
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft
File: 6VdtMs2hm7hvPBYuyf020_0lucE.mft (raw, json)
Hash identifier: IQtFX4/jN0+popGYYQ5LwViNVGkCf5KT4U6VEAZO/VM=
Subject key identifier: CD:BC:EA:13:1E:56:7C:C4:AF:1A:29:03:BD:9B:68:65:F5:58:EF:F9
Authority key identifier: E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1
Certificate issuer: /CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1
Certificate serial: 0226
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft
Manifest number: 0221
Signing time: Sun 19 Oct 2025 04:17:30 +0000
Manifest this update: Sun 19 Oct 2025 04:17:29 +0000
Manifest next update: Sun 26 Oct 2025 04:17:29 +0000
Files and hashes: 1: 6VdtMs2hm7hvPBYuyf020_0lucE.crl (hash: lXgIEd6+ONNgP6m0Q3zqG9d77EIrqd+zG3sBHMcafiM=)
2: 01C299E0662611ED94A8DA42C4F9AE02.roa (hash: qDl9A66XUfdxXb2Z9BDWMcaLCM85XHiGpfBrshr3vQY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl
rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 04:17:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 550 (0x226)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131359, serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1
Validity
Not Before: Oct 19 04:17:29 2025 GMT
Not After : Oct 26 04:17:29 2025 GMT
Subject: CN=68f4665a-7011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c0:4b:b1:26:fb:13:bb:2c:8b:5a:63:47:a9:
11:77:4a:e6:54:26:35:40:c9:d1:57:9a:1d:bf:b0:
db:78:c2:3b:67:21:63:d1:54:fe:21:bf:36:cc:d7:
af:fd:b1:ef:ff:0f:5c:49:ce:ee:b2:bf:6b:dc:4f:
dc:cd:b6:9a:c5:02:70:c3:c5:d0:ac:84:98:78:9a:
56:ae:71:2a:1f:dc:ab:45:ea:5d:21:f6:79:f1:af:
10:ba:1e:ca:99:42:da:a4:ff:b8:5c:90:91:4e:20:
cc:28:a3:09:7b:19:18:4e:1d:2b:7d:53:b0:91:8c:
28:18:0e:63:95:a9:a2:51:a7:43:50:41:c9:0d:ea:
76:f9:0a:35:1c:b3:4a:ae:0b:a1:1a:93:d4:61:31:
f2:97:00:06:17:3d:e1:7b:ff:c3:26:2d:d3:0b:cd:
b7:56:8b:8f:7d:8d:6f:e2:a1:25:fc:c9:38:01:30:
8f:f2:7b:6d:db:d1:6a:22:0d:a8:68:1f:c0:42:ad:
f8:69:3e:15:20:1b:d2:e1:e5:2d:dc:0c:04:a7:e6:
1e:13:fc:57:d6:6c:27:42:11:97:a7:54:8e:3b:4c:
d1:77:df:52:9e:5e:47:21:9c:06:fa:e6:a5:f4:b5:
55:d1:4a:2a:7d:1a:fb:70:c6:49:fd:1f:d8:f7:22:
5c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BC:EA:13:1E:56:7C:C4:AF:1A:29:03:BD:9B:68:65:F5:58:EF:F9
X509v3 Authority Key Identifier:
keyid:E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
58:34:04:e0:07:28:63:78:71:0c:91:b7:60:56:68:a7:da:e9:
ef:7f:b9:c5:e3:de:5e:69:61:32:a0:f4:69:14:67:66:93:b3:
1f:d2:2f:ae:71:1e:67:26:8c:5c:8e:ea:60:db:12:6f:70:bc:
24:00:da:51:1c:15:fa:a0:c8:ca:0e:11:06:86:90:a6:9f:59:
2d:3e:a7:31:3c:77:8d:20:87:54:91:2b:e7:f9:17:f8:c3:80:
80:b1:0e:50:e7:e1:cd:24:be:cc:b3:da:30:83:3e:2c:43:d2:
24:c9:8a:6e:3c:66:90:cd:1d:74:cb:5c:d6:72:24:76:98:db:
55:23:3a:3f:04:30:50:c3:7b:12:00:cc:9f:b9:48:1c:a8:b7:
ef:21:19:9c:50:c9:56:ab:c0:64:58:8b:af:c3:df:b1:19:0b:
cf:03:b9:32:e1:39:30:2e:c3:a4:ac:c3:b1:e7:45:ea:59:ad:
52:0c:79:a9:d5:2c:7a:73:5b:80:b1:ab:75:ef:b8:c7:64:bc:
10:0c:32:b4:84:34:27:fd:d9:86:c1:a9:d3:51:a5:8e:49:fb:
81:37:e5:16:73:5b:2a:1e:68:75:bf:aa:fc:90:01:25:2d:96:
80:f9:7d:ce:06:b2:92:be:5d:1c:9d:52:ca:cc:45:1c:1f:ab:
0e:72:96:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:11:34 2025 by rpki-client