
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft
File: GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft (raw, json)
Hash identifier: DprTZI17fXlc+lFI8c3R8kQ/jS1ImKaBrzTfrcIJsPQ=
Subject key identifier: EB:1C:85:59:1F:E4:07:14:06:55:A0:2B:5E:6C:3E:68:D3:91:8A:6A
Authority key identifier: 19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26
Certificate issuer: /CN=A9120656/serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826
Certificate serial: 9C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft
Manifest number: 94
Signing time: Fri 17 Jul 2026 08:44:43 +0000
Manifest this update: Fri 17 Jul 2026 08:44:42 +0000
Manifest next update: Fri 24 Jul 2026 08:44:42 +0000
Files and hashes: 1: GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl (hash: TvpfvR3mb3nF6jea2yOS5Y9VXq0Z7Nud/ERRaOp627E=)
2: CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa (hash: JcAxzRv81BEK8q/J7k6ROwCVG10hKzG1+sw20R/B8ek=)
3: 53B7196A627611F187FA49308B47A888.roa (hash: /0+V+2mNbQO3yIRgng3bkOu+Q6a16sPfs1xG0zllPzQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl
rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:44:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156 (0x9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120656, serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826
Validity
Not Before: Jul 17 08:44:42 2026 GMT
Not After : Jul 24 08:44:42 2026 GMT
Subject: CN=6a59eb7b-18fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ec:9d:88:dc:1f:73:df:5f:72:44:dd:77:88:
c1:7c:00:35:58:c6:19:4d:ab:d2:9c:60:cb:d4:9b:
c7:56:c3:5e:97:bc:da:d3:2d:d6:00:91:6d:cd:61:
2e:4c:09:f1:cb:2a:12:72:87:7b:8f:66:87:21:0b:
62:2a:9d:60:93:90:b8:e6:11:85:ee:ca:21:c2:6f:
4a:be:e0:d3:25:c2:36:46:bb:1c:1c:c6:82:84:6f:
28:03:6c:82:04:c1:fb:fa:85:05:18:90:a9:ae:6b:
aa:96:c2:c2:e3:92:d6:f3:bf:49:c8:23:c1:f5:ba:
78:ef:a6:88:f9:83:7d:0b:97:b3:01:0d:a1:09:f2:
15:77:07:7d:8f:12:f3:e3:68:a4:4f:b8:51:22:be:
d3:4a:49:bf:1f:65:34:79:c2:14:30:ae:dd:7b:6a:
de:32:a4:a5:6a:80:94:be:69:8c:ca:0c:7b:55:51:
61:85:5a:3e:0f:3f:b1:7e:74:22:bc:7b:21:66:53:
3a:f6:64:5e:38:21:d1:0e:ff:52:6a:8b:07:99:5c:
f4:d9:d0:e8:02:34:43:33:ae:2e:df:d1:40:eb:a5:
a6:b4:2b:29:af:49:02:88:f3:d1:ba:36:4e:da:83:
5f:43:16:95:b1:98:1f:22:e4:db:09:04:d2:04:67:
2e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:1C:85:59:1F:E4:07:14:06:55:A0:2B:5E:6C:3E:68:D3:91:8A:6A
X509v3 Authority Key Identifier:
keyid:19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
04:02:77:c4:8a:c8:c8:9c:2f:ff:46:d0:f8:4b:cf:22:d5:aa:
5b:91:70:30:68:0b:9f:9b:11:c4:70:ac:18:4f:9d:88:3f:2f:
dc:32:5e:5d:f9:1e:50:a3:dd:b6:0a:9d:4a:ad:8b:32:b9:d5:
0b:35:81:3f:24:90:20:b1:0d:ca:d0:04:73:b4:bb:ce:18:11:
5d:28:98:69:5c:5c:48:12:61:36:a0:a5:29:d7:90:02:42:36:
87:7f:ea:89:62:03:9e:81:31:d6:c5:e5:31:fc:28:a8:df:50:
fe:45:55:6e:11:b3:54:0e:91:59:35:fe:df:66:0f:e6:47:da:
50:d7:a2:3f:24:e5:68:65:e9:d1:ca:89:24:9c:1e:6a:d7:fc:
fb:34:be:ae:ee:99:42:a3:fe:a5:97:1c:d9:33:f4:b5:07:eb:
87:e9:ab:ac:ed:30:51:2c:90:6c:90:8d:67:e6:d3:d5:a2:3e:
11:da:28:7f:8e:14:e0:3d:c3:a3:fc:55:31:73:e6:df:d7:67:
c8:ff:76:ef:16:a3:45:3b:af:5e:77:95:36:87:aa:fa:cb:a8:
22:71:a3:f7:2b:5a:70:56:8c:cd:36:c3:cf:56:64:f6:a6:b8:
ad:03:5c:43:28:3d:97:de:77:8d:61:fe:d9:d8:7d:2f:77:5a:
16:02:92:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:05 2026 by rpki-client