
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft
File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json)
Hash identifier: cDwrUGk0X6Dm4PIAaHEmWrH/TA+dZWwags4jQ9SGkyo=
Subject key identifier: 36:42:7E:DB:B9:1A:6E:F1:4B:E1:0F:FB:6E:13:4C:A6:37:99:86:87
Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17
Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17
Certificate serial: 0E02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft
Manifest number: 0DF4
Signing time: Tue 14 Jul 2026 17:56:29 +0000
Manifest this update: Tue 14 Jul 2026 17:56:28 +0000
Manifest next update: Tue 21 Jul 2026 17:56:28 +0000
Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: brnl0ReuLxc9XcF8gCDBqzkDeqTr/YyUoN8aYmQpgQE=)
2: 3CB0977C608811F1B5BB4F7F6F47A888.roa (hash: obvUvp1oAFlcd8oLgkACJL5wq5dkzfXfQHSgoe/uzAw=)
3: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: x6WdVTtqXyzo1or27OKiZdwiQ6/5q3EEmbhvmI/FqvM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl
rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 21 Jul 2026 17:56:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3586 (0xe02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17
Validity
Not Before: Jul 14 17:56:28 2026 GMT
Not After : Jul 21 17:56:28 2026 GMT
Subject: CN=6a56784d-d668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:10:32:55:26:ce:c3:4a:30:01:71:66:ea:c9:
b3:0f:50:5c:e4:0b:52:e5:f5:54:68:c4:46:06:83:
e0:fd:2c:24:ec:b1:5d:cd:d8:26:94:27:a5:d6:6c:
ec:bd:15:ec:06:e4:5a:fb:54:44:8d:6a:eb:51:9d:
21:47:ea:bc:50:a4:4b:a2:50:3e:e7:16:d9:b9:9e:
f8:fd:bf:95:88:b5:06:1c:8f:2e:da:b4:2f:49:03:
c0:fe:f6:e4:8c:62:18:e9:aa:84:2d:6b:2b:d9:12:
87:1d:b1:2b:1b:04:b6:1f:eb:a5:a4:5b:7b:3f:e1:
de:37:dd:c5:a7:5f:44:07:e3:16:d0:d7:29:b3:0c:
ee:2d:31:2d:fa:3e:78:f0:c6:48:dd:eb:3a:e5:89:
55:36:b8:7d:38:a2:f6:e9:ac:6c:6b:81:ad:b0:2d:
44:b7:7c:eb:66:92:df:61:a6:41:76:e9:95:63:7f:
73:76:71:27:6a:83:40:ce:68:fc:91:14:b5:72:90:
9f:e9:61:bf:81:e3:48:97:1a:ea:43:30:13:0f:1f:
fc:30:4c:44:4c:39:40:15:11:f8:19:3d:85:b0:4d:
55:c5:e4:ae:db:b2:e1:38:24:6d:92:20:6e:e2:03:
e2:ea:b7:50:4c:b9:ea:62:04:4a:9b:c4:1a:a3:1a:
b5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:42:7E:DB:B9:1A:6E:F1:4B:E1:0F:FB:6E:13:4C:A6:37:99:86:87
X509v3 Authority Key Identifier:
keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
60:98:92:3a:d7:20:fd:6e:bd:b1:d8:19:54:15:8f:d1:80:b9:
df:24:a8:28:45:98:5b:7d:28:30:e5:ab:48:f7:af:6f:b5:94:
1c:b0:f9:d3:14:28:d6:1e:44:07:72:7c:aa:a6:ca:3b:26:76:
1b:a4:be:91:5d:17:c7:28:0d:d6:21:21:77:e3:29:ce:5d:60:
06:3f:4c:26:13:69:f9:cf:9e:e1:16:44:14:26:7d:22:41:b0:
1e:24:56:19:2c:ce:87:0d:26:ea:89:7d:76:0c:a0:22:8e:5e:
44:a4:06:a2:a0:69:d8:ff:18:6e:c2:0f:86:8a:1c:bc:6f:3d:
f2:5d:cf:fd:7b:ab:01:d7:08:72:8e:b7:b1:2f:42:b2:76:a2:
5d:a9:1f:e1:1f:e8:2b:6c:3c:67:5f:fc:58:0a:22:39:dc:63:
69:76:bf:59:09:66:73:de:59:07:37:67:0e:b8:40:24:83:87:
33:19:ee:a4:57:5e:2f:db:0e:21:f5:c8:a9:ae:d7:dd:47:e1:
46:4d:33:de:20:f8:ff:af:da:b7:f1:e5:f4:cd:99:0b:35:71:
65:1a:de:5e:64:62:7e:d2:62:2b:e9:57:55:de:87:2f:fc:b2:
14:fc:95:4b:ce:ad:cf:2c:0c:2c:19:d7:79:44:d9:5f:9d:db:
6a:1d:37:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 00:19:53 2026 by rpki-client