
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft
File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json)
Hash identifier: E/VCOyniXtTvZDbyptcSSXV14b0wixodUII/6oPY6vI=
Subject key identifier: AE:8A:40:7E:0C:0D:BF:DC:54:98:4F:9A:4C:F6:97:1B:7D:05:02:86
Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A
Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A
Certificate serial: 01B1
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft
Manifest number: 01A8
Signing time: Mon 13 Jul 2026 02:23:36 +0000
Manifest this update: Mon 13 Jul 2026 02:23:36 +0000
Manifest next update: Mon 20 Jul 2026 02:23:36 +0000
Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: kQsQrwraTt7DGwq3V7gl0Z1Jh3+ShKS+Yasnl7rby1M=)
2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: +DCvPGD1gJzVRYp0NyLyo9qI/LocUFsJLWMxD2e8AY0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl
rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 02:23:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433 (0x1b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A
Validity
Not Before: Jul 13 02:23:36 2026 GMT
Not After : Jul 20 02:23:36 2026 GMT
Subject: CN=6a544c28-9ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c5:6f:a1:e9:7e:a6:76:61:ba:3d:70:18:98:
c1:e8:5a:9a:fe:06:6f:73:8f:61:6c:45:eb:4c:d7:
56:55:96:ec:35:0f:10:d4:cb:24:a8:4d:9b:4e:b0:
6e:11:20:f6:05:08:ed:e8:2f:8c:df:44:b4:03:3b:
70:b2:6f:e2:44:50:40:90:2a:df:0a:7d:cf:39:b8:
bf:32:de:1b:bf:5a:4d:2e:ae:76:90:de:36:a8:95:
1c:1f:99:4e:a2:3a:bd:4b:d0:12:c5:62:be:2e:64:
95:7e:40:87:a5:b2:c6:36:c6:be:23:0a:45:87:64:
98:68:7b:88:02:dc:78:5b:be:94:26:46:ba:a2:a1:
54:be:ef:a1:96:33:b0:d4:73:13:8f:e1:5b:dc:44:
3a:2d:9d:f5:dd:20:e2:b3:7b:e3:a6:1a:47:e0:56:
64:ba:c5:86:98:8e:3f:a7:1b:9b:35:15:ad:5d:a7:
9a:c2:7b:29:c3:ff:c7:49:94:4b:e9:9c:c2:03:db:
c4:e8:d9:10:c5:48:57:8a:83:b0:02:52:ae:07:a7:
59:2b:94:c6:ad:f8:e4:d5:c6:83:14:80:c2:a6:a7:
4f:32:45:3e:67:0c:a0:41:d7:42:42:e1:b9:da:ed:
34:4d:81:3f:2b:2d:2a:fb:fb:fe:da:dc:ac:da:b2:
a3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8A:40:7E:0C:0D:BF:DC:54:98:4F:9A:4C:F6:97:1B:7D:05:02:86
X509v3 Authority Key Identifier:
keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9e:8e:b1:cb:e6:58:fa:b9:e2:e3:43:58:6b:c9:85:0c:14:b5:
44:32:8d:67:d4:df:fc:89:55:ee:5c:66:ff:f8:db:12:f0:25:
af:15:cc:2f:0e:bc:c5:62:1e:bf:c5:e8:ca:c3:52:28:6f:1e:
50:3b:80:ed:c4:4c:35:6b:c7:12:b7:d6:75:a1:dd:1d:ba:9a:
62:a9:1a:64:56:c3:49:cb:7e:4c:56:1d:a7:38:7a:6f:b5:8e:
74:a9:a6:90:6a:a2:ae:e1:ba:eb:12:7b:a4:21:4a:35:b6:b6:
95:ef:59:59:d4:f6:f8:e0:af:39:43:db:ae:3f:60:ac:c9:dc:
a6:8a:1a:e0:63:d9:ed:04:4b:49:8e:1c:02:da:59:86:e0:fd:
d9:29:9f:34:ba:b0:ac:b1:22:21:e2:09:00:77:50:b3:df:ba:
9d:86:4d:61:63:0b:99:7a:0a:bb:c0:74:92:cd:d4:23:c3:27:
cb:9a:ea:40:e4:cd:4e:65:eb:99:c4:5b:7a:b4:bb:b0:61:5d:
3c:5b:a5:01:dd:fc:f8:e7:f7:20:aa:43:5a:ab:ea:8a:3f:f5:
e2:c4:33:dd:b0:96:aa:e9:19:18:97:92:a4:93:a3:bc:44:f4:
36:88:ea:5c:5c:b2:7e:d7:64:b6:4c:08:4b:61:5b:24:58:41:
1b:ab:c6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 09:36:53 2026 by rpki-client