
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json)
Hash identifier: Q6Wo1y80JOi/hM6PAHFT1Bwj1c2bVC/S5awhBH8GeVM=
Subject key identifier: 52:7A:C2:30:51:3E:88:0A:A5:BD:6B:53:13:9F:66:1C:F4:BD:CD:1B
Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1
Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1
Certificate serial: 0177
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
Manifest number: 0164
Signing time: Sun 05 Jul 2026 05:29:54 +0000
Manifest this update: Sun 05 Jul 2026 05:29:53 +0000
Manifest next update: Sun 12 Jul 2026 05:29:53 +0000
Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: 1nAlecdhWtRpSUBx6Sl+ljQjET/j7RzSxFiCnbvdD/E=)
2: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: rX5GXOpzN7zlqlxxBRKlBapjNOnn5ERzfr6wi0h0HHo=)
3: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: cOFr30T5Sd5bA+9nAjs/xIKvrhVxSk/iBKwzS2ubtBQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl
rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 05:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375 (0x177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1
Validity
Not Before: Jul 5 05:29:53 2026 GMT
Not After : Jul 12 05:29:53 2026 GMT
Subject: CN=6a49ebd2-9e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:03:ef:41:2c:ba:2d:db:45:5c:0b:c2:af:c9:
dd:8a:62:3e:17:74:40:d7:91:06:99:4b:b4:ce:37:
3f:b3:fc:be:8f:5e:ce:23:8d:f8:bf:ab:58:8d:1f:
de:67:fe:b2:cf:37:cb:16:4f:a7:68:9c:9a:fe:c1:
bf:a7:40:16:35:27:b6:63:ad:c8:af:f2:66:bb:33:
57:7d:7a:0f:2b:25:8b:e8:d0:0d:76:fd:b0:04:04:
8c:55:12:ba:27:d3:56:01:6f:a5:f2:b2:96:c1:e6:
de:1b:f5:a7:c9:27:6a:ec:d1:de:ef:c3:f0:17:88:
80:53:fa:23:3c:d0:51:14:27:f6:35:71:28:67:ad:
80:00:68:ce:bd:ad:e4:47:ff:7e:a0:4d:5f:dd:bf:
36:7e:a7:07:72:59:56:bc:ea:f4:28:8f:7c:22:41:
d5:e3:84:30:be:ee:cf:81:3b:a8:78:33:a5:f3:8a:
f5:c5:2f:7e:b0:da:dd:22:8d:7b:a3:1a:f9:51:83:
e9:9a:80:ef:3f:61:61:82:9b:d1:6e:3b:09:09:05:
56:34:58:a3:e7:60:a8:ea:40:b4:ae:37:2b:7f:82:
af:6e:65:e8:ba:7c:51:9d:de:da:4c:31:65:db:15:
ec:88:84:ed:26:c4:d8:c0:06:0d:a7:d7:34:e9:ac:
5f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7A:C2:30:51:3E:88:0A:A5:BD:6B:53:13:9F:66:1C:F4:BD:CD:1B
X509v3 Authority Key Identifier:
keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
03:26:6f:1c:86:d8:9a:a8:d8:80:36:d0:af:bb:3c:54:b3:94:
47:f5:2f:bb:a8:a8:12:3c:d3:46:a9:5e:27:61:f0:4c:1e:61:
c4:dd:78:60:07:06:05:7b:a3:41:a2:1d:83:6d:79:f3:91:37:
33:9d:f8:2b:24:57:3a:ab:69:8d:d8:7f:74:9e:ce:8b:49:7f:
89:de:45:97:c7:1b:69:3e:c3:3e:ca:43:f2:6b:51:8e:b3:8b:
36:95:5d:08:34:c5:f8:a0:57:5f:2f:c7:d0:59:82:c8:fe:03:
0a:aa:53:7a:a9:06:e7:58:4e:15:1e:c5:5b:d8:57:10:2e:61:
e1:c8:22:b7:fe:11:9a:bf:ea:05:9b:1d:ea:d3:87:cd:5f:13:
6e:9e:62:b0:91:a3:38:7e:2d:6a:47:2f:38:73:84:31:e0:9b:
19:4f:43:0b:c5:1d:3c:a7:ca:7b:f9:8d:28:29:f2:7c:4a:f5:
98:af:d1:63:98:4b:fd:9a:35:31:51:bc:48:1d:2c:0d:52:85:
8a:51:9e:58:d7:fe:99:bb:d3:dd:9c:f7:87:63:ec:b7:92:06:
10:0b:74:05:ee:4b:c6:d1:94:6f:66:ec:56:20:61:4b:eb:5a:
2c:e4:71:f9:54:1d:38:05:d2:6a:b2:1a:c6:69:15:ae:a0:4f:
d4:5a:f8:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:06:40 2026 by rpki-client