
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft
File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json)
Hash identifier: rap3a4nckothzVQsTynudJTPPHLfi9KSvsCVWmuK7cs=
Subject key identifier: 1F:6E:D3:FC:65:16:AD:60:D5:C9:88:C2:E1:1D:35:FF:32:B4:07:B2
Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A
Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A
Certificate serial: 01F7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft
Manifest number: 01ED
Signing time: Fri 17 Jul 2026 04:20:22 +0000
Manifest this update: Fri 17 Jul 2026 04:20:22 +0000
Manifest next update: Fri 24 Jul 2026 04:20:22 +0000
Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: eV0NW/PcsaZMZ0p2d4gwplIZRljHyKUbrZAZB37y98E=)
2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: 8EuCC6GeDURLjyKUH1rweshuZkTUvieZrlzCd35Hwu8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl
rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:20:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 503 (0x1f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A
Validity
Not Before: Jul 17 04:20:22 2026 GMT
Not After : Jul 24 04:20:22 2026 GMT
Subject: CN=6a59ad86-9f64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ff:ae:77:36:49:63:6e:03:56:b5:a9:fd:5e:
0f:24:93:b3:be:37:12:44:7c:c8:26:b3:ba:9a:2b:
dd:0b:12:c5:1d:91:c0:27:97:5a:b8:f3:da:64:1f:
b2:27:ff:0d:f1:2c:4c:93:6d:9e:b7:ca:80:30:2e:
22:16:05:ea:df:ba:69:62:6d:d1:77:b0:ca:39:2f:
5c:dd:84:4f:be:83:5b:75:58:20:1e:65:31:92:c4:
6d:58:10:fc:f7:e1:65:9a:6b:99:d3:2f:6c:69:14:
20:28:0a:cf:51:b9:b7:26:4c:98:5c:7c:00:cd:be:
74:77:ff:83:0c:f1:82:f4:82:02:bc:89:0a:92:40:
40:7c:cc:c0:0d:23:02:10:d9:01:dd:53:88:1b:0a:
a7:9b:c6:b4:74:d6:c6:e8:53:59:f2:0d:94:7e:15:
4c:a0:d1:27:14:ee:74:d2:9d:b7:4c:a2:a8:a2:ce:
61:bc:f3:78:8c:6c:c2:82:08:51:0c:b8:f7:80:2f:
8a:62:63:e4:49:77:da:13:d3:ed:26:fb:76:60:4b:
a0:bc:54:b1:f2:1a:88:45:1d:3d:01:ff:c4:4c:2b:
74:f1:db:ec:1b:27:5d:dc:cb:b9:47:24:75:23:b8:
af:17:68:dc:68:91:10:7a:c8:a5:93:6a:b0:81:4b:
cc:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6E:D3:FC:65:16:AD:60:D5:C9:88:C2:E1:1D:35:FF:32:B4:07:B2
X509v3 Authority Key Identifier:
keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9a:42:2c:c7:22:3c:b2:c7:7e:5b:f1:20:2f:62:26:cf:66:78:
a6:07:e3:dd:50:c2:5b:84:b1:23:63:46:66:a4:de:80:7a:fe:
24:55:f5:29:6c:5a:17:32:d9:d0:97:3e:ef:01:b0:06:06:0f:
cc:a7:98:60:25:86:b8:e2:18:a9:4f:a5:46:51:f9:12:17:08:
7e:a1:49:99:03:eb:db:b9:a2:a1:4a:a1:12:32:5e:05:42:13:
fb:43:7d:dd:c6:64:c8:e9:e8:c1:d9:10:f4:66:9d:db:26:93:
b5:72:1f:5a:4f:c9:3e:a0:7b:a7:fd:00:c2:04:26:44:e4:21:
07:78:4e:70:c8:a4:47:f7:b6:c3:3e:28:d3:87:55:5a:5e:c9:
d0:a0:52:2d:15:2d:d2:6f:03:af:bb:fb:5a:b5:7e:5f:7f:90:
8d:ea:8b:ab:6e:0d:c2:31:7c:76:c6:b5:3a:1c:99:77:4c:57:
10:23:74:69:30:fc:45:31:e0:8d:5d:59:9e:b3:00:cb:ca:eb:
c9:a2:c2:22:5f:fb:bb:45:16:ee:7a:27:26:94:e9:49:50:5d:
73:98:3f:3e:97:08:2d:09:bd:f4:ec:c3:4c:0a:a1:5c:32:dd:
5f:1e:de:9d:f3:73:66:df:35:90:b7:7d:86:ba:44:71:4f:52:
6f:4d:4d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:55 2026 by rpki-client