:1d:23:bb:71:28:6b:6a:46:b2:2f:7b:54:17:
38:db:18:ca:9e:6a:21:78:5a:3c:05:fa:b6:2f:45:29:c4:0e:
ee:f3:eb:09:b1:75:66:d3:a8:8a:d8:70:56:0e:4e:e2:35:e0:
db:55:4a:4a:68:25:f4:4a:36:98:b8:cd:1f:20:5f:e3:be:95:
4b:e0:47:13:ab:5d:10:9a:9d:6a:bc:cd:e3:34:20:e1:48:bc:
e9:00:10:fb:40:ec:fb:07:52:77:b0:01:78:34:ea:86:9f:98:
df:e5:62:7d:c1:d1:d7:9f:7b:60:df:34:a6:e9:be:77:61:bb:
13:8f:31:1c:6f:cc:9e:2c:71:33:29:6b:ff:64:a5:4e:73:e7:
23:fc:70:65:0c:27:a8:bb:8c:ec:59:77:30:0a:40:49:dd:98:
27:d0:f5:7e:85:eb:6e:7f:01:38:16:34:60:d6:81:2c:22:d1:
b8:80:a3:37:8e:cc:3c:db:78:f5:91:f2:b8:6d:c5:c9:96:03:
4e:c3:54:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:16:56 2026 by rpki-client