
$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json)
Hash identifier: /nQ1w7QvIBSRwbCtp1wpJBBgrGT9clhe9HVQlQuE23Y=
Subject key identifier: C5:60:85:06:88:A1:C2:EC:8B:46:02:D7:AD:9B:E4:97:71:66:FE:C9
Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30
Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230
Certificate serial: 0BF9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
Manifest number: 0BE2
Signing time: Sat 04 Jul 2026 19:04:56 +0000
Manifest this update: Sat 04 Jul 2026 19:04:55 +0000
Manifest next update: Sat 11 Jul 2026 19:04:55 +0000
Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: cpgPM09FXctfCbhaYH0AmQuLeWdnRRWNc/4Zv9sp5Rs=)
2: 5F47B232DF0711F0899AA5EF5C6F56BC.roa (hash: RljGAjjwZ/pe6/m6sE6jioJluQgFaLFt64ScvocrVSM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl
rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 19:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3065 (0xbf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230
Validity
Not Before: Jul 4 19:04:55 2026 GMT
Not After : Jul 11 19:04:55 2026 GMT
Subject: CN=6a495958-87d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ae:cf:d3:f9:ec:ce:5c:17:03:f9:36:12:07:
63:7d:c6:fd:61:eb:28:43:6a:41:4f:91:d8:c5:09:
d0:40:c4:ff:7c:94:22:27:27:f3:23:df:20:c7:4f:
16:04:56:e8:c5:e8:88:7e:02:01:29:99:88:98:23:
d3:c2:b5:7d:16:86:36:08:39:aa:a4:ef:14:aa:65:
72:bb:0a:92:d6:12:6d:62:5c:93:14:8d:61:ea:45:
c7:17:94:0a:af:e9:2f:d4:c2:f6:61:15:61:33:de:
d0:9f:0b:6b:66:5b:89:a2:88:28:d7:fe:d0:d3:5b:
bb:9c:aa:f5:1a:38:c3:40:af:da:6d:c6:3d:50:95:
69:f4:96:1c:2c:af:fd:ba:cf:d7:c1:74:65:fa:47:
68:b6:f3:9f:61:50:d9:de:51:d7:26:be:75:e8:27:
d3:dd:75:c5:88:21:f0:b2:20:c2:d7:ae:fe:be:86:
95:1b:8c:c9:7e:bf:85:11:b1:87:c1:39:3d:5b:30:
a4:54:44:28:1a:5c:1e:92:57:a3:78:8f:88:05:74:
ac:91:d4:72:33:0d:30:45:e9:7d:61:c7:58:3e:9e:
ee:85:ec:85:3d:93:c9:9d:bf:6a:4a:1d:8c:2a:ca:
aa:e8:96:3d:8b:f8:60:e1:3d:58:77:e6:87:49:13:
c4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:60:85:06:88:A1:C2:EC:8B:46:02:D7:AD:9B:E4:97:71:66:FE:C9
X509v3 Authority Key Identifier:
keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
01:10:98:bf:8e:c1:f0:9d:76:97:f6:a8:9a:a3:bc:62:15:1a:
80:77:e3:97:38:39:42:20:72:9a:bf:f5:ae:33:f2:d8:b2:36:
18:4f:15:d2:ef:b5:13:3f:d7:4f:99:67:84:bb:e6:9b:bc:5e:
2e:be:29:8a:71:8a:48:fd:82:72:89:85:ef:09:16:93:e9:bb:
69:ca:a3:f8:56:ea:90:04:fb:a4:a9:a0:74:3a:51:2d:e6:18:
30:2c:78:65:b2:c8:00:89:bc:20:46:9c:a8:af:9a:3f:2c:ba:
c5:69:9d:48:47:28:13:68:0d:5f:f0:25:92:15:87:72:a0:36:
05:93:55:ff:4a:9c:85:a9:25:4e:49:23:cd:a4:76:22:9e:c6:
63:33:0d:9d:95:87:9d:ed:0a:ba:63:46:91:0c:1a:92:8e:9e:
aa:39:a6:48:a0:8b:cc:b8:ba:9a:6f:29:7c:a4:8d:46:a3:f5:
8b:66:ed:50:6b:f7:ba:0c:53:02:2d:49:4f:7b:45:44:7c:f6:
2c:74:1b:a0:50:6e:5c:ea:54:9b:89:88:3a:58:66:f4:3e:70:
05:18:22:0c:b2:0d:85:45:d9:0c:62:a2:61:cd:cf:dc:bf:70:
35:d6:6c:14:82:e3:bf:23:dc:25:27:48:ee:92:17:f9:d8:79:
2b:fb:7a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:54:05 2026 by rpki-client