
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
File: HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json)
Hash identifier: 1+uUvTnO8NAHy1C8nkiI6CS+veyKwYeTo1hf7nh9hV8=
Subject key identifier: 0B:93:DE:18:A1:C9:E9:7C:97:91:6D:EF:FE:E7:8A:9F:30:F7:E7:3C
Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10
Certificate issuer: /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10
Certificate serial: 166B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
Manifest number: 1607
Signing time: Thu 16 Jul 2026 16:51:32 +0000
Manifest this update: Thu 16 Jul 2026 16:51:32 +0000
Manifest next update: Thu 23 Jul 2026 16:51:32 +0000
Files and hashes: 1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: ePc7gUuTfluun2F/Ft529x2Xj2R82K9prLULwdFhfEg=)
2: 0BFFC86E3FC211F18966A53AC7833773.roa (hash: W+YOe6hixH3mn1KveOHweplDujCY7TsXxGCoVqjHzBw=)
3: C9203DF43D5E11F19F1D0B4EAB833773.roa (hash: XDwfROgd1ZtjfdIwOFfoGM4YTt8Y2gmNeYFWy0g2/3I=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl
rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 16:51:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5739 (0x166b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10
Validity
Not Before: Jul 16 16:51:32 2026 GMT
Not After : Jul 23 16:51:32 2026 GMT
Subject: CN=6a590c14-1e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7d:8d:15:1b:49:37:bc:ad:83:42:15:db:98:
28:c3:76:47:23:29:3b:28:21:d8:ee:96:60:c5:de:
da:da:2d:95:cf:e3:42:1c:80:98:23:60:1d:7e:0b:
30:d7:4d:b7:34:05:84:57:1b:fe:b3:70:1f:88:fc:
9f:88:92:5f:70:88:9b:49:71:8b:c1:d9:a0:f4:55:
a3:81:fa:f1:07:d3:7c:25:cf:95:f8:b4:2f:78:8a:
49:74:4d:35:88:1b:a7:bb:f4:33:5c:9c:2c:a6:b6:
f9:c3:20:03:b3:3f:52:f8:6f:80:a4:e2:fa:ec:df:
a8:64:a2:f2:9c:c5:bf:38:86:56:7c:d1:98:ca:6f:
04:12:69:d8:0a:3b:9a:f8:3d:b7:4e:34:dc:92:25:
33:dd:41:c3:62:c2:9e:ed:4e:90:5f:ee:52:ef:cd:
d6:13:bb:af:64:b4:ba:b1:85:6c:d7:59:e1:36:a3:
99:24:de:3c:9c:06:59:5f:d2:a0:ad:d1:ff:d0:43:
b7:c6:ee:42:9a:7a:29:00:dd:8f:8d:7e:34:fa:af:
cc:2e:92:d4:f8:50:fe:b6:a3:0f:bb:9c:69:0a:0a:
dd:ee:57:0e:bb:57:f0:aa:96:34:9c:8a:7b:11:79:
1f:30:8f:fe:b2:ab:b0:2d:eb:04:7a:c2:01:34:65:
ad:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:93:DE:18:A1:C9:E9:7C:97:91:6D:EF:FE:E7:8A:9F:30:F7:E7:3C
X509v3 Authority Key Identifier:
keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
26:24:2d:e2:7d:02:37:61:24:33:3f:21:da:8f:cf:32:af:c9:
f0:c0:c8:8f:4d:f0:3c:6d:0a:1c:c4:d6:fc:cb:2e:88:41:1e:
a0:92:2e:5d:ab:7f:d3:aa:e3:18:fb:71:ea:0c:09:48:8e:99:
26:c2:e1:20:9f:16:9c:5d:c7:50:42:3c:0a:cf:fd:26:e8:2c:
c3:7b:ce:6b:5a:68:1a:2a:8c:7b:91:ef:47:0f:28:c3:e9:97:
4f:85:56:88:a2:9f:8f:d0:32:52:da:99:39:a5:47:70:cd:d3:
60:78:bb:fe:22:72:b9:66:c3:d3:7f:d9:d4:6a:bd:df:2c:47:
e8:11:a1:06:fa:58:b5:73:9d:51:69:60:07:74:1b:2f:59:7c:
88:34:d1:5a:03:2e:d2:ac:c2:77:57:f0:51:1b:4c:02:cc:73:
e5:dd:d3:d7:c6:4c:5f:4e:7b:5e:2c:87:7b:f4:4b:82:74:2b:
03:e0:af:d0:2a:2c:06:42:ed:e5:12:c2:c3:82:1a:94:4f:16:
12:a0:27:07:03:ed:6b:af:ff:17:4c:01:d4:f4:e2:43:b5:4f:
f2:61:51:32:be:ee:c7:0e:eb:9f:cc:c6:e4:b4:2b:f5:91:49:
89:17:cf:1c:fb:d4:32:fc:fb:d4:6e:50:23:61:e3:e0:3a:9d:
b7:f9:69:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:32:06 2026 by rpki-client