
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json)
Hash identifier: iX2QdT0FDJV6Tnz2+A8hC4AO5VguccHtvjDszTsUaK4=
Subject key identifier: E1:2F:CA:F7:24:39:28:A9:8B:35:D1:EE:CF:7C:9F:C0:DF:C8:DF:2D
Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
Certificate serial: 080D
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
Manifest number: 0805
Signing time: Sun 01 Mar 2026 23:01:29 +0000
Manifest this update: Sun 01 Mar 2026 23:01:28 +0000
Manifest next update: Sun 08 Mar 2026 23:01:28 +0000
Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: BN05IObdWSJXkG4LQtxdjJJOhqvSG8zh8acHCjxd7o0=)
2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl
rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 23:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2061 (0x80d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032
Validity
Not Before: Mar 1 23:01:28 2026 GMT
Not After : Mar 8 23:01:28 2026 GMT
Subject: CN=69a4c549-391f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:14:89:d2:48:14:f5:61:19:06:a6:af:d0:
92:31:e6:29:19:81:6f:7d:53:dc:d3:a2:e2:dd:e7:
56:cd:51:3e:32:03:fd:1e:aa:b2:a9:c6:ca:a1:99:
26:3c:9c:10:ef:5c:e8:1b:55:65:76:0d:55:bb:78:
15:ed:21:76:b6:ea:73:64:b2:81:3d:9c:b1:21:7b:
4d:3e:ed:e9:12:45:1d:fb:2b:11:66:60:93:c4:8e:
11:9a:c8:6a:a0:fa:cd:d6:44:dc:a7:d0:a4:6b:04:
c0:2c:8a:03:a5:38:f7:00:0d:bc:61:5b:62:2f:6c:
a1:e9:0e:25:4a:8a:47:6b:e5:18:5b:36:f0:89:ff:
de:eb:05:7e:22:d4:8b:9d:b2:5e:f9:37:ce:e5:d3:
9e:81:50:6f:90:d1:41:2a:7a:ee:ba:35:10:43:c8:
bd:e1:ac:bc:1b:64:83:03:c2:8f:40:92:ed:35:92:
ec:2c:76:b4:62:16:e5:8d:4c:fc:af:5c:82:17:0c:
4e:83:50:1d:e7:90:4b:9c:5b:b8:84:4f:09:86:19:
e7:b7:63:77:d4:ca:27:0a:d4:6e:d2:f2:f5:c5:22:
09:d5:6e:3e:6c:fc:d2:8f:ba:bf:ae:33:1a:09:cb:
db:07:f5:9b:cf:c9:32:18:d1:e4:06:6d:8f:d7:21:
0e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2F:CA:F7:24:39:28:A9:8B:35:D1:EE:CF:7C:9F:C0:DF:C8:DF:2D
X509v3 Authority Key Identifier:
keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
73:13:27:b1:bc:ee:69:61:52:c4:f2:47:d2:56:88:cd:0b:13:
44:7d:4b:da:bf:c4:dd:b9:7d:d0:c6:fa:e3:89:0a:ac:fe:12:
95:fe:e0:87:c5:63:50:10:70:c9:4e:e3:94:7f:94:49:f1:59:
b2:fd:7c:da:d8:43:4a:ce:af:a6:16:6c:67:ef:1f:c5:51:0b:
51:3f:45:9d:7c:d3:84:4b:da:cf:e4:7b:91:42:31:71:43:b0:
74:a0:81:03:ac:2d:7a:61:8a:c8:db:ac:77:30:c6:a3:d8:fa:
5c:9e:36:a8:42:8d:66:97:e2:e3:ff:82:a8:6a:81:90:54:fe:
ca:c3:e0:fb:ab:ea:6e:50:64:90:cf:6e:ee:c9:24:42:7c:1e:
f5:3b:35:8c:7b:e5:bf:3d:14:d3:5e:74:bd:bd:03:51:fd:da:
34:0c:0a:f9:e8:9a:94:65:22:2d:64:19:91:db:c8:e6:a5:1c:
c4:7f:a8:83:5f:98:38:ca:c8:94:1d:38:37:7a:8d:4a:d6:84:
5d:e7:97:41:57:d6:c4:90:88:0e:4b:2f:83:22:6b:bc:51:ae:
61:5b:99:c7:6d:7a:cf:49:b0:a5:66:b5:31:22:17:7b:35:44:
2e:21:ac:aa:18:3d:da:dc:2d:1a:60:94:89:7a:2e:9b:e1:50:
eb:b6:90:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:04:28 2026 by rpki-client