
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json)
Hash identifier: eQ8DRAYUIRv55b4IYhOWLye4oEbEg3uq5ZgaIvzmcoE=
Subject key identifier: F4:24:32:5F:B7:C2:4E:7A:A6:2D:0F:82:83:33:4C:B5:03:0B:F1:57
Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A
Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A
Certificate serial: 0B26
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
Manifest number: 0B05
Signing time: Fri 10 Jul 2026 19:38:55 +0000
Manifest this update: Fri 10 Jul 2026 19:38:54 +0000
Manifest next update: Fri 17 Jul 2026 19:38:54 +0000
Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: IBqMRN28RtkWgDuTpkeTNZ1ovg/joVOocigaBtc914Y=)
2: 6EE80A72F80A11F0BD0E5DB76F6F56BC.roa (hash: sUHEm0sthEP5Lto5Jyv7yFbAnqT7Ikn9wDCxjmSd04U=)
3: 6E71C43EF80A11F0BD0E5DB76F6F56BC.roa (hash: EAWXNHbw72NGXN5onuQ/WOahqrbdihDLckXMN5kD8CQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl
rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 19:38:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2854 (0xb26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A
Validity
Not Before: Jul 10 19:38:54 2026 GMT
Not After : Jul 17 19:38:54 2026 GMT
Subject: CN=6a514a4f-a047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e2:e6:e8:61:a5:c5:ce:6c:d7:a7:ed:5e:80:
fe:f5:cd:23:fd:a6:0a:e3:fd:20:d6:d5:44:18:b8:
5d:38:6d:be:26:74:ae:6a:a0:be:e7:85:d5:14:28:
05:a7:ad:37:3b:c3:e9:56:f8:a9:b8:09:c0:11:d7:
87:29:b6:dc:86:9b:ff:49:c3:6e:4a:4e:1b:b4:3c:
1e:87:b2:a5:c3:24:d9:cb:2e:25:de:b2:9c:07:a0:
fe:54:de:27:b2:1f:d2:b9:43:17:72:60:17:f8:d5:
ae:d7:25:97:d8:fa:91:fa:e8:db:d3:98:bd:4e:89:
9b:c2:d6:88:b9:d8:ff:f7:70:c1:1c:f7:bf:67:61:
62:dd:41:0c:65:17:2d:c1:0e:98:e5:77:7e:5c:9f:
7f:cd:82:51:9e:ad:4a:0f:fd:22:f9:7a:2c:cf:79:
c4:33:da:f6:dd:c5:9b:91:1e:90:a2:14:ef:6f:31:
99:89:dc:80:f4:3a:00:6f:5e:6e:a9:ed:89:a7:63:
ae:15:ae:f8:7f:db:a2:f7:0b:c4:f8:65:2a:7d:4f:
7a:68:f2:03:09:19:a0:0b:ed:e8:d7:c9:4d:04:e2:
59:f2:f3:8c:bf:ce:2c:44:c1:21:96:de:e5:31:e6:
08:f2:08:bc:95:40:63:ff:05:c3:62:04:cd:11:f0:
ed:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:24:32:5F:B7:C2:4E:7A:A6:2D:0F:82:83:33:4C:B5:03:0B:F1:57
X509v3 Authority Key Identifier:
keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:ea:1a:6d:cb:1c:12:8d:aa:6d:0f:b9:c8:3d:e1:46:5f:6e:
c2:6f:09:90:e7:b1:a7:86:28:48:26:d5:13:f8:a6:ed:47:04:
2f:fa:f5:4e:68:5f:ca:e1:e4:19:63:7a:f5:0d:01:7b:99:7c:
85:d8:8b:b7:4e:32:49:d1:fb:ca:4d:c8:63:35:b8:aa:4e:ae:
eb:be:9e:87:db:3b:75:cc:0b:67:bc:62:16:51:aa:0c:9c:04:
10:bb:e0:38:f5:82:f7:2d:0e:6b:80:27:95:5f:c5:63:46:95:
e7:82:c3:63:70:72:ba:63:d8:c0:26:c1:ff:8c:75:d4:c2:06:
f2:8b:88:92:01:a5:60:7a:af:f1:4b:3e:3c:58:b9:70:b2:60:
fe:ea:3d:75:ef:4e:5a:dc:16:d5:dd:23:c7:b5:ef:dd:5f:38:
cc:40:e6:a8:4f:21:82:73:78:50:b3:b1:68:71:b9:be:4a:e0:
1f:7e:0f:8c:10:e7:01:d0:61:9e:da:58:36:5e:8b:46:54:ba:
a4:f1:a2:33:62:8d:88:5e:fc:e7:67:be:6f:6b:6a:8c:37:50:
c4:5b:6a:f8:af:17:b1:b1:66:c9:39:76:c2:d9:a9:7e:fd:33:
fc:d5:18:0f:2c:fc:c4:2d:26:4c:37:fa:0f:d8:e5:a1:45:06:
d7:41:e8:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 13:19:50 2026 by rpki-client