
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft
File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json)
Hash identifier: nijvjPHCOStrK5rgtP4aaAa8VCtqLktK4v2AungZErQ=
Subject key identifier: 87:EF:E6:40:91:77:2D:29:8B:41:C2:C9:47:E9:17:83:24:73:9C:5B
Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A
Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A
Certificate serial: DC
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft
Manifest number: D8
Signing time: Fri 17 Jul 2026 07:50:35 +0000
Manifest this update: Fri 17 Jul 2026 07:50:35 +0000
Manifest next update: Fri 24 Jul 2026 07:50:35 +0000
Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: mUQXWW7WAqwxc8VMUhXaaqAU2mYUdnYdja+QZ1KvKYs=)
2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: PYLDscz39D9VfGo8zcZSUWDhN0EWb8SMMJ0oBjb9APU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl
rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:50:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220 (0xdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A
Validity
Not Before: Jul 17 07:50:35 2026 GMT
Not After : Jul 24 07:50:35 2026 GMT
Subject: CN=6a59decb-49d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:d5:43:bf:68:70:ae:9d:d4:ad:b7:0e:3c:88:
eb:9d:80:e4:bf:89:1e:eb:df:42:c5:00:87:e5:8c:
02:4e:11:ac:79:ce:4f:22:f9:20:ca:96:ee:66:3b:
ea:5e:98:8e:e0:cc:93:ab:42:7c:c2:18:43:bc:c9:
5f:47:6e:5d:88:58:23:0b:9e:2d:52:7e:a1:2f:ee:
4d:e8:43:fe:4d:b3:0a:72:d7:ac:fe:6b:b1:81:7b:
cb:b9:fc:29:20:2a:c2:da:4c:6e:e3:79:c0:75:92:
cc:66:82:4f:26:a6:88:bb:de:f9:87:d6:8e:a3:f0:
f8:fc:96:9a:d3:e1:10:e0:00:e5:ff:b5:3a:63:bc:
2f:24:d5:fb:4e:9d:42:4f:45:71:af:b7:e9:b9:54:
c1:9d:90:95:45:fd:b0:cc:ff:fd:a9:7e:df:62:f5:
d8:39:9f:10:77:de:61:81:4f:45:af:c1:2f:44:04:
8a:aa:6c:c3:a9:d2:2a:b2:06:e1:b1:11:b1:f7:38:
3e:34:13:99:39:29:27:21:0a:f2:67:08:fb:0c:f6:
95:5c:44:5a:6f:0a:25:5c:53:4a:e7:fd:02:3c:39:
35:7e:30:f4:a1:b7:d5:d4:1a:b4:b0:b6:99:2f:a9:
bb:1f:33:2b:6c:f9:f6:40:52:42:f6:21:da:b4:97:
6b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EF:E6:40:91:77:2D:29:8B:41:C2:C9:47:E9:17:83:24:73:9C:5B
X509v3 Authority Key Identifier:
keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3a:45:cf:d2:1f:24:90:e7:c9:5a:bd:98:ab:83:0b:78:4d:3e:
b0:d2:d4:89:56:5f:cd:44:b6:11:8a:be:46:11:83:5b:9e:90:
2c:3e:b5:2b:ae:17:3e:1b:4c:3c:67:b1:35:1c:e9:40:92:aa:
39:41:4e:b2:1a:22:2d:65:1c:23:46:fc:95:0d:58:e6:4d:7d:
e0:36:ba:42:c8:56:b9:21:8d:fb:0c:ad:8b:a1:72:83:c1:77:
4e:83:d5:48:62:a7:a9:77:d3:e8:a6:bf:6c:f1:a7:78:14:32:
0a:7a:6b:80:d7:44:50:be:84:a0:a9:1b:10:d2:ca:53:fd:7d:
90:96:c2:ec:80:26:74:95:68:a2:5b:17:80:e5:36:8a:85:70:
55:b9:49:f1:b4:8d:22:75:99:13:b6:0d:5e:6a:e0:a2:25:66:
31:76:1e:b2:3b:3c:d5:48:99:10:16:00:ab:b7:f2:ee:77:fe:
a7:68:3c:69:a7:ff:f8:80:7b:53:91:71:bd:76:41:26:75:41:
79:9c:4e:e8:c5:dc:7d:ac:e3:69:fe:d7:c2:7b:2d:94:73:c1:
0c:89:0f:e0:aa:9a:4f:47:c7:41:ae:e7:4d:b3:e7:dd:61:05:
74:67:94:6a:14:a7:79:15:69:20:77:2f:e1:81:ca:2b:08:a8:
39:33:92:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:14 2026 by rpki-client