
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json)
Hash identifier: B3pACshCAT5LaARLJv2iZMz2clWee//k0cDM9dylVkU=
Subject key identifier: 02:FC:F4:E3:58:AB:9A:78:D0:AB:C6:54:CD:D1:4F:A5:B0:00:65:E1
Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC
Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
Certificate serial: 01D2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
Manifest number: 01CC
Signing time: Fri 17 Jul 2026 04:44:35 +0000
Manifest this update: Fri 17 Jul 2026 04:44:34 +0000
Manifest next update: Fri 24 Jul 2026 04:44:34 +0000
Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: 4yor8kRim5kAqu4dL8GabW+rU5xJ+Ek6kt0ZD9knAd8=)
2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: O+F2f0VhvNnWnKbzy9esY0C22BqTbjq93BfHVqmsqRo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl
rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 466 (0x1d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
Validity
Not Before: Jul 17 04:44:34 2026 GMT
Not After : Jul 24 04:44:34 2026 GMT
Subject: CN=6a59b332-f710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9c:9b:38:49:a0:cf:e9:2f:ad:f1:ed:7e:7c:
b0:46:9a:5b:5f:9f:f8:6d:b3:63:2e:b7:1d:68:f2:
3d:cf:79:e6:e9:ce:ab:91:73:4e:00:c7:61:fd:f1:
37:2a:66:6e:15:be:85:85:80:c2:1c:43:a1:02:ef:
62:86:39:e2:b2:76:58:de:35:18:af:10:92:a7:65:
c8:24:33:10:b5:c5:12:f8:d6:38:0f:22:8f:be:68:
86:18:8c:ac:96:d8:f5:49:c4:58:4c:d5:f6:59:25:
80:8d:3c:ed:83:10:82:54:35:89:50:03:5c:8a:4f:
e4:4c:49:0d:82:1f:6a:22:9e:4d:9d:d6:83:11:50:
5f:67:d5:68:2c:ae:18:89:7a:27:14:9a:08:d9:a2:
00:5f:03:d8:8e:ee:17:3c:38:d5:d4:a8:ec:c4:67:
6b:d6:91:1c:82:8b:e1:e1:2d:3f:bc:28:cb:36:af:
2b:0f:dd:d6:9b:fc:23:4d:ba:9e:11:0c:80:7e:2b:
37:b2:81:2b:0b:58:d0:ae:07:21:af:f3:c0:11:8e:
e4:45:d2:78:cf:5a:20:0d:6a:93:0c:00:42:95:0a:
16:3d:d5:04:8c:fd:01:8d:5c:7d:43:bb:3f:74:fb:
33:60:d9:3e:63:12:48:7d:0b:cf:c6:1e:09:13:b3:
43:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FC:F4:E3:58:AB:9A:78:D0:AB:C6:54:CD:D1:4F:A5:B0:00:65:E1
X509v3 Authority Key Identifier:
keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:62:be:46:2b:35:8e:2f:8e:d1:ac:3b:a8:96:81:f2:88:b9:
ee:0b:b4:2c:8c:8f:94:d1:e7:09:34:93:5b:98:c4:65:6a:28:
88:4b:0c:23:27:06:de:4e:d0:82:ce:59:af:fb:ab:e7:ff:0c:
ff:ea:f2:fd:01:20:d8:08:7f:08:44:2d:1f:95:f2:2a:a5:d6:
a5:df:41:c2:67:0e:f7:66:fc:58:2f:53:d1:99:32:10:2f:6a:
23:89:22:ca:fb:db:d9:e7:b9:92:3a:56:ab:e0:ed:2b:a9:0d:
73:8a:1b:fc:12:49:1a:72:0e:da:90:a2:45:46:74:10:a9:82:
32:f1:b3:2e:dc:5b:fd:0c:95:dc:7e:7c:38:b0:74:ae:cf:4f:
3e:30:bf:da:80:f5:c6:78:b2:45:ab:ca:0c:27:4e:a1:f1:49:
3d:5a:98:cc:6c:18:2e:09:27:2e:81:84:a6:2b:19:01:f3:c3:
08:c1:df:f1:36:d8:9f:a1:06:fb:29:90:4b:a1:d4:86:aa:84:
1f:37:4f:b7:7f:9c:17:2f:96:f1:c3:8d:b6:2d:d5:fc:af:86:
38:46:24:09:8d:e5:0e:03:c4:fd:b5:36:3e:7a:e9:ca:bb:6b:
dc:be:51:f9:31:aa:5e:d4:63:e2:65:8f:3f:53:25:3c:64:1a:
7c:1f:43:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:15 2026 by rpki-client