
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft
File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json)
Hash identifier: saeSlfZQQojIcK1radgICN1PmOXsV9aFFYadAVCDuAk=
Subject key identifier: 76:A5:BE:38:56:D7:3C:AD:35:D6:12:0B:3F:8E:C4:84:12:1B:20:F2
Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91
Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491
Certificate serial: 0181
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft
Manifest number: 0179
Signing time: Fri 17 Jul 2026 05:41:54 +0000
Manifest this update: Fri 17 Jul 2026 05:41:54 +0000
Manifest next update: Fri 24 Jul 2026 05:41:54 +0000
Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: oHL91JGMIR7blgCmO0t8JEwc38ItcLgNWM4be9jtE40=)
2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: 21CMC+4jrqt9R3YVeyqV8PFYMlUBz4//FXWyuGoWN2w=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl
rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:41:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385 (0x181)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491
Validity
Not Before: Jul 17 05:41:54 2026 GMT
Not After : Jul 24 05:41:54 2026 GMT
Subject: CN=6a59c0a2-2fe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e2:24:b9:20:be:41:ec:e8:2b:1e:f8:4c:b2:
25:44:34:a8:5c:5c:5a:b9:a6:0e:d1:60:0c:3e:8e:
62:de:82:3e:92:90:95:04:58:62:6a:b3:eb:54:d6:
8a:b1:d8:0a:63:e9:ba:8d:26:53:0f:e9:13:0d:71:
f9:06:d0:cb:40:1c:22:3d:a2:3e:56:1d:9d:57:57:
69:f0:23:6b:2f:b2:55:6b:39:d5:53:9e:25:0e:c0:
16:87:1d:ce:71:f2:ff:aa:1e:66:8c:23:0c:ea:b9:
ac:2e:a0:df:99:7b:c9:d3:e1:c7:5a:9a:01:9a:cc:
b2:d0:1d:9d:7a:56:e8:ab:f0:0d:11:eb:28:ec:d2:
d8:42:d7:17:90:c9:d1:a6:af:28:84:29:ce:e2:27:
91:42:a8:aa:aa:53:db:ad:20:0a:4b:6b:1c:57:56:
94:60:3b:12:35:ca:27:1d:fb:e3:de:fe:d3:a0:08:
65:fa:2a:61:c5:f9:37:b0:e0:07:ee:4e:9f:30:e3:
91:8a:97:7c:54:25:25:5f:06:75:28:0f:d7:0b:de:
25:3b:cc:33:9b:6e:72:0e:76:ef:29:48:7e:b2:b1:
55:48:75:c9:1d:81:81:9b:4b:f7:56:c6:29:eb:0e:
fc:84:4c:db:e2:5e:af:5d:45:ad:2c:c2:4f:1d:d0:
8f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A5:BE:38:56:D7:3C:AD:35:D6:12:0B:3F:8E:C4:84:12:1B:20:F2
X509v3 Authority Key Identifier:
keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:55:ca:92:24:5d:36:5f:c6:34:8d:82:e3:20:37:13:74:37:
00:ca:0a:a1:39:88:c6:9a:b1:8a:cc:75:a9:d8:74:e7:61:cc:
c1:29:7d:d7:35:57:69:5e:6b:b5:23:f1:98:5a:bb:a5:4e:b5:
d9:01:d4:3a:f6:33:b4:08:53:9b:7f:3b:da:af:34:2b:6b:b3:
06:33:b5:ca:b6:21:fb:2a:a1:9b:3a:70:56:a4:fe:4a:30:ca:
aa:a2:a0:f7:38:d5:af:64:7a:1d:1d:ee:b7:04:68:3c:5d:ad:
7f:d2:18:fd:1b:5a:f2:e8:3c:81:5d:e7:31:70:e0:ff:41:65:
59:28:2c:57:2d:61:90:45:33:10:39:b0:0d:1a:f4:29:ec:73:
c9:5b:26:cb:ef:6a:f1:52:f1:95:fd:60:54:34:7b:70:d8:25:
97:02:c6:ae:c4:12:a8:27:90:e8:86:d3:df:e9:2c:18:07:63:
9c:a5:e7:13:8d:83:a1:e7:f6:24:e2:c1:4e:8a:05:32:2a:2f:
1c:9c:1c:71:fa:d8:d8:27:e5:e0:7f:23:16:6b:fb:eb:83:16:
3b:9d:11:35:4c:e0:af:30:04:5f:43:de:8f:7c:60:a4:a0:4b:
9e:46:8a:29:bf:cc:1b:4e:00:be:e1:0f:bc:3a:1b:0f:79:a1:
37:a4:31:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:47 2026 by rpki-client