
$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json)
Hash identifier: B7Zqy9zhPYcJ3GMdihJ6PgtTAClne0VOLLhJCqQhG3U=
Subject key identifier: 3B:04:D0:BF:F0:61:DC:EC:75:A6:D9:6A:58:76:F3:34:50:07:4C:B6
Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61
Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761
Certificate serial: 02A0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
Manifest number: 0287
Signing time: Sun 01 Mar 2026 02:30:46 +0000
Manifest this update: Sun 01 Mar 2026 02:30:46 +0000
Manifest next update: Sun 08 Mar 2026 02:30:46 +0000
Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: k9O1MqjSr05F2hYb7OrTuHMw6xdOi5OUhZdI/w4IJBE=)
2: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: 48f3MEr0BPsbN/qz4XgUFOwBE8un4W9B+4S+BoLKhYc=)
3: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: o8g8BiOgmVHVzswzRKLrO3Y0f0RfD3gZqIklITdkjzE=)
4: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: BsavRARE4BkmH9B+ggGXbKAtBKZsBMzUNEmr+sJhuto=)
5: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: QKPxnsl5W/cKLCZuMQFferj3l2oedmhBT9kPnPZhJg4=)
6: A4B9732E372211F088B77741C4F9AE02.roa (hash: 0dSvCmKLef9Oa4TUk6FVx6l4EnK1M32ajCwnmpc9ysE=)
7: C1ECF984D07411F0B0B35C27C4F9AE02.roa (hash: os69TIQA56BBN7T5iYLRdSgFw8k4d4WQd/V6IlYfL7M=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl
rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 02:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672 (0x2a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761
Validity
Not Before: Mar 1 02:30:46 2026 GMT
Not After : Mar 8 02:30:46 2026 GMT
Subject: CN=69a3a4d6-432c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:03:e5:56:8c:98:65:a3:15:9a:db:f2:fb:
30:15:bf:30:8a:a2:ab:6e:45:d1:22:84:7f:ba:83:
52:60:2f:b1:8d:55:5d:fa:1a:23:25:5c:b9:9e:5c:
b8:f2:68:7d:19:a3:aa:af:c9:5c:96:4d:d9:7f:a8:
b6:99:0c:72:3c:a4:3c:7c:e7:f3:b4:03:26:db:a2:
a0:91:b6:cb:eb:9e:6f:eb:2e:22:79:38:01:24:24:
58:58:9e:16:52:98:30:c6:78:f2:9a:d3:16:0c:8b:
41:80:19:59:62:e0:05:59:f6:d9:56:0d:72:8b:e0:
62:8f:a1:3c:c8:39:c9:0f:fb:e4:b7:c0:8c:38:a1:
53:e5:43:ba:72:f7:2a:dd:29:98:1e:82:a1:1b:6c:
01:83:e2:f8:04:a3:59:84:ce:7f:08:30:7e:95:80:
2a:11:3b:c6:42:b8:2d:3b:6f:cc:33:c5:56:4a:6d:
03:99:8d:88:7c:1c:fe:c2:ca:70:aa:9c:8c:91:9e:
8a:81:fe:0c:cd:8b:fb:0f:d8:3a:4e:d5:3b:2e:5d:
bd:01:af:82:71:55:dc:f1:41:ee:0b:38:c8:cf:95:
54:17:af:43:2e:b5:32:af:24:96:e6:35:22:56:fe:
e1:97:b9:3d:51:ad:43:0a:0a:51:76:6a:bf:9a:75:
74:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:04:D0:BF:F0:61:DC:EC:75:A6:D9:6A:58:76:F3:34:50:07:4C:B6
X509v3 Authority Key Identifier:
keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
53:e1:b8:05:48:31:b5:0f:1d:a1:bc:e2:e7:e0:fb:e1:5b:71:
3c:37:84:b5:08:fc:e4:2c:aa:a8:66:78:31:16:8a:e4:a1:48:
36:c5:a8:05:f1:48:52:6b:b7:d1:39:55:8f:97:fe:ca:b5:c3:
c8:63:3a:31:8b:51:00:b0:f3:25:7b:01:3c:c6:18:bf:a9:02:
04:f9:67:88:02:7a:a8:05:e2:56:74:26:fd:e7:20:90:a1:83:
49:35:8f:db:8a:3c:8c:a1:91:10:d7:7c:d2:20:d4:c5:99:16:
1f:53:1e:d2:9c:e8:13:7b:f1:14:e3:62:54:70:ae:a4:aa:23:
51:17:d0:51:80:5c:5c:5d:89:df:dc:82:aa:6a:9e:3d:ad:e5:
b4:57:6b:08:3a:b3:bf:ff:9f:6f:aa:7c:67:5b:e5:e4:a5:4d:
bd:01:78:10:64:20:aa:26:4b:66:4c:2d:b1:11:a6:ca:37:2c:
a1:90:c5:c8:71:4c:be:ca:c6:75:33:29:ac:33:a1:50:a4:fd:
b5:85:62:6a:f3:ee:a9:13:65:27:48:8b:be:c9:25:4c:21:fc:
29:68:7e:16:ba:74:32:29:43:d7:80:a8:41:5e:1a:d6:d4:7c:
60:9a:d2:1d:12:b9:54:33:bb:f6:48:33:bb:9a:ed:37:c9:05:
32:1f:3c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:35 2026 by rpki-client