
$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json)
Hash identifier: iX7e1skVKQUrCcaOoPgvrjbtOXyT2iP336wmuV+TrI8=
Subject key identifier: AA:43:A4:35:95:F7:F4:2D:9E:8E:71:C1:2C:B9:EC:9E:72:B8:AD:CD
Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89
Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89
Certificate serial: 0522
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
Manifest number: 0515
Signing time: Fri 17 Jul 2026 07:26:40 +0000
Manifest this update: Fri 17 Jul 2026 07:26:39 +0000
Manifest next update: Fri 24 Jul 2026 07:26:39 +0000
Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: JKv+Kuw7Xm19CZQ4jfbKy/E7wA4q0QC1MPoXqZSFCN4=)
2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: PglW3T12IKlMircnLLUZ33j6kRlzVW56A2kCHbmh2rY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl
rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1314 (0x522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89
Validity
Not Before: Jul 17 07:26:39 2026 GMT
Not After : Jul 24 07:26:39 2026 GMT
Subject: CN=6a59d930-bdf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1c:03:5a:e8:a3:c0:6b:fc:cf:be:52:73:a7:
e9:69:1b:02:26:9f:9d:15:c5:a1:66:6a:8f:07:9e:
39:83:5e:b0:c5:9c:2a:69:e0:f8:6b:28:17:63:2b:
7b:72:93:57:b1:fd:a1:cd:ab:05:e2:93:1f:6e:6f:
e6:a3:cd:44:32:b2:ff:71:16:ef:73:63:4d:5c:6b:
15:82:26:3c:f2:65:cb:94:85:70:7c:87:a2:4b:7a:
7b:c1:8c:94:d5:07:76:a6:24:6e:f7:7f:fe:f1:fb:
69:b0:34:97:ac:9d:96:3b:37:4a:77:23:1c:9c:13:
19:c9:a4:9e:93:f4:e0:bf:23:dd:21:5e:51:d2:2f:
4b:49:2c:9a:7f:8b:07:a4:9e:1f:f5:f6:f7:bf:62:
68:9b:36:ec:94:df:50:86:32:b1:50:81:2e:4e:2e:
2a:43:78:4b:a5:dc:c8:5d:dd:d5:e5:73:d5:70:5e:
19:98:fe:80:0d:7f:eb:2e:1f:14:c9:37:ae:2b:04:
ec:6d:d1:b4:19:be:e5:e7:63:ea:c0:77:99:06:66:
38:71:92:2a:f8:e3:ed:8e:48:3d:1e:d4:8e:87:8d:
4a:46:66:96:bf:a6:62:c2:67:da:15:a6:a5:37:4b:
56:b4:b2:9f:85:e9:9e:02:33:e6:f5:df:43:22:48:
1d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:43:A4:35:95:F7:F4:2D:9E:8E:71:C1:2C:B9:EC:9E:72:B8:AD:CD
X509v3 Authority Key Identifier:
keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ec:88:4d:4b:59:04:bd:84:4c:17:87:f6:4e:ff:ae:cb:5d:
78:ab:cc:db:9f:81:29:4b:46:4d:e3:dc:13:c2:e0:49:93:e3:
9d:60:4b:cb:48:d4:de:92:7c:39:b9:55:00:0a:48:42:90:d2:
e5:fb:6b:70:a7:de:ce:24:20:2f:33:ce:25:19:8f:55:72:5e:
dc:6d:d4:35:34:ec:0b:64:f4:3d:d7:13:b1:04:1e:01:5a:69:
2b:2a:68:f4:78:c4:19:d3:e4:68:97:a3:12:95:fd:70:56:c6:
c8:26:49:1b:01:88:b0:56:24:ba:69:b5:fc:0d:43:e8:30:39:
49:42:02:bb:fd:6d:d4:09:39:ed:7d:53:8f:79:f6:be:45:0e:
dd:69:80:88:8e:d7:de:23:25:00:9d:15:61:93:e0:9e:94:49:
0e:48:ae:ee:35:0a:35:26:f4:a4:49:5d:ac:89:b3:c0:56:5e:
b3:ed:65:fd:f8:5a:c2:2e:d4:f4:94:98:99:40:61:8a:b4:de:
9f:a3:35:37:4e:ad:71:3b:f9:c6:20:c0:28:30:34:22:30:06:
16:77:13:35:ab:fc:18:e2:ec:8a:cb:10:55:d5:20:2b:f6:18:
8e:d5:50:64:9d:51:e4:84:4a:88:7c:33:b6:32:8d:9c:e8:85:
9d:ef:ba:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:35 2026 by rpki-client