
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft
File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json)
Hash identifier: pTBDY2F1x/9dkrY8OdEGmiTdJNSowRk4VzeFMC6XCUQ=
Subject key identifier: 02:8D:4A:B3:56:7E:B9:BD:2D:7C:17:58:BD:5E:FF:C1:68:56:E7:64
Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86
Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86
Certificate serial: 01E2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft
Manifest number: 01CB
Signing time: Fri 17 Jul 2026 05:00:48 +0000
Manifest this update: Fri 17 Jul 2026 05:00:47 +0000
Manifest next update: Fri 24 Jul 2026 05:00:47 +0000
Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: 5uovw5c7b2Ear1WNffpMwzFRSX7nbiReAOwqYrLN2Gc=)
2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: 3ACPZlFXJEBS0DfhOh+fI+mz2WtH3cLyLDO6b8JhniE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl
rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 482 (0x1e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86
Validity
Not Before: Jul 17 05:00:47 2026 GMT
Not After : Jul 24 05:00:47 2026 GMT
Subject: CN=6a59b700-281d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:58:59:85:1a:94:3c:0d:3a:e2:28:5d:d9:34:
78:1c:54:e6:09:fe:cd:bb:00:b0:6b:b8:b4:76:f9:
56:02:25:f2:25:95:9c:c5:4e:ee:ec:b7:61:35:32:
c4:19:d8:f6:db:e2:3f:9c:0b:c2:ab:43:56:34:e0:
e5:48:08:38:3c:81:c1:74:14:4c:da:ab:3a:b2:2d:
3d:10:d8:d8:c1:be:16:ae:16:46:98:2c:06:0b:52:
b8:53:26:fc:1c:68:c7:d5:91:84:62:63:11:31:22:
cd:e3:6c:0a:16:7d:97:31:4f:ac:f2:08:af:79:67:
60:4d:f2:cc:3e:99:2c:f5:d4:f8:ee:a4:25:73:f6:
cb:b1:3f:af:80:fe:fd:4a:7d:0b:27:e0:a2:63:b6:
f0:70:9d:3b:11:71:b6:f9:3b:d1:92:15:f2:0e:79:
79:72:ed:60:f1:ea:82:b7:79:63:9f:f3:a2:84:4d:
b8:27:6b:b1:4e:e9:3b:22:b0:1e:60:55:3c:9b:81:
db:34:cd:4e:1f:18:62:29:9d:45:71:96:9a:2b:1b:
a6:83:5d:d7:be:03:d8:ba:8c:9f:60:e3:bb:6b:1f:
de:2e:19:fe:c0:99:06:e8:a8:dd:30:b9:90:2a:f8:
a8:2d:39:60:f5:76:58:57:a6:9c:7b:9f:21:99:78:
8a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8D:4A:B3:56:7E:B9:BD:2D:7C:17:58:BD:5E:FF:C1:68:56:E7:64
X509v3 Authority Key Identifier:
keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a0:3a:a3:11:10:fd:45:bc:36:73:e0:eb:01:d6:6d:d3:c1:d3:
8f:14:bc:9c:93:29:30:92:68:d2:ba:52:fa:2c:89:a0:f5:ae:
05:61:b2:3b:2c:34:81:d9:ff:a0:1f:a3:90:d5:8c:45:06:87:
5c:1f:df:06:d1:fb:9a:5e:ce:e3:90:a3:47:6d:31:d8:d3:5d:
d6:4c:c7:b0:ea:b5:13:33:a0:4e:1d:db:c7:bc:cb:42:58:46:
d1:ef:17:3e:a7:be:82:26:a5:c0:02:09:0d:b4:8d:74:7e:a5:
04:38:36:ca:2a:49:88:bc:f5:03:38:ab:79:57:f9:63:13:e8:
cf:67:18:26:5f:23:c6:9a:f3:95:17:59:c8:db:75:ce:f3:f3:
c1:5a:5b:ac:55:53:e2:3f:ce:5c:c6:46:45:96:f0:8f:c6:fa:
b7:86:8f:f5:da:cf:51:72:b6:8c:17:45:3c:eb:4f:5f:73:13:
b2:b4:77:b7:ed:cf:50:d9:78:c4:eb:9e:4e:8b:7f:d8:32:ee:
ba:a8:b8:9c:ab:2e:ba:33:4f:6f:77:9f:33:d6:cc:6d:9a:16:
65:f2:4d:93:fc:63:63:a2:6c:aa:77:ab:1a:56:9a:dd:df:f1:
c9:5b:63:0c:d2:cd:67:d8:ac:91:e4:50:4f:14:ce:fd:17:7e:
88:ed:bc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:23 2026 by rpki-client