
$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
File: i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json)
Hash identifier: yqvNslChrAsUg70yH3mQkZW5INCC5ipol3A0Hq9k5q4=
Subject key identifier: C4:B5:AF:76:73:13:98:C0:D1:F4:7C:F6:6C:CD:85:7E:05:AE:52:28
Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A
Certificate issuer: /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A
Certificate serial: 0159
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
Manifest number: 0151
Signing time: Fri 17 Jul 2026 06:15:44 +0000
Manifest this update: Fri 17 Jul 2026 06:15:43 +0000
Manifest next update: Fri 24 Jul 2026 06:15:43 +0000
Files and hashes: 1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: Pc1MK6OnbEkGxCpgOZ/LXIYWP40UxqpMMD9/S+V7DS8=)
2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: i2D61RcLKQP58CDCbPDGvuB2d5cTYj011lg/w0u6Ink=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl
rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:15:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345 (0x159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91336DF, serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A
Validity
Not Before: Jul 17 06:15:43 2026 GMT
Not After : Jul 24 06:15:43 2026 GMT
Subject: CN=6a59c890-9f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d9:f8:e0:8d:92:3f:75:3f:98:46:e2:97:53:
3e:a0:22:4f:13:f0:a3:6c:68:f7:8d:8e:0d:31:17:
0d:42:a5:50:f2:65:e3:9b:55:d6:55:e3:b2:19:9d:
45:35:54:81:f1:8a:f1:66:0b:6f:f5:4b:5a:c7:fa:
5c:47:19:32:6b:4f:80:5e:19:88:a3:a8:18:b9:3b:
65:a3:3f:63:88:37:be:dd:af:20:04:f5:92:4e:05:
a5:04:8f:83:d4:2b:91:9a:d3:9e:e2:18:69:8e:17:
3d:49:4e:d0:48:4a:13:c9:ae:48:99:bc:9d:64:eb:
c3:9e:04:52:75:a0:ea:1d:62:03:49:d4:c2:75:92:
44:18:b2:86:cd:4e:3f:a8:5c:b0:ee:a2:3a:e3:84:
77:3f:cf:bb:00:e2:02:d6:ab:31:17:d5:ce:d5:b7:
7f:50:ea:14:f8:d9:5d:d6:24:46:f8:e8:4e:91:d8:
c1:60:d3:5f:93:e7:32:96:b5:a7:ee:57:7d:7a:a7:
48:13:2c:9b:fa:1c:ac:66:fb:b4:9c:a6:75:4b:20:
ca:7e:54:52:9c:db:13:89:97:94:9c:46:5e:d4:38:
98:b2:7c:50:63:5a:d8:a6:bc:18:98:8b:8a:3e:1f:
c1:17:10:2f:ca:70:be:17:06:65:d6:45:4d:ee:03:
7b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B5:AF:76:73:13:98:C0:D1:F4:7C:F6:6C:CD:85:7E:05:AE:52:28
X509v3 Authority Key Identifier:
keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
45:ae:b9:70:57:7c:7f:42:2d:0c:b3:35:1d:8b:10:24:d0:33:
17:6b:c8:20:11:ac:9b:42:f0:3e:2f:e0:45:4c:3e:48:d4:a8:
2b:95:5f:54:46:ef:07:88:87:93:a1:f3:9d:74:ff:0a:be:31:
71:17:5c:ef:d8:2f:66:0e:08:24:bb:cc:72:43:69:b2:0c:85:
a0:d4:34:a4:74:93:6e:13:55:48:ae:54:cb:6e:42:ad:15:24:
68:ff:d7:e0:d9:1a:dc:b0:8e:27:fd:48:26:78:34:55:cc:e4:
f3:7c:46:ce:65:40:b2:4d:d1:6c:55:10:e3:d6:d8:b1:a1:ef:
79:1e:2b:9e:5c:76:23:fd:ee:7d:06:00:4f:0d:3b:56:99:65:
5a:9c:7d:7f:9d:87:eb:cc:64:fa:31:69:12:ae:13:50:5c:8f:
ae:b8:14:8d:98:5c:2f:d9:50:fa:ba:9a:fc:d4:f9:e9:77:5a:
91:97:db:c8:6e:ec:1b:ff:9f:be:57:72:15:5f:f0:1f:d2:e9:
29:0e:b9:a0:a2:e9:78:5f:9e:4f:99:93:90:1b:90:5f:f0:1c:
87:04:8f:81:33:ee:8f:ac:2b:81:fe:d8:52:5d:8d:13:e1:fd:
1d:dd:a3:61:af:4d:12:13:6a:66:9f:ce:a0:41:6f:62:87:b5:
b0:f7:d4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:20 2026 by rpki-client