
$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft
File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json)
Hash identifier: 5dwuKvzDqJUpUZg+hsEyG0PfCB7g0mN2mTAsMyMwQOg=
Subject key identifier: FF:00:DA:64:57:3D:F0:89:0E:A6:89:3E:F1:C2:6E:9F:9A:A2:FC:E9
Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D
Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D
Certificate serial: 01D1
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft
Manifest number: 01D1
Signing time: Fri 17 Jul 2026 03:45:37 +0000
Manifest this update: Fri 17 Jul 2026 03:45:37 +0000
Manifest next update: Fri 24 Jul 2026 03:45:37 +0000
Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: afPAXKpEW1Q6794OEcGZgOuGBwoGJQc5MVSBFRw3NiY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl
rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:45:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465 (0x1d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D
Validity
Not Before: Jul 17 03:45:37 2026 GMT
Not After : Jul 24 03:45:37 2026 GMT
Subject: CN=6a59a561-730d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:03:a9:64:95:18:04:d8:0d:1a:a9:f4:2a:fc:
9a:79:36:dc:2c:3b:6f:27:d1:5c:76:0f:ff:02:79:
51:38:44:d1:92:99:8d:c2:bc:bf:f3:66:56:60:26:
c7:24:bf:f6:78:c9:c9:43:57:9f:ba:1c:1f:0d:27:
e2:fe:5c:52:8c:82:88:49:8c:30:b4:5b:34:a3:f6:
4f:a0:d8:d9:33:18:1a:cb:b7:58:57:29:88:11:dc:
3f:f8:2f:62:a6:a1:56:db:aa:8b:c0:99:c0:17:23:
fc:20:59:40:c0:69:99:3d:1a:94:7e:5f:ec:4b:9d:
65:9c:eb:a8:37:c7:98:ce:72:2c:8d:4c:44:6a:91:
ec:de:e8:1f:3e:4b:dd:0f:97:43:95:5e:d7:98:8a:
32:08:70:4f:b3:4c:61:43:1d:9c:7a:e3:87:d2:3f:
4d:74:40:c3:f5:53:50:fd:74:55:6a:c1:70:cd:8b:
cb:a3:94:37:89:83:8b:5a:a3:c5:5b:96:18:46:d4:
12:ac:7b:39:e1:ec:b5:ea:ea:5f:c4:55:4f:d9:13:
97:b6:a6:45:13:bb:66:e6:93:44:63:04:3d:66:a2:
99:99:00:f1:2e:41:91:62:f8:75:ad:3c:1b:54:88:
4e:44:f7:2d:5e:98:b3:5e:53:01:54:de:1e:b5:d4:
44:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:00:DA:64:57:3D:F0:89:0E:A6:89:3E:F1:C2:6E:9F:9A:A2:FC:E9
X509v3 Authority Key Identifier:
keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b4:0b:24:9d:66:0c:f0:d0:bd:96:68:5a:42:db:9b:bf:d4:ec:
83:1c:bc:ff:ae:4f:bb:2f:68:dc:7a:fa:8b:f7:ba:19:ef:a9:
64:e8:a4:e4:31:5a:be:98:1c:04:c0:e7:31:3f:c3:22:72:ae:
0f:d2:34:e9:77:1e:b7:6f:57:5a:82:f4:68:01:80:84:90:49:
68:f0:0e:31:ee:a4:ae:23:5a:d8:31:bc:8e:86:dc:42:86:15:
d1:4b:3c:3d:65:26:e7:ba:8a:36:c0:eb:5b:1e:25:60:43:d6:
61:17:6b:d7:0a:2b:3d:7f:8a:3f:ec:50:03:b9:14:7e:95:86:
24:fd:ed:09:99:62:8c:f1:b1:74:8f:3b:b7:d7:6e:4d:0c:de:
6e:a6:6a:b6:45:70:ff:01:1e:bf:4e:b6:d1:e9:30:83:79:73:
1e:e1:61:2e:1b:de:5b:cf:d9:fe:ee:d2:e8:55:de:7f:83:50:
31:dc:c2:c9:a2:49:c4:83:4a:ff:58:31:dc:f7:02:48:9d:e5:
cb:2c:e8:9b:47:84:d2:17:5f:35:11:db:f7:da:34:90:71:9d:
ed:c1:f2:e6:6c:cc:57:d5:d2:6e:86:ad:a3:27:94:f8:8b:df:
e1:c2:78:46:36:39:b4:24:93:ce:92:e2:40:ff:24:ea:47:13:
d7:ff:a3:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:37 2026 by rpki-client