
$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json)
Hash identifier: aHVaAIoLL3Z/zTgCwBM2eJ1NNA0pY2XDkHosgjcNvRo=
Subject key identifier: D5:95:70:42:67:A8:6C:9A:91:07:81:67:29:A4:70:BC:B9:79:45:6E
Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC
Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
Certificate serial: 0BF8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
Manifest number: 0BE7
Signing time: Thu 16 Jul 2026 19:08:59 +0000
Manifest this update: Thu 16 Jul 2026 19:08:59 +0000
Manifest next update: Thu 23 Jul 2026 19:08:59 +0000
Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: ZQ2zCiWETYPlXQpDRZj0cwZr1vV9eqG7nbeUUM6tPEc=)
2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: EP70FT9vYILp9XYrmWiAL3jLqbW9+S8BdvaaLqMxnTg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl
rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 19:08:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3064 (0xbf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
Validity
Not Before: Jul 16 19:08:59 2026 GMT
Not After : Jul 23 19:08:59 2026 GMT
Subject: CN=6a592c4b-111f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:20:64:10:90:52:b5:b4:7b:91:4a:31:34:
a2:43:b2:74:36:d3:d9:d7:7f:be:de:fc:32:d6:62:
6e:30:a1:a4:64:9c:7c:44:ba:7e:9e:fc:24:df:63:
91:4a:9a:2d:34:a2:00:f2:bb:74:0b:b7:3b:47:b1:
73:5d:fc:99:b2:a3:78:f5:cd:76:4a:6a:71:0d:89:
ba:f1:6e:b5:de:31:96:36:f9:7e:83:d6:05:e7:77:
b4:fa:37:60:0c:9b:a0:c8:a4:81:d0:17:f2:0a:53:
16:11:36:ba:83:73:f7:25:a0:cc:a1:80:eb:be:8c:
7d:1f:1c:61:1f:a1:f0:27:12:e5:45:e8:17:7a:1b:
b8:f1:bf:74:76:06:2d:cd:b0:c0:92:e5:b7:cf:f9:
4f:a2:a5:c8:bf:b8:97:8d:de:2a:72:4a:3a:c3:07:
ca:ec:21:70:b0:da:89:a3:0b:ee:ed:bf:2f:bf:65:
78:6b:22:65:61:ce:b8:42:a6:07:dd:89:d3:9d:ff:
9c:ec:2e:5c:dc:e9:51:6f:c0:c6:f6:ae:0f:f7:4d:
60:00:4f:04:8f:10:77:d0:82:82:32:5a:e2:a1:de:
f2:68:6f:b8:7b:a3:85:7a:77:77:7d:1a:a6:7e:bc:
54:91:cb:c5:9d:41:0f:5c:43:ef:99:27:69:d9:d2:
99:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:95:70:42:67:A8:6C:9A:91:07:81:67:29:A4:70:BC:B9:79:45:6E
X509v3 Authority Key Identifier:
keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c5:7c:50:88:2f:97:f2:5e:90:65:1b:76:a3:c0:e8:5e:88:f4:
17:8e:53:ce:d9:08:62:b8:24:19:f2:fb:f8:f0:ba:a4:5c:c1:
65:8b:76:10:be:09:2b:01:94:37:3f:23:30:94:b1:11:4b:22:
8c:ef:98:4f:78:06:f7:d9:6e:ca:00:a7:e6:76:26:07:7b:b3:
b8:49:4a:bd:ba:1f:1b:48:c0:d7:df:80:47:d7:28:e0:1e:fe:
e1:1b:d7:28:0b:e7:18:10:d1:ae:33:c2:f2:8b:75:51:0c:f0:
ba:38:c6:d5:58:96:a2:01:6b:6c:be:02:b6:56:6e:72:08:6d:
4c:0a:e6:0b:8f:cd:ee:99:6a:f7:b9:d0:70:a6:14:80:1f:60:
6c:de:43:21:46:07:54:16:f0:3a:90:fc:8c:fc:64:9c:bd:4b:
50:d4:1f:a4:57:a8:40:6b:92:57:d5:88:19:1c:38:8b:04:2a:
e4:ca:cc:a1:51:53:c9:e2:73:00:fe:18:f6:b8:7c:43:32:b3:
16:80:f4:26:8c:5d:28:0d:b8:0d:6a:57:9c:12:1e:84:59:b1:
1a:9e:03:08:38:d0:5b:dd:50:5f:6e:42:9b:dc:10:c9:59:bb:
fa:b7:20:68:ce:64:c5:33:d7:63:c3:d2:05:7c:3c:24:df:b4:
8a:0a:08:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:10 2026 by rpki-client