
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft
File: 2OexX5y5FnTlEn_UBtfZ5xjgirA.mft (raw, json)
Hash identifier: LhSYnEb17w2A3s00RH1ENxkJtDpBGBMevvescusfGPU=
Subject key identifier: 8D:F5:40:3C:91:54:D0:7E:BF:9F:95:01:4A:46:07:23:0B:0B:14:F5
Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0
Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0
Certificate serial: B5
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft
Manifest number: B3
Signing time: Fri 17 Jul 2026 08:19:15 +0000
Manifest this update: Fri 17 Jul 2026 08:19:15 +0000
Manifest next update: Fri 24 Jul 2026 08:19:15 +0000
Files and hashes: 1: 2OexX5y5FnTlEn_UBtfZ5xjgirA.crl (hash: OQb1lKJkzE9QoglYLvDFAyfEh64CVKFwJyA4G5M+6us=)
2: 4197AB74735611F080D68151C4F9AE02.roa (hash: KJWSfbOSquMIKpz7QMLAGjevQAyuwiO61hki9DtvT9A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl
rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:19:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0
Validity
Not Before: Jul 17 08:19:15 2026 GMT
Not After : Jul 24 08:19:15 2026 GMT
Subject: CN=6a59e583-860c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:08:b4:44:5d:29:da:d2:ab:42:ee:06:8f:d2:
a1:23:fe:0c:be:d9:da:34:f3:9b:64:94:41:4c:5e:
3a:c6:be:b7:10:a2:cd:8d:c9:a7:5d:cd:7b:40:f9:
ec:45:75:8b:cc:73:73:7b:a1:20:14:ee:a0:41:d4:
09:85:3e:f5:48:6f:81:13:9a:35:47:1c:5e:14:ab:
cc:8b:13:15:19:e8:29:b1:01:d2:c4:c2:d9:ea:6a:
b3:3e:da:28:c8:6b:a2:c0:91:be:41:3a:16:d8:08:
40:f9:49:6b:4f:7e:44:e7:1a:6b:1e:48:14:b9:31:
a4:3a:e3:d1:41:ae:ee:51:71:d8:55:d1:cc:ab:c1:
3d:8c:16:0e:ac:9b:5a:42:b3:aa:5c:64:c8:4a:c9:
da:23:f7:b8:87:dc:36:57:b8:8b:2f:42:41:3b:76:
9c:84:11:a7:51:c6:fc:74:bf:c4:c9:b4:66:0a:a0:
e0:63:94:c2:5c:7b:62:5a:9b:31:f6:09:24:29:33:
01:70:e7:9c:bc:f6:20:48:84:44:86:bb:9e:f6:24:
b4:05:42:00:b4:fd:74:ed:8e:86:cc:5f:d3:6e:f9:
15:d5:fa:e3:da:13:73:a6:da:92:8c:0e:fc:35:50:
02:29:b2:60:28:46:53:b1:33:cd:58:96:ba:29:72:
62:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F5:40:3C:91:54:D0:7E:BF:9F:95:01:4A:46:07:23:0B:0B:14:F5
X509v3 Authority Key Identifier:
keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
15:0c:7b:e3:05:bc:d5:51:85:89:1a:7b:4f:3a:aa:6c:14:1f:
9a:cd:da:8b:9b:44:ce:dd:f9:0a:e5:bd:c0:1d:95:b7:28:4c:
8e:7a:87:b2:c9:b1:5a:2d:43:59:1f:0d:cf:c0:20:36:cd:26:
6d:39:e0:5f:32:83:d8:43:82:5d:52:5c:85:74:4b:65:02:db:
92:42:e3:34:d4:6a:16:89:e4:57:58:66:89:9f:f6:7f:db:a6:
c0:73:2a:26:2c:f7:78:d5:83:5d:47:ed:d2:38:03:7d:a5:7b:
03:8d:b5:4b:5b:d5:f5:98:9b:db:4f:bb:13:f1:f1:d2:2f:9b:
31:8b:4d:49:a3:21:aa:ce:8d:66:a0:7f:31:d3:93:1d:3f:bd:
47:e0:08:7e:07:78:5b:bf:76:af:6e:c2:e9:f6:b1:9b:53:0a:
63:33:9e:77:31:e0:7f:9a:de:a5:6f:a5:1b:c1:4e:0f:c0:f5:
7f:9e:73:f7:f0:d4:b5:47:1f:d5:45:10:2e:71:0a:58:18:ad:
7e:14:e8:84:6a:59:9e:84:0e:a1:99:30:c4:4a:71:5f:0c:d2:
91:f4:6a:fb:45:b1:d5:45:45:bd:57:63:ab:ac:02:cd:ca:84:
f5:4a:59:f9:54:a9:f3:9d:da:0e:b8:e5:01:43:bf:02:e4:bb:
3b:b5:d2:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:12 2026 by rpki-client