
$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json)
Hash identifier: kwaukMKMZB1QUJZgwH/ZsFaFcoq+gtapCrHrablHpug=
Subject key identifier: 55:99:1C:28:08:50:75:22:3E:56:AF:F2:63:A5:45:9B:00:6C:F7:B6
Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3
Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3
Certificate serial: CA
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
Manifest number: C7
Signing time: Fri 17 Jul 2026 08:04:25 +0000
Manifest this update: Fri 17 Jul 2026 08:04:24 +0000
Manifest next update: Fri 24 Jul 2026 08:04:24 +0000
Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: PqabCAna3zrhCq9Om07bVYBrMP9C+1Zwaj895HnQv+s=)
2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: g6Egk/b7vNf0MzgI//DoeOCEJm43M/fSUDub5ucoMAA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl
rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:04:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202 (0xca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3
Validity
Not Before: Jul 17 08:04:24 2026 GMT
Not After : Jul 24 08:04:24 2026 GMT
Subject: CN=6a59e209-a2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a4:6a:f8:ca:bf:31:71:5d:7e:95:50:ed:e7:
4d:e6:74:80:8e:81:91:95:5e:64:3d:20:3b:48:3f:
7d:84:46:9d:0b:ac:f8:71:58:fb:56:58:cd:f7:d4:
c1:bf:b4:03:e7:13:91:00:f0:df:56:da:36:33:11:
08:66:2d:60:ef:7f:eb:57:4a:e7:9d:b2:9e:c2:92:
4d:e9:d3:72:68:49:50:1c:e5:9c:7a:02:90:94:2b:
ba:8d:54:b8:a3:75:68:3d:a9:72:5e:d0:30:5a:01:
e4:24:89:73:c8:7b:87:9b:53:b4:25:15:fd:5b:5c:
d6:4f:fa:a6:82:4b:2e:d8:73:2d:6d:ca:82:45:bf:
61:92:ff:13:14:c3:35:a9:b8:a8:fb:62:51:47:da:
5a:4f:48:d1:98:b3:f4:b9:72:e6:72:bc:e4:00:60:
a6:ed:e2:79:5b:34:2a:b6:79:f0:ae:0c:95:2c:57:
70:3f:1a:f0:9c:be:8c:82:b5:08:c0:d3:0d:36:4b:
9e:14:6f:f5:e8:4b:05:c5:b9:75:1d:b5:0a:40:4c:
00:92:31:cc:61:81:b2:e1:93:a4:a9:41:73:d5:94:
fc:f3:2f:bd:22:a3:a2:51:a8:cc:e1:c9:c2:a5:9f:
bb:5d:f8:51:a6:d1:4e:e2:ca:d4:38:f2:7a:fc:81:
0b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:99:1C:28:08:50:75:22:3E:56:AF:F2:63:A5:45:9B:00:6C:F7:B6
X509v3 Authority Key Identifier:
keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b5:86:22:54:86:03:ea:78:c9:5d:cc:cb:18:67:20:81:28:c8:
a2:1d:97:f2:f7:26:5e:83:ae:48:3d:12:63:1b:cf:d1:4b:81:
54:14:89:f1:07:0b:cb:dc:86:f2:87:92:33:38:ef:dd:ba:7c:
67:fe:7b:f3:2e:4e:54:54:30:04:64:e3:92:da:27:cc:22:3e:
0a:7f:e0:1d:67:4a:30:a6:88:b4:00:78:e7:5d:fa:f4:de:70:
f8:9e:95:e5:fb:57:96:d7:3d:71:7e:4f:ac:06:83:e5:fe:0e:
be:99:f2:eb:0b:54:a9:dc:d0:eb:1a:b4:6b:16:df:ae:a3:c7:
ad:f3:3e:97:b2:d0:db:b3:96:6d:74:fa:cf:f8:3a:25:db:25:
a5:8e:ae:dc:62:9b:82:d7:54:f2:d5:c6:ae:57:e7:32:a2:36:
d6:83:17:9a:34:da:d2:ff:fb:3a:41:e5:fd:84:76:14:54:5a:
20:b5:87:c0:88:aa:5c:c5:18:68:ea:61:a6:53:03:3d:70:36:
c3:9e:25:21:1e:e5:68:b4:dd:5a:b1:38:27:4d:aa:93:78:dc:
c4:54:b5:b7:cf:df:98:e5:3c:8d:a9:b1:36:fa:0a:ec:67:52:
2d:86:b7:84:0d:8a:06:6e:ff:a6:0e:a5:99:18:8e:98:73:3f:
7c:7a:d3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:00 2026 by rpki-client