
$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft
File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json)
Hash identifier: OKRAArgvmm41JSLafPB10nEhRjBvmlAjXwE3OZpwmmY=
Subject key identifier: FF:E7:59:72:A0:F6:C9:ED:EE:92:C8:13:53:AF:25:E0:FA:56:CF:50
Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B
Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B
Certificate serial: 0385
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft
Manifest number: 0378
Signing time: Fri 17 Jul 2026 01:27:48 +0000
Manifest this update: Fri 17 Jul 2026 01:27:48 +0000
Manifest next update: Fri 24 Jul 2026 01:27:48 +0000
Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: mBC0xDDutu0MzBQukUMV7mV7Knwt6mDn6dN/lmoRRm8=)
2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: EaaSXzGz05+ts4EkpTMhP55oUChU6Bk9DAG9srhRaSc=)
3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: 8dpXRXimhjXqFq8UENKdvQMz2YmohstnkMIHLOtJCy4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl
rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:27:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901 (0x385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B
Validity
Not Before: Jul 17 01:27:48 2026 GMT
Not After : Jul 24 01:27:48 2026 GMT
Subject: CN=6a598514-7064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6b:f3:e0:01:88:9f:cf:15:ce:ec:ce:e6:34:
e2:28:5e:d1:f0:0d:a1:ff:76:2e:7b:28:0e:47:61:
15:39:07:22:1f:7b:98:29:5e:48:64:fa:a5:e3:2f:
e5:d3:8f:ad:21:0b:16:48:ff:40:7d:95:1a:8d:42:
e6:58:c7:45:25:0d:58:70:dc:35:91:a6:51:6f:3f:
9c:58:52:1c:6d:b6:34:21:e3:f3:3d:08:59:a9:b8:
b8:87:1b:56:c4:d7:94:f3:14:13:47:33:28:de:39:
83:cb:62:a8:1a:76:74:4b:6c:20:03:51:5f:f0:ff:
5e:10:76:31:27:83:50:bb:99:30:ab:f1:d8:32:fe:
d0:3c:b2:ad:65:f6:db:5b:d1:4a:87:a2:da:aa:9e:
80:2e:19:2b:4e:ef:97:f8:49:cb:5a:28:20:22:69:
08:d5:4f:35:db:70:32:31:42:10:84:b8:f3:90:86:
76:35:6c:fb:64:f5:89:80:2f:d3:0e:5c:dd:ea:54:
b7:e2:9a:52:6e:34:5f:d5:34:68:3d:7b:17:86:39:
a6:72:f2:ce:18:09:48:f6:66:35:55:b9:22:05:d3:
57:42:9b:09:56:0b:00:26:26:ff:22:ed:8a:1c:3b:
22:12:a6:c1:f1:2b:6f:99:a8:95:70:56:8a:1e:4b:
6b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E7:59:72:A0:F6:C9:ED:EE:92:C8:13:53:AF:25:E0:FA:56:CF:50
X509v3 Authority Key Identifier:
keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
aa:15:3a:91:49:c7:db:93:d8:01:5e:60:93:66:53:38:29:70:
46:21:78:c3:eb:5e:34:0e:0f:5d:7e:ce:7d:76:7a:56:b6:a9:
a8:9f:bb:0b:00:14:09:42:96:67:25:d7:73:08:4e:f9:dd:20:
e1:cf:02:57:1c:b9:8a:c4:d4:71:85:f9:94:86:8b:bf:4d:08:
37:f8:a7:09:dc:f9:fc:d7:3c:a2:4b:f3:59:0b:9c:5a:6f:d6:
1d:1a:2a:59:f3:3f:8f:f3:f9:7c:5e:1f:bc:38:01:0f:4f:93:
60:ba:d1:6f:50:5c:84:2e:ff:0d:b3:66:36:c2:59:88:58:d6:
42:0b:0f:83:d1:44:d4:f1:8b:ae:5b:5e:c6:ca:00:1c:2a:f9:
42:1c:09:cd:7b:48:d1:a6:f5:02:0d:2e:b7:a4:39:77:73:ef:
0c:6a:bc:05:1e:58:1d:86:ab:79:68:03:71:e4:08:02:77:56:
ba:6c:2b:18:61:71:cb:58:8d:1f:f3:f1:e8:f0:e1:6e:95:5b:
10:08:6c:ca:b2:d7:e9:d2:b9:ba:4d:c8:fc:c1:bb:19:05:34:
06:78:df:00:12:33:18:18:df:38:ca:16:f4:1e:d7:7d:66:1d:
94:58:00:d2:ca:9c:43:87:03:e8:b1:5f:e0:00:05:58:e4:1d:
ce:61:d3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:49 2026 by rpki-client