
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft
File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json)
Hash identifier: woQVoZGlsxLY2t4pnHWlat9Ekym3A+3uIblpWe9qwp0=
Subject key identifier: C6:3D:68:2C:5C:6C:DB:54:54:86:54:27:01:60:F4:BE:42:25:73:8F
Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F
Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F
Certificate serial: 0CB0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft
Manifest number: 0CA6
Signing time: Thu 16 Jul 2026 18:42:18 +0000
Manifest this update: Thu 16 Jul 2026 18:42:17 +0000
Manifest next update: Thu 23 Jul 2026 18:42:17 +0000
Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: 7YG18XWKr1bI76GQZ7cwkgyqvBQU/jNZ6gSJwFojFio=)
2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: 1pX+suWdvaKMGIWE2+J1hAusGSSmWNeIkojCLUq1N5M=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl
rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:42:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3248 (0xcb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F
Validity
Not Before: Jul 16 18:42:17 2026 GMT
Not After : Jul 23 18:42:17 2026 GMT
Subject: CN=6a592609-cf09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:30:4f:05:08:49:ce:87:ba:3b:84:79:05:d7:
5e:8c:c9:85:9a:cc:24:e3:36:e1:c5:cf:11:06:71:
dd:59:2c:6c:7c:a8:ea:92:e3:78:c1:8b:ec:3d:66:
54:c8:60:41:89:0d:48:35:13:46:1c:11:01:0a:3e:
d1:01:95:7e:37:c3:99:ff:c4:8c:b4:f2:d1:7d:0f:
df:55:93:41:2b:3f:ef:90:f8:7c:36:89:90:4f:a1:
3c:93:a9:25:15:29:1b:13:85:5f:f3:c4:9f:50:00:
55:65:4e:11:0e:b6:ed:6a:96:97:51:11:e3:02:57:
ee:4f:82:05:b9:71:c3:84:15:be:02:15:86:7f:2c:
4f:44:19:2f:cf:3c:91:cb:67:0d:21:d3:91:c3:09:
bd:d2:fc:3b:1d:12:55:0f:1a:e6:02:9b:9e:4b:be:
19:51:8c:3c:18:84:a9:5a:71:16:1e:5b:4b:28:3a:
3c:f8:7e:59:7e:bc:34:79:04:f7:c1:4d:06:66:d6:
18:b9:70:47:8f:64:85:6c:b2:81:23:2c:09:30:cd:
65:89:b8:3a:cd:e9:ab:8e:a7:9d:3d:52:a5:33:75:
10:58:96:0f:2d:09:69:31:e1:93:22:2c:9e:99:ca:
af:7c:4a:ee:46:7f:52:71:bc:52:20:2e:33:8e:0a:
2e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:3D:68:2C:5C:6C:DB:54:54:86:54:27:01:60:F4:BE:42:25:73:8F
X509v3 Authority Key Identifier:
keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9a:65:84:c9:bc:1f:b7:ad:9a:db:c3:93:46:0d:bf:e3:87:85:
b1:d4:01:45:45:34:9a:89:74:0a:97:fc:93:60:4f:d7:7e:61:
ec:a3:99:2d:46:ab:9b:78:cb:e3:81:01:d4:8c:c4:d1:1e:e6:
72:eb:ed:27:93:94:4f:4a:67:b1:f6:c4:5f:89:52:aa:b1:34:
36:67:7c:8f:21:c6:69:69:91:4e:45:1f:23:23:27:43:32:36:
80:2b:15:d8:dc:f0:67:bf:65:fa:35:ce:8b:56:fa:c9:bb:65:
33:fe:1e:77:39:3a:40:23:23:b2:9b:0b:74:be:8f:42:f5:15:
9d:79:8a:a1:ad:7c:91:4c:92:77:b0:bf:e5:8c:1b:9d:ca:fa:
bc:00:6c:8c:9c:cb:a0:8c:e3:d8:e5:01:ce:c8:c5:ff:42:52:
11:4f:57:83:d8:22:f6:3c:bf:c8:3a:00:a5:f1:3e:05:16:5e:
c3:43:f6:87:1c:f2:c2:3c:2a:5a:91:f7:79:fb:3a:05:d1:88:
59:1e:89:6a:34:94:98:cc:4b:61:62:df:1c:7f:29:2e:b4:86:
54:9e:db:83:ab:83:c5:1e:d4:95:e2:5d:2c:e3:5b:f8:85:0e:
ce:52:c3:16:80:96:c3:c8:7c:e4:f3:b0:df:ad:7f:59:d5:14:
9b:c9:66:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:59:57 2026 by rpki-client