
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft
File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json)
Hash identifier: G++aJ8Rfjb0sh7CGHmB2rzcgLNu/70QSPVEGv3Mq9H4=
Subject key identifier: 5F:3B:09:74:A5:38:CC:C2:9A:33:BF:DB:F2:47:D7:BD:97:11:7D:8F
Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E
Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E
Certificate serial: 21E9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft
Manifest number: 21E3
Signing time: Fri 17 Jul 2026 02:22:43 +0000
Manifest this update: Fri 17 Jul 2026 02:22:42 +0000
Manifest next update: Fri 24 Jul 2026 02:22:42 +0000
Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: vApjwFWQ9OKOYbNu71xNpmwnqVCmDdenxK+nUmsayyg=)
2: 3607DBA8687E11F1B56F8D616747A888.roa (hash: zL4zDloihLFJAeXwMisqwiVFzpDm6I0zmYaKMYHXRs4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl
rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8681 (0x21e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E
Validity
Not Before: Jul 17 02:22:42 2026 GMT
Not After : Jul 24 02:22:42 2026 GMT
Subject: CN=6a5991f3-9d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b9:85:62:2b:15:5a:f9:52:f6:ac:83:0b:d8:
65:26:9e:c9:97:2c:f4:a1:3d:30:1b:93:3a:65:d5:
06:f0:f9:ea:1c:aa:8f:58:c1:46:0e:31:a1:d7:e1:
73:b9:31:2f:39:22:a3:16:39:89:61:2f:f1:3f:0a:
94:1b:44:8c:27:50:dc:eb:a0:cb:1c:5b:03:41:a4:
51:34:98:be:22:79:c5:06:1e:60:14:ef:e8:b1:0b:
e1:db:94:fc:1f:3b:b5:22:31:bf:5d:4f:86:b1:0d:
46:01:c0:26:76:4b:75:78:7e:05:4e:95:33:cc:4d:
1a:a4:0c:a5:d9:c5:26:b5:4c:42:d4:d1:b0:6d:df:
19:c4:69:af:fc:97:8d:bc:93:04:31:cd:8e:83:ae:
d7:fe:8c:fe:26:3b:c6:86:20:b1:f0:49:8e:88:e5:
0e:bc:66:73:36:27:db:96:60:69:e7:59:89:9a:0e:
48:df:95:00:e5:63:6c:a6:17:4c:c7:4a:d9:69:cf:
12:ae:0b:79:f8:4b:95:f9:ec:3f:68:d0:6e:c3:e8:
5c:80:01:b1:60:fb:e8:72:0a:65:aa:f1:37:77:ca:
d0:86:da:22:d2:47:0b:a7:96:8d:c5:74:9f:3e:90:
c3:6f:2d:28:2a:80:98:3e:8e:80:a8:36:a5:ff:ce:
5e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3B:09:74:A5:38:CC:C2:9A:33:BF:DB:F2:47:D7:BD:97:11:7D:8F
X509v3 Authority Key Identifier:
keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
19:28:88:6b:39:49:3e:b6:24:47:6c:e7:d0:e6:ad:43:67:56:
70:24:9e:80:50:87:fa:ec:fb:c7:9a:e7:bd:09:a4:14:11:03:
9a:68:38:dd:c4:69:87:f7:16:9d:7e:99:64:67:d3:3a:33:d0:
7b:c0:b6:93:fc:b8:aa:20:f7:77:04:00:99:ba:1e:e2:59:70:
3e:e8:5e:61:81:de:ee:f7:17:95:43:e3:6c:a8:5a:27:bb:0c:
d7:37:ec:fd:50:dc:81:86:8e:9b:6a:01:d2:43:5d:f5:15:ca:
93:b7:6a:ce:0c:fb:be:d7:7d:4b:78:97:b7:4f:57:4a:78:9c:
4d:78:1c:5e:28:6d:bd:0c:68:b4:39:1f:e2:5d:2a:ba:06:72:
9d:f8:39:c7:7b:2a:bc:a0:2b:cd:33:b6:eb:5b:1d:7d:23:18:
bf:66:37:70:c0:1d:6a:fd:31:33:d0:bc:97:b9:bf:d8:4c:63:
37:0b:cb:2c:72:55:dd:a3:bc:dc:b4:5e:47:4a:42:17:18:84:
bb:be:6b:0e:bc:97:fe:1b:6b:15:df:1c:98:fc:2b:73:48:72:
39:93:30:4d:1d:2b:58:c5:17:1d:f8:df:32:fa:3e:bb:a8:0b:
64:07:10:f7:60:9d:94:06:44:eb:8f:5e:19:8c:93:c3:17:11:
a4:b1:70:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:08:19 2026 by rpki-client