
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft
File: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft (raw, json)
Hash identifier: p3s9sdf6DuyxVdFo9Lt/zBteFNikTignS97mMehLb6A=
Subject key identifier: 03:17:9D:ED:68:3D:83:25:D8:35:19:3D:94:CB:11:4E:55:F9:69:16
Authority key identifier: D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A
Certificate issuer: /CN=A9123E38/serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A
Certificate serial: 1774
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft
Manifest number: 1749
Signing time: Thu 26 Mar 2026 16:35:38 +0000
Manifest this update: Thu 26 Mar 2026 16:35:38 +0000
Manifest next update: Thu 02 Apr 2026 16:35:38 +0000
Files and hashes: 1: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl (hash: BFNHzUxgc3OtoKHQCDu2kjeIw4N8aR4T/8wp6UYGAFQ=)
2: 24CFDABE00EC11E8AAC4DD6EC4F9AE02.roa (hash: FXCVIBZtmzju9cWOxPkZCfQlYGeqv1UjQpOEkpTPeD4=)
3: 0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa (hash: LprT5cim2RrsHbGQk7NGd6J/lGXNUlFqt+FKrUc9WWA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl
rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 14:54:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6004 (0x1774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9123E38, serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A
Validity
Not Before: Mar 26 16:35:38 2026 GMT
Not After : Apr 2 16:35:38 2026 GMT
Subject: CN=69c5605a-2ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d6:0b:1d:95:77:44:da:2c:9d:91:1b:7e:19:
de:58:05:db:d5:7e:52:51:f4:fa:e3:b5:84:8d:30:
a3:3c:5a:ca:94:8c:e6:41:fb:5d:b2:8e:d3:6f:9e:
9a:1b:c2:f0:b8:36:30:5c:43:91:80:5d:a7:78:fa:
1f:b4:50:77:33:20:bd:bb:f1:73:3f:cd:86:64:81:
03:68:5e:06:a4:49:21:71:e9:37:0f:b7:91:08:b6:
66:e0:b0:74:b8:f4:5a:be:d9:18:28:5b:95:37:cd:
0b:3c:8c:39:07:71:52:52:d3:19:1c:3e:05:84:74:
f6:4c:dd:8d:0c:9b:71:9f:91:0b:e8:7d:0e:6c:0a:
2e:b1:2c:33:a8:13:1e:3c:4a:30:42:be:5f:97:98:
b9:ec:9b:a1:3f:f7:09:16:50:cb:d8:20:f5:de:e6:
74:79:76:a3:39:ba:22:2e:c3:70:63:0c:cd:df:3a:
d7:87:8d:eb:ab:cb:50:28:82:ea:38:70:c1:70:fd:
2b:b7:07:a1:84:dc:8a:f3:aa:ad:25:90:5a:f6:b0:
f5:6c:6f:c7:37:c8:9e:ea:9d:bd:04:8b:b2:f3:aa:
1c:37:c4:c2:b8:b1:ff:d3:00:76:1c:78:74:f5:0c:
85:54:3a:3f:7a:f5:23:4b:b0:cf:af:92:51:06:49:
db:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:17:9D:ED:68:3D:83:25:D8:35:19:3D:94:CB:11:4E:55:F9:69:16
X509v3 Authority Key Identifier:
keyid:D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:0a:ca:34:92:f3:09:bc:15:9d:b0:26:a5:63:2d:7d:5b:d6:
d5:3d:2d:2c:27:aa:c4:8c:4c:66:88:a7:6c:d2:9a:24:bf:46:
98:15:e8:f4:91:36:cb:8d:b6:f6:d0:9e:fc:9b:0f:33:1b:09:
8c:e6:8f:cf:2e:60:c6:14:7f:7e:1b:82:13:cf:d9:fe:09:b9:
d7:71:1e:0e:f7:5f:9e:0b:70:68:d7:7c:6f:13:07:d4:99:95:
5b:a5:dd:f9:48:a0:66:35:6f:d4:21:ea:d4:d6:29:41:b0:a5:
77:db:78:0f:f7:6a:05:95:1d:51:60:8c:3f:a1:8a:f7:1e:9d:
fc:ff:ec:f5:97:d6:a2:78:0f:56:21:0c:5f:ea:ae:59:eb:42:
8e:12:42:57:83:ef:04:b0:83:c4:f8:84:ed:a1:b0:d2:65:b4:
7c:b3:94:4e:f0:4a:51:46:7f:ac:6b:3d:31:4f:9d:b2:02:8e:
1b:6e:d3:33:be:70:9b:26:a2:ff:61:54:a9:13:3a:a7:3e:b7:
e0:a4:1f:11:fe:87:ee:30:53:21:36:ca:e0:81:cb:c4:9d:11:
c3:53:2d:eb:b9:e8:3a:2a:47:d6:e5:ef:d9:a2:f6:92:93:ef:
84:37:58:a3:fa:3d:08:ca:e7:c3:68:67:b5:78:d0:82:2e:07:
ca:b1:9c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:54:14 2026 by rpki-client