
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft
File: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft (raw, json)
Hash identifier: ctycAog3dKjVQ2FO54hdncmO0lp15bp5G4KMr+TaAfg=
Subject key identifier: AF:95:3F:04:0D:93:24:24:33:E3:0D:66:7E:A5:08:52:05:BF:4D:84
Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9
Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9
Certificate serial: 0CC1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft
Manifest number: 0CA4
Signing time: Sat 04 Jul 2026 18:38:44 +0000
Manifest this update: Sat 04 Jul 2026 18:38:44 +0000
Manifest next update: Sat 11 Jul 2026 18:38:44 +0000
Files and hashes: 1: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl (hash: bN1fJaNfu8nf0O1Ts1k+3s2k65+0EcihwH9xrVFYz24=)
2: 61EE7C6C281211EA881CC32DC4F9AE02.roa (hash: MVjgqlWP2+PxzhdlAammG4g4jdGVj5m8klqnIWeyc0E=)
3: 57A5ACF20FE911EBB5AE5524C4F9AE02.roa (hash: pg9SsLOxgtqV7eWyJNRqBhktus5MyHYQ/fTT/Weq75Y=)
4: 627B1438281211EA881CC32DC4F9AE02.roa (hash: hEcH8ZRuZadu9VcKHGuJsHI1HxqcK9oTlGT1pOjaHQo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl
rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 18:38:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3265 (0xcc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9
Validity
Not Before: Jul 4 18:38:44 2026 GMT
Not After : Jul 11 18:38:44 2026 GMT
Subject: CN=6a495334-b911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8d:45:bd:57:c8:ed:b2:dd:d5:59:c8:df:93:
e8:64:2a:21:dd:1c:3b:d9:e3:28:ee:0b:a7:53:08:
31:bd:de:a8:98:b9:c9:98:7b:d3:21:47:f1:7f:8b:
48:e9:9b:e3:93:1c:b3:cf:db:1c:eb:35:9b:e9:c5:
6c:05:e1:77:3a:9e:52:e6:e3:74:69:2a:a4:a5:5c:
f1:d5:a1:d7:48:a9:2b:aa:cd:93:1f:8d:1e:47:b7:
da:6d:5e:9b:d0:49:96:4b:45:8c:9a:5a:b6:99:71:
33:52:5a:0b:6d:3e:d5:b9:95:49:58:1d:ee:b3:81:
dd:cf:ea:66:3d:08:86:11:f4:1f:32:f9:d4:fd:0f:
7d:5e:f1:dc:da:e3:07:a6:f2:dd:99:5e:3b:c3:70:
8f:80:32:57:a4:03:05:93:d7:6e:b4:e5:0a:de:c1:
5f:ef:9f:d2:82:1c:89:a7:fd:97:f0:b1:49:e2:9b:
52:b2:5a:9e:ee:78:d4:93:f5:57:ab:49:44:95:fa:
d4:a4:7b:91:a6:5a:51:94:60:c0:0d:9e:77:cb:0d:
f1:d7:71:c2:56:29:18:e1:b8:79:1c:71:2a:60:9d:
b8:c9:80:a9:a5:52:83:d2:a7:e9:9e:0a:58:59:3c:
4a:ef:26:f5:f0:31:5e:49:e6:d0:7b:57:a0:e3:69:
f6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:95:3F:04:0D:93:24:24:33:E3:0D:66:7E:A5:08:52:05:BF:4D:84
X509v3 Authority Key Identifier:
keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:b4:a6:77:45:b9:ae:1b:4a:55:72:f8:f8:f2:44:a7:d8:4b:
aa:4a:67:7b:0d:28:dc:c8:3c:4c:e7:f1:c2:39:b2:1b:cf:05:
37:0b:8f:6d:c4:7a:ba:89:09:83:94:88:85:a4:3b:87:e0:87:
df:70:55:4a:07:52:63:1b:2c:fa:ba:5b:0f:8b:80:44:7d:17:
c6:ad:99:e3:3c:0f:e5:80:c8:61:fe:b3:54:f6:65:89:69:93:
0b:4e:d6:2a:cd:1d:f8:41:15:ae:2a:f9:a4:91:49:fb:b9:5c:
5b:c2:f0:cf:45:f7:9d:a6:5a:e1:d1:57:2b:27:f8:cc:f5:bb:
11:08:17:7e:1e:10:e5:a2:2a:43:f7:5d:80:72:8b:6c:ca:83:
6b:e7:d9:9c:0a:1c:69:82:eb:bd:62:aa:64:ba:a2:d4:c0:cc:
a5:18:83:77:ec:0d:a9:26:7f:08:96:d1:03:a3:e6:e3:3b:ed:
16:c1:94:c4:58:cf:15:00:fc:3a:51:37:e7:3c:39:a8:f9:7c:
e4:29:a8:07:2f:78:9e:d2:1b:ee:61:d0:62:c5:92:f1:53:cf:
fa:ce:fe:36:e4:1f:9a:07:63:92:67:07:78:39:b1:7c:81:99:
8a:33:d9:1b:2e:bf:f5:31:75:5e:cf:bf:ca:c1:f3:43:a2:bd:
b8:d3:3c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:51:32 2026 by rpki-client