
$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft
File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json)
Hash identifier: ZiGmxxgfZUfppBRkTFd0vwOhV2z4I2FH/fvIT93ajQI=
Subject key identifier: 7B:84:33:75:B7:F4:F4:E5:99:39:24:BD:0A:F6:23:61:31:63:26:77
Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30
Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30
Certificate serial: 0DD4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft
Manifest number: 0DC1
Signing time: Thu 16 Jul 2026 18:00:41 +0000
Manifest this update: Thu 16 Jul 2026 18:00:40 +0000
Manifest next update: Thu 23 Jul 2026 18:00:40 +0000
Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: PLUkvq0yjs7a+SssjEGnPH2OxMzyocxBWWXutasxY8c=)
2: 438F11F056C311F181F3CD32B6833773.roa (hash: ipV2FPo48aaHQLjChLTatHTjs91KM+IvS8Hg8Z/VJsM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl
rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3540 (0xdd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30
Validity
Not Before: Jul 16 18:00:40 2026 GMT
Not After : Jul 23 18:00:40 2026 GMT
Subject: CN=6a591c49-4f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a3:91:77:c3:e7:b5:48:18:76:8d:28:c3:7e:
b4:16:b1:e1:2e:2f:5a:ce:32:c4:d0:e8:ae:44:ba:
46:75:d7:80:29:06:ad:83:db:f1:69:90:23:37:a2:
da:d2:74:25:5c:5c:c2:1b:dd:dd:5c:2a:79:1c:f3:
ca:2a:68:4c:c6:3f:6d:78:85:68:d2:66:1c:b8:f5:
20:5c:1e:e8:64:66:96:8d:b8:0a:f5:c4:7c:3b:58:
3b:bb:e8:02:57:23:75:e4:8d:dc:69:4b:b9:b3:c4:
f5:70:0e:ce:25:ae:87:3b:3d:4e:b3:6f:04:c8:3b:
41:88:7d:c0:13:c8:6c:52:f9:f8:49:a3:53:08:01:
10:d7:4d:ca:a7:56:46:c0:5e:b4:53:4f:e1:b4:4c:
ce:b4:db:30:5a:44:5f:ef:3a:63:5d:a1:6d:2c:3a:
b2:3c:1b:d2:14:a0:4e:fa:f4:ef:4f:85:2c:54:3e:
d4:45:0f:37:85:3f:bf:c8:41:fe:97:11:ff:72:89:
f9:e4:36:c6:31:35:d0:77:ff:fd:a9:75:c8:eb:46:
54:2e:5d:9c:40:35:20:64:83:0b:56:fa:f0:36:26:
e4:37:03:02:c2:89:60:3a:f2:f1:4b:9a:c7:70:5e:
36:e3:a7:9f:dd:0f:0a:3f:ee:c0:32:6d:29:63:aa:
7a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:84:33:75:B7:F4:F4:E5:99:39:24:BD:0A:F6:23:61:31:63:26:77
X509v3 Authority Key Identifier:
keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
98:a6:ba:22:1b:a3:3d:47:09:e8:0b:0f:85:06:67:af:8d:3a:
f4:97:89:21:14:d4:9c:bd:3c:8d:23:36:a2:80:3e:55:92:2f:
8c:15:5e:89:2c:6f:ef:a6:f9:c4:14:8b:60:d0:42:aa:20:28:
00:6d:ef:d4:58:57:67:4d:66:b7:d2:41:50:51:d0:18:2f:63:
e1:18:e1:5c:91:29:e0:a4:cc:ec:9e:96:9c:d6:95:2a:48:6b:
17:de:d6:80:45:2c:20:fc:22:fc:b2:1f:df:06:38:8b:0a:09:
db:d6:fa:9e:79:d8:0e:76:03:0d:7b:c9:10:14:e3:1c:fb:4f:
1d:da:b2:11:21:5f:77:4c:05:b7:1e:b0:55:58:ec:97:b2:8f:
a1:51:76:c3:2f:ac:5f:14:ff:a0:1f:30:b2:55:e7:4a:28:c2:
a8:69:ba:d1:ea:74:14:f9:85:94:5c:cc:14:07:da:d3:9b:8f:
68:55:b6:d3:6d:6d:d3:2f:1e:bd:c7:3f:d4:e8:57:d1:a3:ce:
57:2a:c7:18:69:cb:cc:ed:b3:8e:d3:87:02:5e:a6:8d:fc:de:
6b:ba:77:e5:be:6e:fb:86:27:c2:4d:a4:5f:82:95:9e:2d:a5:
92:ed:95:49:a3:01:fb:d1:05:03:8b:34:d0:c6:f4:1a:6f:ec:
88:0c:23:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:08:35 2026 by rpki-client