
$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json)
Hash identifier: gUbXRzwLNlqp1G5mHtd/cAvMQ2wjTsGN1gIyQXbe5HY=
Subject key identifier: A2:3F:37:7B:E0:9E:83:9A:F2:95:84:5F:6F:3F:91:5D:9F:79:F8:F2
Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A
Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A
Certificate serial: 01E7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
Manifest number: 01DD
Signing time: Fri 17 Jul 2026 04:31:25 +0000
Manifest this update: Fri 17 Jul 2026 04:31:25 +0000
Manifest next update: Fri 24 Jul 2026 04:31:25 +0000
Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: q7+sf7vfW3hhbaOptx4VGSDHq/WhI/UFbEnAs1gDGaU=)
2: D2FF8C06A92711F08CEB6934C4F9AE02.roa (hash: KRsNH66T+IbVfJVXh4HXcfnfG/XP7iz+CZYJM0ybrSQ=)
3: 2546725EA92811F0A138DF72C4F9AE02.roa (hash: ccOvd6OCJeS5Mo5TD4UA7bVIYTSRvb313FpwtTK7ruw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl
rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487 (0x1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A
Validity
Not Before: Jul 17 04:31:25 2026 GMT
Not After : Jul 24 04:31:25 2026 GMT
Subject: CN=6a59b01d-f693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2d:e8:1c:3b:84:a7:a0:c2:69:9f:f2:64:48:
9e:1b:0b:af:cf:f6:15:d0:07:ae:01:c3:0f:d7:2c:
d4:d6:d2:fd:69:a1:49:d2:32:ce:91:7a:33:c9:1e:
7d:ca:3c:91:88:9a:1b:9f:71:fa:f1:f0:58:f9:e9:
4c:88:2e:5d:6c:f7:92:54:34:da:d7:2f:0b:1e:40:
bd:4b:c6:a3:24:bc:bc:d4:70:df:64:38:71:50:bb:
9c:19:49:8b:86:3c:9b:b8:37:a4:1c:3a:c2:c6:1a:
ce:37:bc:39:1e:c2:9f:25:a9:5e:79:4e:4d:53:80:
45:43:89:b0:59:44:f8:9a:a4:7c:b9:57:9e:2c:ea:
46:75:42:43:85:e1:17:f7:dc:20:52:92:c7:80:6d:
2e:a4:f8:18:7e:bb:ee:f6:4c:50:da:71:8f:58:ba:
6e:32:4c:12:88:86:25:c8:83:dd:a1:62:78:bb:8b:
75:d8:a3:4e:87:e4:ca:d4:4f:b2:d4:36:32:c5:dd:
71:4b:37:43:9d:52:c6:f4:9e:05:2d:5d:ce:7d:cf:
03:c6:d4:e7:7e:4f:73:4f:7f:74:86:58:c7:ae:67:
be:e8:ba:49:ae:a7:25:9d:f5:7a:10:47:d2:5f:fa:
25:00:1a:ff:f9:72:22:e4:d8:24:69:e6:2a:37:bf:
4a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3F:37:7B:E0:9E:83:9A:F2:95:84:5F:6F:3F:91:5D:9F:79:F8:F2
X509v3 Authority Key Identifier:
keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ed:67:4b:b7:ba:b0:d8:19:e7:c0:8a:60:41:dd:c0:64:49:
f2:ec:a3:fd:1f:a8:55:6f:e4:71:0b:8a:4e:95:08:f1:90:bf:
76:f2:68:1d:02:06:4b:85:d7:74:c3:90:39:e0:d3:02:3d:7e:
b7:67:23:62:40:d1:f1:df:7d:a8:20:15:a8:6e:87:71:4b:8b:
ef:47:b1:92:76:fc:d2:ed:ab:f9:ab:c7:85:97:aa:89:01:d3:
0d:50:c9:77:1a:29:d0:f6:78:dd:de:d8:f3:df:ec:8c:f4:5a:
1a:cb:40:e8:2b:61:b1:9a:4e:84:2a:44:f1:40:4e:13:dc:e7:
f3:5d:9d:c6:25:da:1b:2f:92:3f:5f:0c:e3:fd:cd:71:5c:3b:
59:3d:3c:25:fe:ff:c8:be:bd:ca:c1:fc:da:f6:6f:bf:32:0c:
a3:4c:4f:66:f4:32:64:4b:87:ee:ca:ed:d4:27:06:e9:94:0d:
2d:f4:87:60:39:ed:03:bf:8a:99:3a:02:53:ad:4b:9e:a7:b7:
9c:ab:0e:f8:f8:9f:14:5f:6d:60:e6:89:2b:0a:76:67:1e:db:
47:26:e9:19:d3:d0:e1:5e:16:55:b7:f0:9d:c4:49:33:32:52:
ab:ca:1b:d7:3d:ab:9b:e1:6c:48:e6:9f:10:12:b2:60:80:28:
66:d2:d5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:21 2026 by rpki-client