
$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft
File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json)
Hash identifier: FrkS6xbzw2595Itd8796PBUiKgyrGAKErp6XZcQxgRo=
Subject key identifier: E0:03:EF:C1:2F:5B:69:ED:14:53:F8:F4:9E:E7:C0:5C:17:29:4F:C6
Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A
Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A
Certificate serial: 0114
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft
Manifest number: 0111
Signing time: Fri 17 Jul 2026 07:07:39 +0000
Manifest this update: Fri 17 Jul 2026 07:07:38 +0000
Manifest next update: Fri 24 Jul 2026 07:07:38 +0000
Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: vF6viPBk5RWUvucxZscGJ0HZZz3RL1BQYTF0xMWNE5k=)
2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: OFV7TAeYTwMYk3v0VLj9doRdmglLiVsQ3XZ6eBJ4Cug=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl
rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:07:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276 (0x114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A
Validity
Not Before: Jul 17 07:07:38 2026 GMT
Not After : Jul 24 07:07:38 2026 GMT
Subject: CN=6a59d4ba-9300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:75:18:07:bd:61:22:c8:2c:8d:d6:d0:ab:29:
9b:25:f5:6d:9d:41:bd:6c:f6:ce:99:8e:9b:53:08:
2c:24:90:89:1a:af:ac:95:50:82:fb:61:49:7f:36:
75:44:94:3a:18:6a:b5:ef:c2:0b:26:b9:7d:12:fd:
5a:9a:24:c0:74:ee:18:6c:67:69:6f:c0:4f:0a:36:
5c:1a:18:6b:7b:56:c7:b0:70:87:61:e6:d0:6f:d2:
4f:1d:b6:1d:ba:ef:68:01:8b:5b:a4:e2:14:d1:e7:
df:4c:9c:16:cb:91:fd:44:c9:08:fc:9d:a6:41:f5:
f5:94:7f:a3:9a:48:91:7a:55:6b:b9:78:d7:0a:fd:
33:c9:e4:95:54:6b:33:11:89:8a:f8:61:7c:f7:a0:
6a:3e:54:81:50:37:aa:7c:de:db:59:be:c5:89:15:
5a:cf:10:7f:78:6d:d9:6f:3f:16:33:92:04:a6:f5:
7d:eb:1e:9d:ef:14:4c:a2:81:30:28:57:93:ec:96:
7f:f6:a2:d5:b8:5b:16:0c:d2:51:8b:2e:83:42:66:
4d:58:df:eb:b1:cb:c4:85:0d:1b:8f:ec:63:e7:0e:
5f:8e:17:b3:e8:89:95:15:7d:e5:c9:46:43:13:c4:
0c:ef:87:b1:54:1f:cd:19:57:fe:89:18:d0:58:96:
ee:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:03:EF:C1:2F:5B:69:ED:14:53:F8:F4:9E:E7:C0:5C:17:29:4F:C6
X509v3 Authority Key Identifier:
keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2b:cf:47:14:38:24:5b:45:ff:49:af:0c:42:52:3a:8f:f8:8e:
7a:de:40:62:9a:fa:30:53:e3:c2:a1:6a:c6:e2:59:8f:ec:a9:
c7:a9:0a:19:ca:d1:e9:35:be:d8:67:f4:78:fb:73:34:33:fb:
da:7e:88:00:c4:2c:94:15:48:79:bf:32:fe:57:4c:df:d8:ae:
c1:55:b6:f5:af:47:a0:eb:0d:98:51:7a:7e:bb:ab:1e:fb:d6:
ce:04:68:10:be:af:76:1c:23:b3:bf:11:bf:0a:dc:87:f0:ec:
d9:e3:44:2e:5c:8f:60:9d:20:e4:8d:bb:98:8d:f5:0a:32:f5:
f5:80:d4:81:34:e0:ef:54:78:d2:2f:80:f8:61:73:93:d2:29:
3d:0e:88:04:5c:3a:e3:2e:87:39:84:13:35:c9:0e:7e:08:3c:
31:21:97:6a:f1:65:24:24:7a:1f:b6:29:72:35:12:7e:ab:c2:
67:4b:1f:f1:50:1f:fb:20:75:9f:78:e5:8e:b6:b4:8c:11:ac:
5e:a3:08:c5:66:91:da:d4:b1:ea:4d:80:ec:50:e3:90:2d:24:
7a:3e:76:3d:0c:ab:d8:4b:b5:44:17:c2:96:dd:9d:c6:94:4c:
d7:df:9f:50:e0:89:d9:b4:ac:bd:c2:8d:2c:a1:3b:58:64:8c:
87:09:bf:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:27 2026 by rpki-client