
$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft
File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json)
Hash identifier: +Y0/0XmXiS8eP4zg4mMhm4L2JGGoWzN0OydGPGfmC+E=
Subject key identifier: DF:1E:A6:06:1F:B2:3F:76:E0:BA:8A:50:B4:B3:51:78:82:A2:C2:42
Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22
Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522
Certificate serial: 03F7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft
Manifest number: 03EB
Signing time: Sun 05 Jul 2026 00:54:01 +0000
Manifest this update: Sun 05 Jul 2026 00:54:01 +0000
Manifest next update: Sun 12 Jul 2026 00:54:01 +0000
Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: aeG6ntKWbb8iHcmuqmoF7lLDGZgld+PhpVdmoIdD/UY=)
2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: wIyzsjW5BRzmcndW2dr3tP73GPQanoCiUm2iVewXNHc=)
3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: hsXlGwRGvGPxUguulNF29dR42fVylbNtBhEHVdKJ8n0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl
rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:54:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1015 (0x3f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522
Validity
Not Before: Jul 5 00:54:01 2026 GMT
Not After : Jul 12 00:54:01 2026 GMT
Subject: CN=6a49ab29-becb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9a:05:26:95:98:b8:78:df:81:48:04:35:0a:
77:55:cf:01:86:36:6c:99:9c:37:97:6d:f4:f3:09:
2d:38:62:e3:a6:9d:0e:a3:4c:5b:b1:2b:8b:b1:f1:
7d:0c:d1:36:32:8e:6c:51:b8:96:bd:01:bf:99:6c:
39:ba:45:55:db:8f:4f:ea:0d:70:d8:d8:2f:8b:62:
96:8c:c1:e0:52:d0:5c:da:c5:af:97:9b:78:fa:d4:
34:14:2f:0c:fd:58:23:c7:57:47:3c:d6:da:d9:79:
47:da:95:56:4b:18:8d:f6:4d:a9:ca:b6:59:07:a0:
14:da:7e:a3:d0:51:e8:43:b4:4b:16:96:80:bd:60:
d8:e3:01:37:f5:99:ab:17:fc:54:a9:6d:73:2c:d9:
69:ac:ac:4e:96:8e:e3:48:3e:fd:20:73:84:d9:4e:
a5:78:69:f0:f5:c8:69:98:2b:31:d0:69:9c:ec:e3:
20:fc:23:7e:0e:c7:f4:c8:ca:47:30:f7:d6:37:5f:
29:21:09:ac:db:31:37:3f:09:c2:35:a7:5d:d9:ff:
e0:32:e8:08:f3:59:b1:bf:6c:17:55:b6:7f:15:bf:
8b:84:e4:57:a4:1d:a9:af:4a:37:02:65:dc:fd:ce:
48:74:6c:35:4a:81:e2:96:81:a8:18:7c:5a:1c:f5:
83:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1E:A6:06:1F:B2:3F:76:E0:BA:8A:50:B4:B3:51:78:82:A2:C2:42
X509v3 Authority Key Identifier:
keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:6f:cf:74:d7:42:e2:5f:1e:db:51:b9:a6:1e:16:4f:14:28:
b1:20:ce:b4:6c:bc:8c:09:48:4d:50:6b:9e:b4:70:66:0d:58:
27:e5:2b:69:59:04:de:c2:e7:b3:27:5e:07:c3:47:4f:d7:c6:
05:b1:8e:13:13:5a:cb:df:90:09:5c:1e:da:0d:0d:ff:66:60:
4f:07:b2:a2:f8:b9:bb:d3:f2:86:08:d1:b1:d6:b8:f1:95:54:
83:2d:a7:2d:b6:cf:3e:27:43:03:01:1f:35:a0:df:a1:5b:01:
6b:ce:2f:24:4e:63:e9:88:ae:97:a6:8b:70:5b:a7:11:85:b2:
a2:5b:d7:cc:8b:35:68:c0:24:89:cf:be:7e:a6:c3:2c:4f:66:
16:57:66:cc:1c:86:4a:f6:78:aa:b6:ac:98:71:42:17:71:a7:
cc:b1:20:57:3b:b2:57:8e:19:8b:85:57:b5:7a:d9:4a:c4:6b:
a2:a1:a5:a7:a9:33:36:eb:bb:4e:35:38:ca:d7:65:b8:56:db:
d8:85:58:68:0a:f3:21:f8:8c:54:f9:e0:64:f1:88:7d:df:22:
7d:b3:a4:7a:aa:bf:1e:1b:db:b0:34:a5:5c:17:ee:86:b3:ce:
aa:cd:ea:fe:00:52:5a:04:b4:04:16:e0:38:34:6c:57:a9:cd:
bb:0a:79:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 21:10:52 2026 by rpki-client