
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft
File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json)
Hash identifier: jjmR2b5Mn+vholTl7ukVfhSHMWTtuClI37DB4Jsh78k=
Subject key identifier: 6F:E2:2E:43:FA:F0:D4:E6:DB:FD:5A:21:EF:A4:60:9C:91:A9:C8:7E
Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D
Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D
Certificate serial: E4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft
Manifest number: DF
Signing time: Fri 17 Jul 2026 07:49:35 +0000
Manifest this update: Fri 17 Jul 2026 07:49:34 +0000
Manifest next update: Fri 24 Jul 2026 07:49:34 +0000
Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: Jv8L0sw3SKvoUpt5EfJxN4/B0nV0ySjgHP5BRoaWw10=)
2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: vLHp4ObDO1IK1mUqYi6ciOieF4o9Rbhwa3XZX1qH6lI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl
rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228 (0xe4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D
Validity
Not Before: Jul 17 07:49:34 2026 GMT
Not After : Jul 24 07:49:34 2026 GMT
Subject: CN=6a59de8f-ee7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:53:39:3a:95:8d:9c:5f:03:dc:85:14:48:
1d:83:a6:20:a6:1b:cc:96:d8:c3:de:57:06:b2:b9:
cc:dd:0b:85:42:b1:e8:b7:f2:ac:d8:ef:a3:0e:1c:
b2:8e:61:ac:f2:bf:92:c5:a6:05:d8:00:8e:83:77:
6f:e4:c5:1f:90:a1:a5:33:0f:df:bd:68:f1:a3:49:
41:e6:9f:3e:31:45:cb:e5:4a:99:8a:c7:13:b6:ca:
23:28:31:b7:2b:f1:c0:0c:ad:2e:e7:a7:bd:6f:d3:
38:a8:9f:6e:bc:d9:da:25:ac:9c:59:46:0e:33:b0:
86:86:a0:a0:3f:c4:d2:0f:82:62:4f:03:cb:76:a9:
19:5e:97:6f:f7:a5:7e:5a:d9:8c:8a:e1:e1:ed:8c:
b7:39:f3:29:ba:24:e7:d9:81:1f:e9:9d:21:bf:05:
1e:8a:c7:ae:58:71:3e:25:e7:4f:02:53:63:ba:d4:
d2:fb:37:6e:6e:47:23:cc:88:9c:af:7c:96:66:08:
67:9a:2d:3b:eb:13:44:6d:c7:69:4b:e8:ce:1a:d7:
58:e0:88:62:e9:01:74:a6:27:82:9b:94:24:3b:09:
62:a6:c7:14:80:eb:37:74:a9:b2:ed:d1:de:5d:41:
6f:e5:b1:b0:f8:a6:cc:53:3c:a9:53:6a:68:5b:4f:
eb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E2:2E:43:FA:F0:D4:E6:DB:FD:5A:21:EF:A4:60:9C:91:A9:C8:7E
X509v3 Authority Key Identifier:
keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ce:02:71:48:70:19:a0:3b:7d:70:2f:4b:7e:18:5c:47:7a:
a3:53:43:35:60:f1:81:72:00:0a:6a:b3:7f:95:18:5d:b2:7e:
ed:3d:6a:3e:e6:f2:50:b8:6d:8a:72:59:74:40:77:7d:1b:c2:
7f:5c:d7:5a:1a:ba:04:cc:59:e5:6a:1f:ac:f9:e7:f1:c0:dc:
68:33:7b:b2:cf:9f:17:a0:4b:1a:7c:84:e1:47:5e:87:12:25:
17:9f:45:42:6f:ce:fb:cc:36:ca:ba:fc:f7:44:10:29:cf:bd:
66:3f:3f:2b:26:3c:58:c1:f0:32:2d:5c:e9:c4:96:23:03:b4:
0b:4a:2f:3a:69:f7:0c:88:2a:23:29:1c:f4:36:02:e0:58:33:
1a:d3:ff:59:b2:5d:f2:d1:8e:06:e4:33:a8:5b:f4:43:73:6b:
8b:e8:a8:02:1d:1f:3e:cb:d8:cf:b4:a7:02:5a:64:24:46:4c:
f1:d0:cf:4a:1c:c5:2a:3b:0c:10:fa:43:a4:d5:85:74:f8:94:
55:17:85:b0:95:17:9c:2b:33:db:65:aa:48:72:06:33:9a:0e:
5a:f4:9a:a0:0f:2c:fc:d1:c4:eb:ff:10:60:87:50:78:ff:04:
f5:08:d8:6c:3c:02:cf:1b:65:04:42:46:75:a1:cf:ea:26:26:
0e:51:97:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:31:05 2026 by rpki-client