
$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json)
Hash identifier: rqPBnk86U2DruIlUVNsjgn9mI3mRuP50qyQ7vsNQGPE=
Subject key identifier: 46:91:E7:26:F2:46:82:A0:A4:28:D2:3C:30:60:DC:AD:C5:3C:46:5E
Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37
Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537
Certificate serial: 1E89
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
Manifest number: 1E6E
Signing time: Sun 12 Jul 2026 16:01:19 +0000
Manifest this update: Sun 12 Jul 2026 16:01:18 +0000
Manifest next update: Sun 19 Jul 2026 16:01:18 +0000
Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: ctB5qyjRejOz0gyHk1jZHySmQNAIlXOFY2FI4d6hoCQ=)
2: 1D57FF40A01311E684546521C4F9AE02.roa (hash: lNaIu73lqivuKf4impc1RoL9Iorynr8Oq1i414eOVLY=)
3: 4865DD00A13B11E687921078C4F9AE02.roa (hash: ct9I/aMYPGYqo53jKTnyxK/j3JeT25nkuXtpX13/eJM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl
rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 Jul 2026 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7817 (0x1e89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537
Validity
Not Before: Jul 12 16:01:18 2026 GMT
Not After : Jul 19 16:01:18 2026 GMT
Subject: CN=6a53ba4f-52a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:18:51:c5:b8:ad:23:a7:f1:20:c4:44:b4:b3:
35:fc:11:34:1d:fa:78:1d:07:b7:7c:97:19:42:ea:
f1:17:da:fd:0e:ff:6f:67:d8:35:d3:f7:2f:d3:a7:
ee:cf:f5:5d:f7:2e:6e:83:8d:79:d4:1f:ee:b7:ec:
65:d4:6c:16:be:bc:79:99:15:6b:85:58:14:d2:4d:
99:e8:25:fe:29:17:0a:36:17:0a:7a:0f:15:6b:be:
65:ee:ff:6f:2c:29:87:ea:3b:82:5e:55:f5:5c:cb:
c3:bf:bf:66:b2:41:c1:0d:a1:14:04:fc:01:54:b6:
e8:e1:c3:8c:c3:51:15:47:4f:4d:ba:df:b1:1f:d5:
89:7f:a6:98:92:79:79:84:48:c5:2e:96:dc:b9:11:
77:a3:75:ec:82:58:fc:d0:d0:5f:63:7c:61:c0:c8:
b8:74:68:1a:ac:fa:4d:8b:af:a6:18:b0:d5:28:7e:
1e:6e:e7:04:a7:b0:45:d6:db:02:c2:5a:7a:fe:7a:
31:4a:f5:83:58:e9:ce:b8:a4:52:8e:4c:c2:e1:00:
fa:8e:dc:37:cf:2b:c2:53:2e:e7:43:cf:a0:7a:8b:
4d:90:2e:ee:a9:eb:97:b4:ca:67:42:57:1d:c1:de:
10:48:a4:af:d4:a5:e2:c3:06:3c:e0:c9:80:9d:18:
a8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:91:E7:26:F2:46:82:A0:A4:28:D2:3C:30:60:DC:AD:C5:3C:46:5E
X509v3 Authority Key Identifier:
keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b1:fc:19:aa:d9:7f:d2:a6:58:22:b3:ad:11:ff:bd:99:9f:33:
52:de:8e:51:04:7d:03:d0:d2:4f:1a:27:fa:07:a3:bc:04:96:
43:14:93:27:2d:f4:70:4c:64:a6:4e:c3:a8:ac:7e:cf:0b:ce:
d8:d5:82:9a:70:42:7d:88:86:4b:66:57:c1:d2:eb:29:71:2f:
5b:91:16:ca:88:6c:51:7a:79:a4:4b:56:8d:ed:6f:bc:20:e1:
d0:22:b8:76:96:29:a8:8b:ba:8e:08:23:37:b7:70:16:59:c3:
4a:42:69:11:f0:81:4d:2c:06:9b:e1:7d:de:42:98:ad:90:e9:
cb:0b:0a:51:3d:59:fc:09:56:63:a0:db:bc:e3:bd:bf:7a:1f:
1c:b6:40:ea:bf:d7:a1:5f:05:f1:cb:6a:ee:8f:09:c6:fd:a4:
da:cb:b3:7f:b8:8b:09:90:54:5f:24:bb:3b:8a:11:87:fa:a1:
13:46:50:18:4c:e0:8e:40:97:16:b6:a1:f4:88:8b:37:d6:03:
62:48:52:fc:e8:f5:b6:f2:be:16:87:49:a4:71:2f:b3:26:d5:
e2:11:b7:52:10:89:7f:07:0b:55:7b:0d:4d:5f:9c:8a:c8:28:
42:d3:82:57:ef:07:0e:d9:a6:d5:ad:55:7b:99:91:20:4d:aa:
75:db:bc:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 14 04:23:39 2026 by rpki-client