
$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
File: NU4yud4OVpoZUal7kyAZ9oijUKw.mft (raw, json)
Hash identifier: 8LFQf/yUM177ubGNlkIzVD0OMX1MO2bNksuimDNHhok=
Subject key identifier: 65:03:15:F5:A3:B5:35:89:CD:B4:DB:43:BF:2C:C8:8D:FB:27:03:5F
Authority key identifier: 35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC
Certificate issuer: /CN=A912442A/serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC
Certificate serial: D0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
Manifest number: CC
Signing time: Fri 17 Jul 2026 01:18:54 +0000
Manifest this update: Fri 17 Jul 2026 01:18:54 +0000
Manifest next update: Fri 24 Jul 2026 01:18:54 +0000
Files and hashes: 1: NU4yud4OVpoZUal7kyAZ9oijUKw.crl (hash: hgr+7dHB+CEBPssT8Ycvrkl3HVk5CGpMg3BdBCpadhE=)
2: 19D89DB656F311F083F53B5DC4F9AE02.roa (hash: sqaF/L7BkPPx01J6zjZJOWgkKgNdgKGuBKXecAoTrY4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl
rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:18:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208 (0xd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912442A, serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC
Validity
Not Before: Jul 17 01:18:54 2026 GMT
Not After : Jul 24 01:18:54 2026 GMT
Subject: CN=6a5982fe-e4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b6:a5:cc:f1:6c:2b:2e:07:17:a4:f8:22:7a:
25:cb:ee:a0:b4:25:c0:5d:56:4f:d3:cd:cd:00:e1:
81:96:5b:41:15:fc:0c:5f:0c:10:6b:4e:ec:40:9a:
e9:49:95:08:c1:4e:43:f8:d1:01:5b:81:2a:1a:ca:
72:3b:8b:79:39:14:4e:58:ae:d2:47:9a:60:6c:8a:
26:0a:82:a1:53:8b:4d:0d:f8:15:a0:28:57:aa:e5:
79:1a:7c:bb:e4:81:4f:a6:87:88:ff:51:30:82:34:
40:f2:34:df:bd:29:a4:43:18:e8:58:81:b4:74:d8:
3f:f0:7c:51:92:c6:3a:53:c5:32:8c:d6:85:33:13:
b3:9c:93:e0:77:f9:d2:c6:98:a4:86:dd:cf:ef:82:
f6:4f:36:83:96:d7:a0:72:e2:70:df:a3:71:dc:c1:
6f:c2:d1:ba:33:eb:4e:56:c2:1f:c6:b3:c3:24:52:
a2:d7:b4:67:da:3a:18:cb:1b:8c:66:88:e9:03:43:
1a:b8:f9:24:84:c0:f1:36:2a:96:15:28:9a:0d:87:
3c:19:50:dd:99:1f:4b:51:c5:88:49:26:4e:4f:de:
a6:26:ff:cb:74:b2:28:8d:eb:c6:f7:c1:cb:23:8f:
81:2a:e4:f2:2b:c6:98:d6:a9:78:b9:86:fd:2e:ec:
a2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:03:15:F5:A3:B5:35:89:CD:B4:DB:43:BF:2C:C8:8D:FB:27:03:5F
X509v3 Authority Key Identifier:
keyid:35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
e9:24:c0:74:1a:0f:25:75:a2:ca:0b:59:45:d5:2e:19:77:f8:
b8:8d:53:27:5b:d3:49:91:58:e8:79:61:c2:5b:aa:4b:2e:14:
39:02:a1:91:b9:db:ea:44:aa:3d:af:30:ef:25:81:c8:66:dd:
84:00:7c:2c:ef:6e:47:ba:7c:d1:3a:3a:54:e2:8b:88:63:51:
fc:9b:48:c2:d8:d2:04:1c:6f:17:87:ad:41:c1:44:ad:e6:66:
2d:4e:7a:85:16:77:cc:42:18:7e:e8:dd:3e:da:b2:c3:c0:39:
bb:63:81:e5:28:4d:89:5a:16:f1:89:f2:8e:49:f9:79:cf:ac:
c4:c6:bf:61:53:08:6a:e8:cd:7a:72:f3:54:9e:d5:68:19:e2:
0a:8d:22:66:8a:1b:bf:d3:07:bd:5d:22:47:a8:db:25:7d:b7:
e5:dc:57:00:5d:f0:9a:d9:7d:16:b1:7e:e3:59:4e:4e:18:69:
af:f0:7e:4e:2a:87:88:77:5c:0f:07:71:b8:db:0b:7d:dc:15:
c2:ba:67:96:93:9f:d1:3e:8b:65:29:f7:02:fe:a2:5f:61:5d:
02:f7:02:19:e7:f1:5c:38:4a:5f:5e:88:c6:65:6d:64:85:2a:
f8:14:90:97:e9:5f:d8:3c:45:6f:26:a4:c6:c7:6e:94:23:4d:
ad:87:1b:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:13 2026 by rpki-client