
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft
File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json)
Hash identifier: FReiwu0AALiTNVyd4KdeohLY/j4Pz63QYxV6cSWwGRA=
Subject key identifier: 77:39:F6:77:A9:43:87:AF:4F:D5:CD:84:38:08:87:5E:2B:17:DF:FF
Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D
Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D
Certificate serial: 0137
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft
Manifest number: 0133
Signing time: Mon 13 Jul 2026 02:23:30 +0000
Manifest this update: Mon 13 Jul 2026 02:23:30 +0000
Manifest next update: Mon 20 Jul 2026 02:23:30 +0000
Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: qDkGrQh1u5i6oQHT+ZIRQgvDkPhzeXuMm2HlcTvklqk=)
2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: T9cYe9ZeR41yqY0Knl/5FUBYrilHkPIrqJ76+KfRgiA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl
rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 02:23:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311 (0x137)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D
Validity
Not Before: Jul 13 02:23:30 2026 GMT
Not After : Jul 20 02:23:30 2026 GMT
Subject: CN=6a544c22-d55d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2d:a0:fd:ce:ad:a1:08:9e:5c:98:3e:21:b9:
f1:ec:11:24:43:e7:2f:06:27:42:24:f5:e2:78:ae:
43:39:32:09:23:c0:71:17:23:04:d2:ff:24:d4:9a:
60:32:88:45:b2:3e:ae:42:17:85:ef:42:e9:89:f0:
6e:63:b6:81:bd:71:11:c0:db:64:f4:8d:51:59:27:
b4:52:58:f6:c1:5f:d1:e4:07:63:a3:a8:89:2e:9b:
e8:07:05:2b:c8:50:f3:17:29:f8:fa:83:f7:06:7d:
a1:b4:43:3d:1b:db:b5:5d:a9:0a:ec:ce:ce:9e:16:
0f:da:70:05:8a:7b:95:1e:d5:89:80:6f:08:70:bd:
63:46:2b:6e:01:64:fc:1d:ca:8f:23:6f:27:85:00:
7c:60:8b:50:85:0c:b3:50:e9:d3:dc:8f:6f:dd:6e:
b0:17:32:b2:82:8e:f4:6d:2a:0d:be:b1:8b:cf:63:
11:af:9c:74:e2:20:ca:09:5e:a2:20:11:b1:a8:e0:
4d:ec:e8:f9:aa:46:78:8c:91:68:d6:5f:7b:46:b2:
6e:2f:ed:24:7d:be:01:ef:f7:d4:5a:01:29:9f:69:
a5:15:cc:93:27:4e:28:6f:af:bb:1b:df:3e:5a:b8:
1c:56:7b:b3:23:7f:f3:c0:6b:69:5f:2c:fe:94:9c:
a5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:39:F6:77:A9:43:87:AF:4F:D5:CD:84:38:08:87:5E:2B:17:DF:FF
X509v3 Authority Key Identifier:
keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7a:79:b6:6f:b2:b8:16:c9:0a:c5:10:10:fe:d2:94:33:7e:8a:
07:d3:70:8a:14:2b:20:20:3d:46:50:53:7f:56:3b:4f:43:e3:
86:a4:57:4f:19:88:6b:2f:eb:0d:2b:99:1d:07:73:b1:89:20:
38:33:fa:67:46:a5:c3:46:18:f0:2b:f4:d8:b0:98:56:00:6b:
f3:f0:c6:6e:7c:54:28:41:c6:e3:6d:40:0c:e9:95:8c:bf:32:
cd:04:26:c1:bc:ce:47:bd:b4:8e:ee:2a:5f:6a:67:52:c3:9a:
2b:ae:d0:58:18:da:6d:9d:03:68:db:85:8a:50:e0:bc:58:1c:
87:08:58:f3:3c:05:98:a0:ee:31:aa:38:45:42:09:14:9d:38:
bb:fa:ff:53:3a:28:2a:12:0d:9e:15:f4:b7:b2:69:ba:b0:1f:
fb:4a:65:55:69:14:c9:cb:83:78:94:70:03:a0:a8:f2:5f:6e:
a0:62:9e:bd:17:b7:31:52:cb:9d:32:3b:03:6d:3b:ce:fe:66:
6b:51:12:d5:28:17:60:9a:f1:19:bf:e2:ab:18:8b:34:57:be:
ad:67:e3:ec:8a:9d:8e:d5:54:40:ca:9e:dd:29:a7:72:f9:05:
ac:f1:32:8c:39:50:b2:61:71:96:c0:f5:d0:c4:06:ca:1d:9a:
6d:bb:58:c7
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2
MjQyNkFBNUQwHhcNMjYwNzEzMDIyMzMwWhcNMjYwNzIwMDIyMzMwWjAYMRYwFAYD
VQQDEw02YTU0NGMyMi1kNTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyy2g/c6toQieXJg+Ibnx7BEkQ+cvBidCJPXieK5DOTIJI8BxFyME0v8k1Jpg
MohFsj6uQheF70LpifBuY7aBvXERwNtk9I1RWSe0Ulj2wV/R5Adjo6iJLpvoBwUr
yFDzFyn4+oP3Bn2htEM9G9u1XakK7M7OnhYP2nAFinuVHtWJgG8IcL1jRituAWT8
HcqPI28nhQB8YItQhQyzUOnT3I9v3W6wFzKygo70bSoNvrGLz2MRr5x04iDKCV6i
IBGxqOBN7Oj5qkZ4jJFo1l97RrJuL+0kfb4B7/fUWgEpn2mlFcyTJ04ob6+7G98+
WrgcVnuzI3/zwGtpXyz+lJylcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHc59nep
Q4evT9XNhDgIh14rF9//MB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3
NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x
bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky
NVFjZnVLXzYxQjFpUW1xbDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAenm2b7K4FskKxRAQ/tKUM36KB9NwihQrICA9RlBTf1Y7T0PjhqRXTxmIay/r
DSuZHQdzsYkgODP6Z0alw0YY8Cv02LCYVgBr8/DGbnxUKEHG421ADOmVjL8yzQQm
wbzOR720ju4qX2pnUsOaK67QWBjabZ0DaNuFilDgvFgchwhY8zwFmKDuMao4RUIJ
FJ04u/r/UzooKhINnhX0t7JpurAf+0plVWkUycuDeJRwA6Co8l9uoGKevRe3MVLL
nTI7A207zv5ma1ES1SgXYJrxGb/iqxiLNFe+rWfj7IqdjtVUQMqe3SmncvkFrPEy
jDlQsmFxlsD10MQGyh2abbtYxw==
-----END CERTIFICATE-----
Generated at Mon Jul 13 09:35:42 2026 by rpki-client