
$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json)
Hash identifier: 38dd3DomLnWxNrbUmg3S3iPI3IJxdusqGzIglh6+MJs=
Subject key identifier: 42:73:9B:E7:91:A7:1A:E6:17:66:3A:4D:AA:38:6F:0D:00:56:A7:97
Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4
Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4
Certificate serial: 01D1
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
Manifest number: 01C5
Signing time: Fri 17 Jul 2026 04:47:57 +0000
Manifest this update: Fri 17 Jul 2026 04:47:56 +0000
Manifest next update: Fri 24 Jul 2026 04:47:56 +0000
Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: oexuLJ48OXnl4bUEPFHC2ZREoBpTEc2Oomx+siVq/tI=)
2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: CHmfasvIFMB8cvnVplF2VU1d1UcvTiGGkiQVF3TlMl8=)
3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: tbhcExPyMdasBxcbE73h7b5HlPi0div8uaJX4sMb5Ow=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl
rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465 (0x1d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4
Validity
Not Before: Jul 17 04:47:56 2026 GMT
Not After : Jul 24 04:47:56 2026 GMT
Subject: CN=6a59b3fd-fdd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f2:a6:8b:4c:ff:40:9c:cb:51:30:ad:7e:a5:
00:c4:5e:f1:00:db:ed:b4:2a:39:74:8b:82:4b:aa:
49:39:43:44:17:06:55:24:01:40:29:0b:ed:00:e8:
1b:b0:23:bd:4b:f6:8c:9c:6f:b8:14:b6:a8:65:2a:
e8:ea:e5:7b:2b:03:5d:fc:5a:f0:f3:82:d1:6d:4b:
75:0b:a8:87:60:f9:66:f0:aa:69:6e:78:c8:3e:4f:
ce:83:4e:ac:68:e5:14:ca:b9:59:fd:74:cf:be:db:
f6:75:bc:62:24:e6:c6:28:53:8a:75:c0:2b:12:47:
bb:16:a5:9a:c9:a3:6a:ef:d9:92:ba:12:cd:9c:9b:
64:48:11:95:26:0b:80:19:0a:18:09:74:67:6d:4a:
b0:6d:19:4d:87:d5:4b:33:7e:7f:68:b9:c1:77:8a:
1b:ee:9a:35:26:5c:cb:68:04:e3:55:2f:d2:f9:71:
ca:42:ee:d4:24:9e:f0:f8:aa:cd:4c:f0:33:dc:ce:
c3:b6:04:f2:56:59:22:b4:ef:f1:1b:4f:d6:08:b1:
5a:94:71:f1:34:6d:72:8e:05:21:c5:cf:e0:cf:8d:
d5:38:44:40:0e:96:8a:f1:ca:42:4b:36:cb:80:c4:
10:11:e8:3c:97:b8:93:c2:b9:d4:e9:fb:64:9e:26:
b4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:73:9B:E7:91:A7:1A:E6:17:66:3A:4D:AA:38:6F:0D:00:56:A7:97
X509v3 Authority Key Identifier:
keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b4:73:99:f2:16:fe:e1:34:d0:38:b5:dc:e1:48:4f:55:73:54:
b0:ce:ec:c5:21:cc:7d:09:7e:9b:d9:6f:a9:53:b6:3a:ab:1b:
de:0d:08:08:16:3d:a4:d2:4c:8d:2a:60:82:9e:af:23:f9:26:
b4:82:0a:ed:1f:a1:37:b4:19:dd:eb:8f:1a:39:b3:9e:9a:1a:
9a:77:fa:0b:35:fc:90:73:cc:26:19:65:a9:8b:92:d5:f3:4b:
d0:52:40:9a:98:dc:8c:da:af:01:cd:78:e1:76:c5:b9:eb:c2:
4b:dc:f2:c3:37:8d:9d:bf:86:c4:19:5f:27:51:20:3f:00:52:
4f:2f:47:d7:01:a9:bb:fc:bb:16:18:d8:cb:cd:d0:fa:69:51:
88:f3:0b:2a:e8:ed:15:99:7b:d8:8f:d6:21:22:a6:58:ec:1d:
41:8a:e5:73:68:5e:81:c5:ba:d0:09:da:bd:fa:1a:87:5e:c6:
cf:65:76:12:a1:bc:1f:5e:d4:eb:01:02:c8:55:0a:5b:63:19:
86:19:0e:04:64:50:f2:34:75:e1:44:bc:93:28:6d:27:7e:48:
7a:f7:ad:6f:48:52:cf:89:4e:c3:e8:9d:e6:bc:d7:a7:a8:e1:
8d:7a:b5:2a:f7:df:41:6a:cb:73:c7:b8:7e:b4:b5:fc:9a:8f:
b6:fb:71:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:45 2026 by rpki-client