
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json)
Hash identifier: v7YjVbm37eqX5BlpZkNewqbpPAXgeJln36vqillzZuw=
Subject key identifier: DB:A4:D6:6F:BF:97:AF:C8:72:0C:E8:27:AF:18:17:C3:25:5C:3E:43
Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92
Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492
Certificate serial: 6D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
Manifest number: 6C
Signing time: Sun 19 Oct 2025 10:18:23 +0000
Manifest this update: Sun 19 Oct 2025 10:18:22 +0000
Manifest next update: Sun 26 Oct 2025 10:18:22 +0000
Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: A4mWkcPOXle/859sRmzRWQOtastkzxoti1g7c6Y7mYQ=)
2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl
rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 10:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109 (0x6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492
Validity
Not Before: Oct 19 10:18:22 2025 GMT
Not After : Oct 26 10:18:22 2025 GMT
Subject: CN=68f4baef-00ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:92:5d:70:88:21:78:d5:5d:ea:71:63:35:
02:f6:6b:c2:fd:08:92:2b:d6:41:5e:61:42:0c:3c:
2f:89:f7:13:80:63:ce:17:1b:be:33:16:c1:df:56:
87:a2:a9:2c:c1:ad:76:a2:5b:32:08:09:7c:a7:9e:
74:e8:e7:d2:89:cf:5c:8b:f1:1c:a1:c7:5d:66:55:
2b:ce:63:54:18:18:00:dd:8f:39:58:36:84:b1:42:
bd:c1:a0:7b:3d:62:49:39:14:6e:1a:47:5b:3d:c2:
7d:2b:69:72:42:07:1e:de:43:53:b9:d1:f9:ff:bd:
48:4e:c1:82:67:ab:84:85:30:a4:ed:68:06:81:61:
71:8e:c5:11:d8:f9:d6:22:ed:21:ed:39:8c:01:58:
96:2b:fc:dd:46:55:de:96:be:13:d1:53:e3:c9:62:
e0:48:03:59:88:9c:45:1c:f2:18:8b:92:68:a0:1d:
74:59:80:60:ac:47:ca:76:fb:cc:cc:d5:90:44:2d:
73:65:af:6f:5d:c8:43:ee:18:24:8e:8a:00:8d:b7:
08:ab:17:b4:76:55:b1:5e:65:f7:6c:a4:e3:f9:da:
84:39:85:5b:1c:0b:ad:87:8e:65:8a:c1:cd:7c:d8:
bf:a7:56:f3:87:42:c2:09:32:1e:5b:4d:8e:76:71:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A4:D6:6F:BF:97:AF:C8:72:0C:E8:27:AF:18:17:C3:25:5C:3E:43
X509v3 Authority Key Identifier:
keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3d:f6:93:eb:4e:11:08:97:81:12:d2:b5:32:fe:d6:17:fc:33:
d9:b3:95:72:0b:8c:5e:53:05:b3:cf:98:63:c9:7a:95:5d:0f:
cd:c6:22:4c:fd:28:45:4f:49:b9:2b:b4:f4:d5:fd:d3:38:f7:
b1:df:ba:84:dd:c1:1e:aa:72:b6:54:9b:ff:21:62:78:f0:4d:
45:19:f6:4c:17:ff:cd:63:f7:c2:31:90:71:6b:03:eb:24:5b:
3a:da:5a:5f:c5:64:91:ec:1e:d3:4f:55:00:79:3f:e8:12:0e:
da:2d:8c:b6:7d:c4:9d:c7:23:1a:d5:e6:b4:b2:c9:47:35:b5:
92:48:1c:ab:b9:8c:1e:2e:d4:d0:5b:d7:07:5e:55:41:05:ff:
c5:b0:9b:fd:32:dd:13:0f:e5:f2:8c:ea:87:8b:68:c3:75:fa:
92:1a:d2:80:9a:23:9b:85:43:64:63:73:e2:fa:a1:80:94:f0:
69:fa:49:ec:68:4b:1a:e5:3f:67:8b:69:14:5c:00:9d:b2:5a:
96:db:94:0e:a3:2e:ce:80:29:95:8d:2d:f9:b3:21:b0:d1:c8:
e7:fe:fe:d5:20:33:db:ed:a7:51:fb:ea:88:e6:05:b9:7d:66:
61:d6:91:2a:c0:ca:73:47:15:55:b1:b5:ec:02:e0:1c:7b:16:
47:26:79:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:12:57 2025 by rpki-client