
$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft
File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json)
Hash identifier: QQUH4GOrZKugGuCgvipVaXBxseeYGzpqIQ735QDOYvc=
Subject key identifier: A8:1A:9D:AC:D5:65:8F:F6:79:D0:52:A8:C2:5A:C7:9D:17:52:69:10
Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A
Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A
Certificate serial: C6
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft
Manifest number: BF
Signing time: Fri 17 Jul 2026 08:14:19 +0000
Manifest this update: Fri 17 Jul 2026 08:14:19 +0000
Manifest next update: Fri 24 Jul 2026 08:14:19 +0000
Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: FwVbuIuBlloYyqKQOHOIncAWuNr/UzNhRVm6EfP9m4Y=)
2: 8C538C5AEFCF11F0889DE39E746F56BC.roa (hash: eiSYQZ4JbJxsufS9RcJajhzup1MJX6NMX/+qc2RSIq8=)
3: 224FBC52EFCF11F0A018F59D746F56BC.roa (hash: l6zP7eAxKoViI6F3M9uDYfZY33CWARrIielkD1703l4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl
rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:14:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 198 (0xc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A
Validity
Not Before: Jul 17 08:14:19 2026 GMT
Not After : Jul 24 08:14:19 2026 GMT
Subject: CN=6a59e45b-f816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:1c:6e:f8:51:21:d5:4b:23:ce:55:3d:64:
ad:cf:27:61:c9:a3:b3:95:28:f4:e4:30:d5:ee:2b:
a3:10:4f:05:05:3e:70:27:57:77:de:41:42:35:13:
84:52:9e:63:95:14:6b:d5:b9:38:bc:e8:b3:b0:e0:
d7:e6:ed:7e:97:c8:28:3d:c4:eb:f2:8f:30:6d:fe:
f7:40:c2:e2:1e:f3:6f:be:84:05:c8:f1:42:00:f2:
99:42:15:d9:3f:a2:95:2b:21:64:5e:0c:5b:a9:d2:
a0:af:a8:c2:e1:af:ad:59:24:9e:4e:6c:f6:fc:b6:
bd:9c:75:42:e2:ec:f0:c5:59:60:b3:02:c0:8a:92:
e7:2e:9c:89:8a:0d:8a:34:88:e2:28:01:36:18:25:
3f:cd:49:82:72:81:be:30:7b:38:4b:09:1f:2c:86:
9e:38:f2:71:8a:a8:b5:2e:d7:58:ed:9b:98:09:ed:
85:04:98:6c:d8:93:aa:3f:74:86:26:8b:82:38:bb:
45:90:d2:ad:52:61:80:45:d3:76:39:0e:e1:dd:28:
a8:01:7b:b3:9f:1b:87:76:34:54:25:f0:12:b6:f6:
01:90:65:e8:3e:81:23:88:8b:7a:ce:c5:86:46:69:
7e:c7:fd:ec:0a:f7:cb:b9:e1:af:2d:19:6d:6a:b4:
a4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1A:9D:AC:D5:65:8F:F6:79:D0:52:A8:C2:5A:C7:9D:17:52:69:10
X509v3 Authority Key Identifier:
keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:cf:2c:69:62:00:29:43:86:52:97:41:81:7b:71:b4:b8:d8:
1b:22:ed:e2:18:33:b6:d6:89:68:0b:26:c1:87:0e:ea:40:3f:
fd:35:35:93:87:37:92:1c:28:53:89:15:ef:ce:4f:30:35:76:
4f:5d:d0:26:0f:dc:29:39:ae:3b:76:96:99:4d:aa:40:7e:ed:
36:3a:c7:88:92:ce:12:6e:d1:4f:bd:0a:76:b1:00:0f:1c:0f:
72:5c:68:4e:5f:9b:8f:dd:5a:ab:7c:4a:e0:b8:ab:09:7b:85:
32:f4:f7:a4:89:68:55:d0:c5:1f:cb:62:c3:9b:0d:41:d6:40:
5e:4d:34:e7:18:e1:b6:1a:a6:b5:04:e8:2e:7b:92:7a:21:37:
e0:ab:d3:39:ff:7f:11:4a:66:10:50:48:18:e9:45:f7:c9:aa:
7c:46:eb:91:06:ad:80:bc:9e:b5:d5:85:d7:f0:0f:6f:5d:c8:
e4:6b:e1:8c:04:89:2b:ae:d8:4c:c0:2f:8e:c8:2b:28:db:ce:
85:82:9d:bb:ea:de:0b:41:54:82:8b:17:59:26:8a:08:50:a5:
a9:9b:06:64:b4:78:46:98:56:36:5b:8e:e9:c7:10:a4:66:15:
f6:15:75:4a:0e:c4:f4:25:6f:cf:44:5d:9a:ef:02:ea:c7:47:
44:e2:cf:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:27 2026 by rpki-client