
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft
File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json)
Hash identifier: DSFJVv2wIBnkoIQXt8YNdtevQQRAR2ichJ3HxJZMYJk=
Subject key identifier: 70:4C:40:B4:72:8B:08:C3:CB:36:00:7E:A0:0D:11:FF:C1:D3:B9:83
Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3
Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3
Certificate serial: 02B7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft
Manifest number: 027B
Signing time: Sun 05 Jul 2026 02:51:08 +0000
Manifest this update: Sun 05 Jul 2026 02:51:08 +0000
Manifest next update: Sun 12 Jul 2026 02:51:08 +0000
Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: 1VUu44ibCt9T6beu7dz5rG6ztdQWYlhv0NEzmnjIop8=)
2: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: xmUdCyM5QiDqgFWRT2zLDTG1JQ+2+BywRs7fgy8s9m8=)
3: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: CcUbFuf1lNiH/+6gAJiToEGq81cMwH8NK/XgCCC726g=)
4: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: tow/qmOQ/9yiGU7J1jkBreLst3yXf8HbYJ89yXWzR5w=)
5: 1DAE236CC9D411F0A61E0021C4F9AE02.roa (hash: UMbEQFIpkJvqmK0HuzuHRzu+g80Gef2sVvm2DbI4gV0=)
6: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: CZCiFwljilvMJvt94AUk+cDZYd5AEqR+L8VAnnEflzY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl
rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 02:51:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 695 (0x2b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3
Validity
Not Before: Jul 5 02:51:08 2026 GMT
Not After : Jul 12 02:51:08 2026 GMT
Subject: CN=6a49c69c-154a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:01:06:eb:c3:88:a4:98:3f:48:c4:62:e5:57:
6d:5d:53:45:86:04:7f:93:73:32:ab:57:f2:b9:f2:
c3:ed:a5:3f:e5:e3:d4:df:06:3d:3c:f2:60:a5:6d:
00:ea:04:46:c1:93:1b:fd:ea:e4:3b:81:8d:2d:83:
dd:e6:64:aa:fa:67:31:0e:8a:ea:ed:08:b6:21:61:
06:0c:d5:80:63:f6:88:97:e5:68:1f:97:43:43:ea:
36:17:f6:a3:b6:0f:8c:4c:47:f8:b8:c3:67:e4:1d:
9f:4b:48:a6:2e:cb:ce:e2:3b:37:43:a2:19:5c:16:
61:59:91:f5:23:84:8f:a7:89:9a:92:b0:98:ad:b2:
7a:6b:5f:ad:0d:7a:be:83:df:b8:59:af:b3:bc:dd:
2b:27:bd:8c:21:c4:6d:1f:81:d9:c7:3c:7c:4c:b2:
3b:9f:b0:64:66:fc:38:a2:78:19:3e:dd:8d:3a:76:
dd:a7:6b:7f:11:fd:80:c5:91:38:2c:ed:7d:4c:78:
7b:24:fa:d2:b4:5a:df:f5:9b:e4:75:b6:ba:df:df:
7e:a6:9a:ad:9c:65:eb:88:87:e2:d9:85:4b:03:6b:
8f:7c:bc:36:04:76:db:14:81:6b:e8:92:71:35:fb:
20:2f:73:e2:03:7a:d8:90:bc:50:b2:cf:b7:20:f8:
34:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4C:40:B4:72:8B:08:C3:CB:36:00:7E:A0:0D:11:FF:C1:D3:B9:83
X509v3 Authority Key Identifier:
keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:f0:02:6f:c9:65:00:31:eb:c8:c7:81:b9:99:e8:4f:1b:1c:
fd:84:62:7d:9d:1c:68:6b:06:ec:c9:1c:6b:03:67:e9:0a:65:
a4:cd:fb:63:82:dd:43:02:a8:5d:1c:25:e5:b6:32:38:2f:76:
3b:c8:b2:1d:a5:03:12:b5:5b:8c:71:22:5f:9b:0d:ba:d8:b2:
2e:2b:cf:dc:3b:21:c3:f3:6b:eb:ba:37:b0:3b:df:3f:51:89:
a2:a5:3e:10:70:17:e0:ec:fa:8f:02:47:cf:cc:5c:a8:f9:bb:
af:4b:76:64:2b:47:71:ec:70:4a:1f:89:a5:03:61:52:aa:f7:
07:a3:04:b3:cc:20:43:68:5d:c3:7e:67:f3:b3:49:98:e4:7f:
d2:d8:14:12:c5:d0:0b:a2:a6:3a:35:da:0d:b8:65:3e:bf:3b:
a4:60:82:18:35:a1:b7:95:dd:03:6e:f9:5f:9e:57:36:e8:06:
c8:95:5c:2a:2a:7a:70:70:39:7c:cd:33:34:2f:14:09:1f:92:
86:9d:fe:2e:04:3b:f9:bf:fd:0d:ed:d7:bc:83:df:e9:58:d2:
95:39:9b:4d:e5:90:a9:8b:4e:c3:14:6c:5b:63:60:75:ab:67:
ff:c0:60:61:2d:5d:8d:5b:09:12:ca:80:87:56:75:7e:85:4e:
75:ee:da:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:19:40 2026 by rpki-client