
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json)
Hash identifier: 7WxJ/ZqvrSapeLtnRv5MzT46FyZjqmCLqy7UVm+u0rc=
Subject key identifier: 85:49:5E:4A:E8:7F:E2:A7:F4:FB:36:77:0C:18:BE:FE:3E:25:11:19
Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37
Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37
Certificate serial: 0191
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
Manifest number: 018C
Signing time: Fri 17 Jul 2026 05:26:49 +0000
Manifest this update: Fri 17 Jul 2026 05:26:48 +0000
Manifest next update: Fri 24 Jul 2026 05:26:48 +0000
Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: GDBIB8E5fZ5IZfjNkNZQhsgGgC38TY8XwXxTmfvu3EM=)
2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Cs2Nng8ExkKcdkzE5LqEYG6YI921OCl1yRvK1flrw98=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl
rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401 (0x191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37
Validity
Not Before: Jul 17 05:26:48 2026 GMT
Not After : Jul 24 05:26:48 2026 GMT
Subject: CN=6a59bd18-9d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ec:69:ef:d4:f1:45:64:2c:c6:95:4c:c9:aa:
c4:45:84:4e:bb:a2:2f:3d:52:7e:ea:95:28:bf:05:
f2:00:16:fd:4a:b4:05:04:c0:ee:eb:b6:db:9c:b9:
31:b0:7a:08:25:a1:29:27:37:8f:25:5b:70:45:d6:
42:ab:d3:f3:45:45:2c:bd:8a:37:85:dd:fd:ff:a9:
07:d1:2e:eb:0c:3e:fe:31:dc:11:ca:dd:3c:3f:c9:
4e:a4:6f:0f:59:39:51:28:49:d1:e5:e6:05:f7:b4:
b3:34:a7:8b:ac:79:2a:c7:e7:da:4c:4e:77:2e:82:
89:0b:91:07:55:67:97:41:fe:92:c0:db:d0:07:9b:
87:d4:f2:ab:a2:e4:d6:5f:58:a0:55:c3:c3:8d:71:
b0:be:27:9f:0f:99:92:50:91:fb:34:ef:3b:d3:b2:
bd:3f:f9:90:09:12:b4:70:38:d8:d7:b5:16:9c:f4:
9f:cd:ec:f6:bc:58:de:75:cd:be:28:13:a1:de:29:
ff:12:36:a9:28:44:e0:ff:be:30:06:db:e8:87:34:
cf:f1:c8:5e:39:95:ca:91:69:99:c1:d9:cc:45:cf:
06:2c:5b:6f:29:70:51:44:10:a4:c7:33:e8:ce:f2:
43:a3:29:61:d3:5d:dd:91:40:45:5a:e3:7a:dd:92:
9a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:49:5E:4A:E8:7F:E2:A7:F4:FB:36:77:0C:18:BE:FE:3E:25:11:19
X509v3 Authority Key Identifier:
keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5b:2b:18:99:7a:4e:d7:9b:b0:77:01:b2:3e:a2:3f:31:41:5e:
09:83:b1:bb:8a:b6:de:1c:56:2f:55:3d:af:c7:87:62:66:35:
f4:11:b1:5d:4f:62:cc:8f:14:19:eb:5d:ff:13:67:50:6f:c0:
8d:3d:f2:eb:48:f3:ba:9c:c8:dc:2f:60:1b:87:c1:87:d2:02:
3a:6c:09:f6:06:09:01:f5:5c:dd:8b:d5:4c:90:d3:73:b1:0d:
3b:2d:6e:69:a1:8f:13:4c:13:83:17:67:2d:77:1f:85:82:c1:
85:8f:f5:03:9c:8a:4e:42:6f:5a:c9:aa:f2:08:c8:80:36:d9:
3e:7e:7d:94:b6:aa:6a:57:f3:05:ac:bb:34:7c:d8:4b:1b:6b:
bb:fb:62:ea:d5:89:bc:30:e2:ef:24:f2:97:31:3e:8f:ac:38:
50:4e:57:c6:a5:18:ad:3e:b4:81:46:e4:da:36:b6:a1:49:d0:
63:c2:59:dd:32:9a:9c:bf:fe:40:87:de:a6:84:94:64:24:07:
42:6c:d4:bf:bd:c8:f9:4c:39:76:49:8b:c2:7b:04:fd:4b:4a:
10:f3:93:2e:5d:84:e7:3b:99:ba:82:ff:56:e4:54:ed:74:58:
06:a2:00:b8:b1:c3:3b:03:4c:40:4b:21:68:a0:8f:28:4f:93:
eb:73:f9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:31 2026 by rpki-client