
$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json)
Hash identifier: lc/3hTqhu1dTtZSEm+JL2zCYpRcLwjF1MLvAWdBtqWM=
Subject key identifier: A5:CF:7F:1D:B1:99:C0:A3:35:64:08:9D:A8:5E:87:E7:AC:B3:78:19
Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A
Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A
Certificate serial: 05A1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
Manifest number: 054C
Signing time: Fri 17 Jul 2026 00:05:37 +0000
Manifest this update: Fri 17 Jul 2026 00:05:37 +0000
Manifest next update: Fri 24 Jul 2026 00:05:37 +0000
Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: Q27mQ7tK6vXumSg3BmZlgKP7K7kWz/9G0IPImXa87bU=)
2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: rcOga+YGZldqreiF0WCdj8lf5Z59J1hOmyY6+goJTWY=)
3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: vIEtRSxvBa0Xc/IiKtnrGRDGvVh6iD/nJgJJDv2I0S0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl
rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1441 (0x5a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A
Validity
Not Before: Jul 17 00:05:37 2026 GMT
Not After : Jul 24 00:05:37 2026 GMT
Subject: CN=6a5971d1-b83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2d:9f:6f:7d:e8:46:17:12:d7:54:30:87:9e:
8e:c3:ab:6d:bc:a5:c3:0b:03:33:8c:6d:8e:12:8a:
cf:2b:33:e8:ea:fb:58:bb:87:ed:e8:9f:13:ba:09:
40:c3:c7:40:5b:51:5e:03:94:9e:33:3a:67:af:d1:
91:a5:1e:bd:29:86:7a:0d:ca:a0:cd:ee:7b:8f:82:
9e:18:e1:52:38:5f:3b:a6:26:60:f5:d5:86:83:ab:
e0:40:f5:15:1d:ba:cd:66:20:66:ed:1a:9d:ae:34:
3b:3c:0c:7c:1b:bf:78:3d:62:93:44:0b:40:f9:5b:
17:a4:77:04:9b:2f:c1:cf:ab:58:5b:2a:4a:5c:c6:
3c:28:b6:d6:59:11:a6:39:53:55:d9:53:c5:23:3d:
8d:07:a1:a6:7d:45:f7:30:e8:d3:a5:23:ba:3c:ed:
d6:c2:93:30:72:69:8e:46:32:52:8b:eb:f5:5e:eb:
02:f4:86:68:ab:30:ef:7f:f6:eb:dd:85:94:34:93:
56:72:0f:60:87:3e:32:d1:3f:db:ba:aa:0b:4b:54:
6e:50:22:34:f5:20:e3:b3:ab:4e:26:fc:b8:d0:a4:
17:8c:9c:65:7a:45:fe:a6:1f:0e:19:3d:00:61:5f:
26:78:0a:e2:8e:61:10:8b:74:14:53:69:30:65:01:
e0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:CF:7F:1D:B1:99:C0:A3:35:64:08:9D:A8:5E:87:E7:AC:B3:78:19
X509v3 Authority Key Identifier:
keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0b:48:4b:71:17:ae:4c:46:d2:d4:ee:2f:40:ae:0f:a9:72:43:
6b:25:1f:27:58:56:fb:d9:f3:c6:24:fe:f2:eb:69:92:eb:2a:
26:bd:95:03:15:86:c0:0c:5c:b4:ef:6b:51:d4:1a:c2:8b:f9:
ab:a8:17:d6:1d:6d:9e:17:2d:cc:9a:68:f9:35:92:02:8b:59:
8a:0a:5f:41:13:c3:a1:e0:56:ec:2c:9a:98:65:a5:34:27:0e:
1d:09:56:15:be:81:db:12:f9:7a:87:e0:33:9d:a3:ff:82:67:
bb:19:4b:7d:9c:4a:5c:2c:6c:9b:a0:cf:9e:36:59:9f:b4:85:
73:2f:80:f9:2d:93:cc:2c:1d:80:60:0f:56:6e:a3:96:ee:52:
23:e1:38:63:cf:4b:a7:2b:6d:b9:10:52:01:91:c5:05:6c:67:
27:fd:23:17:cb:d2:66:e6:3c:9d:02:3d:2f:fe:d4:ff:c0:00:
fe:39:c1:e7:f3:0c:64:46:7d:76:4d:34:be:54:be:c2:8c:bf:
80:2f:cc:4f:b6:eb:25:78:c9:cc:8f:5e:47:29:b3:c7:2f:8a:
e5:7b:84:d1:a3:31:be:78:8f:1f:c2:96:24:90:7a:06:a4:11:
1d:a1:29:35:28:41:56:c3:2d:df:84:9b:be:01:e1:c9:02:45:
e1:f7:0a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:21:29 2026 by rpki-client