
$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft
File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json)
Hash identifier: FjXSp/5jyD5/Y0YMZBb4sXPwIbFCqrjtxq6KdM8y460=
Subject key identifier: 04:A7:8E:E2:20:28:24:DC:7A:2A:CF:42:A4:CB:B5:42:45:7E:51:A0
Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96
Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096
Certificate serial: 012F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft
Manifest number: 012B
Signing time: Tue 07 Jul 2026 06:45:50 +0000
Manifest this update: Tue 07 Jul 2026 06:45:50 +0000
Manifest next update: Tue 14 Jul 2026 06:45:50 +0000
Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: 4wn9F+KnWApYCuKxOTVPbaFLgtENybCY/qvqJYW+JTo=)
2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: fbcyaAtrA1h5av9wkarvyax0xETi5abCoRaPXoCMR3s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl
rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 06:45:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303 (0x12f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096
Validity
Not Before: Jul 7 06:45:50 2026 GMT
Not After : Jul 14 06:45:50 2026 GMT
Subject: CN=6a4ca09e-3eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:56:ca:dc:ea:46:4f:95:dd:e2:f6:3b:c2:b1:
86:91:2c:50:75:8b:60:9c:6a:4b:92:24:84:93:de:
98:ca:12:ae:58:15:41:80:f2:55:40:21:14:a5:18:
bf:31:74:a5:b1:dc:f1:69:d3:4a:e6:a2:80:93:2c:
93:75:39:f7:43:b6:21:33:3f:dd:3b:d0:ac:93:35:
51:b1:02:49:15:9b:61:21:03:b9:04:e7:13:d9:90:
19:d2:32:6e:03:bb:18:6b:6e:d4:de:f4:ac:7e:73:
72:0d:e5:68:e9:f1:48:22:d4:dd:d6:28:94:88:13:
78:f8:28:ef:8d:32:c4:dc:ad:11:10:e2:19:01:04:
48:22:a2:43:34:16:07:c4:eb:f0:b7:a2:85:a8:a8:
5b:bb:e6:98:51:c3:a9:d7:38:b0:0b:17:eb:ae:8c:
5f:cf:54:a1:71:71:ae:1b:f8:72:4d:28:c7:42:00:
9f:23:ce:b3:47:0e:cb:ba:75:3b:d3:87:c6:ff:ad:
7d:5a:75:72:e5:ad:fd:5c:0e:4d:85:36:33:bf:00:
55:bf:c0:58:05:82:9f:18:f6:df:88:ab:17:68:51:
ad:b7:af:fb:08:5e:82:e8:68:66:1a:06:d6:bf:68:
01:17:75:3c:26:d7:67:34:ac:46:36:6f:b9:fa:4a:
de:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A7:8E:E2:20:28:24:DC:7A:2A:CF:42:A4:CB:B5:42:45:7E:51:A0
X509v3 Authority Key Identifier:
keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8d:91:7f:aa:0e:21:18:1c:b9:b8:9f:03:6b:a7:1d:3e:e4:e6:
16:15:70:b2:9e:61:56:1f:f7:9c:50:89:a2:c5:38:1f:0c:ac:
e2:ca:07:b5:42:d3:6d:e2:6f:77:1f:5d:b3:92:39:9e:34:85:
18:b4:02:ed:a3:a7:3d:cf:39:cd:3d:50:1c:7d:32:48:68:e1:
d5:aa:9f:e8:e8:6a:50:a2:39:e0:22:fa:96:0c:ce:c3:26:f2:
ad:e7:00:ae:d8:78:fa:a3:05:32:84:1e:5f:8e:49:d8:eb:19:
21:1e:f8:14:26:d4:da:2e:b9:11:cd:eb:0f:a4:b6:c2:03:1e:
9d:e6:b7:6d:c4:93:1c:31:3d:ef:a0:97:f3:c5:9c:44:06:82:
bb:04:18:2a:86:48:f0:d5:97:8d:01:b2:6f:51:85:25:72:95:
8c:d3:4c:d8:db:62:95:92:9c:9a:08:0b:da:98:1f:a8:d7:dc:
dd:8c:5f:a0:fa:34:0d:64:14:0f:e9:67:38:fa:78:9b:3b:04:
52:e0:0f:e6:d7:a6:fb:cb:7d:b7:61:cc:3b:f1:37:8d:69:ec:
79:26:17:f1:99:b2:bd:7e:71:61:eb:9e:4b:cc:c3:d5:21:ff:
af:cd:29:0b:66:a0:81:2f:2b:9c:fd:f9:d9:48:d1:ec:39:b9:
19:6b:d7:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 10:46:56 2026 by rpki-client