
$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft
File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json)
Hash identifier: f5WMOQ+4fD4K87D17/frPc3Vhwwkxbr60aJSJ5aa47Q=
Subject key identifier: 68:58:DD:B5:86:60:37:E9:DC:1C:BC:0C:92:3D:B7:D5:3E:DB:7C:77
Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC
Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC
Certificate serial: 01B9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft
Manifest number: 01B2
Signing time: Fri 17 Jul 2026 05:01:46 +0000
Manifest this update: Fri 17 Jul 2026 05:01:45 +0000
Manifest next update: Fri 24 Jul 2026 05:01:45 +0000
Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: umQ3Ha54spj3V8YHJI6NgdU//+qlxNOkR7gtgVTjGRU=)
2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: BV9XfPuDyzg+pUATxcOqBJ05a9l83d0h3SXHTFR+g1Q=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl
rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441 (0x1b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC
Validity
Not Before: Jul 17 05:01:45 2026 GMT
Not After : Jul 24 05:01:45 2026 GMT
Subject: CN=6a59b739-4cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2c:a3:1a:d9:dc:01:04:2a:e3:cb:35:15:68:
75:eb:87:93:ba:08:b6:ce:73:d5:11:b4:85:ab:f8:
bd:9a:df:db:52:27:4e:61:fe:e4:7b:ac:8e:6c:5c:
ef:b3:45:7f:0a:27:2c:ce:ee:68:ab:f0:92:e2:0e:
cd:57:e5:1e:3d:d6:f7:73:0c:c5:61:24:f6:54:f4:
a9:bf:03:7b:b5:c3:b6:2a:d4:49:98:b9:06:cc:7d:
75:d3:a2:22:48:c3:75:c8:9a:fe:fa:d7:5b:c8:a7:
5d:b7:c4:79:f2:e6:92:6b:00:31:aa:c9:09:cb:07:
6a:f6:36:be:d9:5a:d1:99:0f:bf:dd:c4:bf:91:d4:
52:79:21:e2:1a:3a:8e:9e:5f:c9:3d:37:22:06:56:
d1:b0:df:cb:1c:35:8a:ae:7d:0c:5f:cd:0f:c6:b2:
54:a1:bc:67:da:de:99:de:9f:92:57:f7:f7:d5:4e:
0a:25:4e:69:55:c2:32:ed:96:63:88:52:0e:fe:9c:
da:99:99:24:17:aa:6e:6a:c0:44:33:12:0c:37:95:
a6:2c:16:40:56:49:eb:45:be:20:c9:e8:4f:50:95:
7e:83:88:d6:b7:2e:22:69:b3:ec:2f:68:f5:f3:b9:
5c:55:a1:fe:86:dc:45:35:99:aa:9a:ad:a2:c9:79:
34:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:58:DD:B5:86:60:37:E9:DC:1C:BC:0C:92:3D:B7:D5:3E:DB:7C:77
X509v3 Authority Key Identifier:
keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e3:c1:7b:03:3e:3f:ad:c8:2f:bd:e1:86:0f:77:a3:5c:aa:
6b:05:f9:1c:b7:d2:fb:00:0b:08:42:d0:c0:b6:37:87:85:d8:
e3:03:74:63:31:38:c2:51:a9:16:f0:ae:0b:7a:3e:31:76:df:
b7:28:31:3f:cc:52:83:3c:a3:e9:3d:74:03:33:58:6a:30:a0:
c0:12:f7:bd:3d:67:cb:cb:b2:3b:e9:61:af:ce:ac:9e:0f:eb:
49:43:74:52:6e:6c:9e:15:92:0a:4f:84:99:cc:a7:0d:fd:1e:
7c:e8:86:fc:62:a5:d7:6a:07:ff:4d:d9:09:6e:af:e0:bb:a8:
41:51:f4:b1:a4:54:70:56:fb:ea:c4:64:bd:81:69:ca:a8:ae:
92:cb:b8:3c:fe:32:86:41:a0:72:7a:3f:ae:0e:c8:0b:69:7a:
25:75:28:5e:a4:54:0d:c3:ee:df:e2:81:c3:ff:3b:2b:77:13:
92:35:48:ad:fd:cc:c2:48:88:49:e6:52:44:3a:a1:58:d5:2f:
c4:b9:71:50:08:83:ef:99:2a:c3:61:1f:2a:33:03:ce:57:1d:
b8:a3:aa:3e:ae:a6:ac:3a:ae:2e:b2:f7:8f:f8:de:28:dc:c9:
5b:79:03:c0:40:d6:4e:f9:da:95:24:b4:83:e6:80:f5:56:ad:
dd:86:af:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:35 2026 by rpki-client