
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json)
Hash identifier: LF8CnsNM7sc5+f5pmKTrGzw1pSlEW6H7813CWYDpVCs=
Subject key identifier: A7:FE:38:A6:FD:03:14:19:56:C4:0D:3E:81:A9:E9:A7:E4:E1:1A:1C
Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A
Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A
Certificate serial: 016A
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
Manifest number: 015D
Signing time: Fri 17 Jul 2026 06:12:10 +0000
Manifest this update: Fri 17 Jul 2026 06:12:10 +0000
Manifest next update: Fri 24 Jul 2026 06:12:10 +0000
Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: 1Dba8bHSdgCnF0HvyBwmw3/OawY5mBf7q30rGh6d+EQ=)
2: 00E00D025BC711F0886C5B59C4F9AE02.roa (hash: XkQ1uVk/uXSTQGxlpz6vDp4cVf/noCzCGg0tuyD68XM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl
rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362 (0x16a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A
Validity
Not Before: Jul 17 06:12:10 2026 GMT
Not After : Jul 24 06:12:10 2026 GMT
Subject: CN=6a59c7ba-d48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ff:de:e2:e2:06:ac:e8:a1:56:72:84:48:f6:
3d:d6:c7:6d:49:81:45:eb:59:b9:06:5a:9b:05:b9:
d2:a0:0d:e1:e8:45:aa:e4:44:bb:cf:83:9f:7a:19:
72:a7:d8:86:97:ac:61:7b:01:f0:1c:41:6d:2a:79:
54:c7:a4:2c:54:cf:8a:62:24:86:02:ac:ca:65:aa:
86:2b:76:29:40:87:64:82:08:0f:37:07:21:b9:b5:
3e:82:d4:5f:49:3c:27:ab:67:94:c8:e8:98:d5:02:
b6:30:4b:dd:82:bf:d4:55:7c:cc:dd:17:8b:42:6a:
91:aa:72:f7:20:9e:79:d1:38:b9:5f:6d:5b:30:15:
f8:a5:91:2c:6d:17:6f:5a:15:c6:11:a8:78:2e:db:
73:b4:a7:0b:5d:c9:0b:f0:e0:17:22:58:5b:ed:fe:
70:7c:ee:6d:e4:a0:f6:da:62:b8:90:a7:ba:f7:e9:
2d:3f:e0:9e:31:45:70:17:a0:11:66:29:e9:05:d0:
ae:d2:5a:30:66:7b:ab:94:06:74:4e:7d:37:74:f2:
75:05:af:63:86:c5:8e:84:2d:d0:d8:0e:d2:38:ab:
44:b7:9f:95:71:05:29:89:fd:30:a4:06:00:2f:56:
d9:22:91:fb:6e:45:dc:51:b9:7e:15:67:96:61:56:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FE:38:A6:FD:03:14:19:56:C4:0D:3E:81:A9:E9:A7:E4:E1:1A:1C
X509v3 Authority Key Identifier:
keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a1:47:b6:c5:38:e6:16:75:98:28:6a:ea:5f:bf:55:5f:c2:
07:ef:90:12:68:1b:16:51:dd:8a:a4:22:41:4c:eb:15:69:90:
3e:3d:19:90:54:f1:a3:78:81:cc:41:ea:60:58:4f:0e:71:db:
dd:b3:a2:dd:5e:7f:ea:47:94:ae:9b:64:b2:5d:bd:22:27:e1:
1e:6c:a6:2c:cd:bc:6d:43:86:80:6d:7a:f5:cd:57:4f:db:f5:
ba:52:50:ab:d9:7b:e0:85:d1:a5:39:96:da:f8:06:30:a6:ca:
7d:b2:47:ab:3a:4c:f0:55:e8:e5:f7:10:96:18:c4:6b:84:7c:
a2:50:f9:11:ad:c5:d7:c9:d7:46:d1:e4:17:2b:01:a8:55:38:
28:89:bd:d4:3f:78:fd:ff:ca:52:77:6e:4c:2b:eb:2b:59:ba:
25:a9:4d:4e:68:3e:c7:63:b2:8c:ba:41:84:da:b1:4e:85:89:
ca:32:54:2d:b8:51:03:99:5f:64:a4:a5:88:72:0d:17:40:76:
9d:1f:1a:53:3a:a4:30:9b:22:fd:ef:24:28:46:e7:b7:03:03:
0d:d5:9c:41:57:98:1f:80:c0:f7:5a:fd:72:20:89:9c:54:10:
ae:2c:61:29:53:e7:1f:2b:05:3b:ee:22:36:6b:69:83:4d:e7:
54:40:7d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:20 2026 by rpki-client