
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json)
Hash identifier: moJ7x7xnfEdqHBtqQUuu5ilcOqCFHJVc0vi0vBKxTsc=
Subject key identifier: 60:D8:2C:07:16:97:5E:0F:17:39:CE:CA:23:7F:21:68:2A:F7:6E:ED
Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C
Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C
Certificate serial: 01B2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
Manifest number: 01AC
Signing time: Fri 17 Jul 2026 05:03:57 +0000
Manifest this update: Fri 17 Jul 2026 05:03:56 +0000
Manifest next update: Fri 24 Jul 2026 05:03:56 +0000
Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: Nz4YPElhKZTgXaMacKRsi14/TofM4RlkCPGFkbFS09k=)
2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: LehxYUyNY+Aih3/gKb031XwxWefiznlK8xHHelOl+ms=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl
rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434 (0x1b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C
Validity
Not Before: Jul 17 05:03:56 2026 GMT
Not After : Jul 24 05:03:56 2026 GMT
Subject: CN=6a59b7bc-5ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:da:56:bf:58:49:9b:ab:21:4d:8a:e0:66:a8:
2b:36:49:7f:52:97:45:1a:c3:86:38:d3:46:24:a4:
81:10:26:96:21:44:ae:95:ff:9d:77:9b:01:ce:c6:
d7:f3:ed:52:54:64:6e:d8:38:a3:b5:56:03:82:f6:
3d:e7:35:b3:4b:d3:ab:a3:4f:0e:63:ee:9f:8a:eb:
ee:9f:01:09:22:b2:b3:27:c5:d9:d4:45:a6:6c:7e:
32:b3:f1:47:e0:42:27:13:d0:8a:d6:c1:df:da:2f:
dd:f8:af:29:6c:09:aa:01:88:bd:a6:03:e0:74:4c:
7d:87:02:3a:e4:b2:81:83:ec:85:ab:39:88:e2:cd:
dc:02:a1:8d:a8:e5:85:12:ff:60:86:de:a2:de:79:
96:97:09:50:91:20:24:fe:85:cb:1f:96:51:f4:cd:
e0:8c:85:b7:2c:ff:06:36:78:77:c6:46:bb:41:fc:
99:fc:ea:d5:e0:7b:46:77:fb:62:36:a1:ad:63:ba:
ea:6b:3c:bd:b8:b1:40:77:e8:bc:05:5e:91:ad:05:
c4:6f:8c:a9:f0:73:12:1e:a3:f3:6f:48:ff:a9:21:
2f:8d:29:96:46:ca:10:f6:1d:3c:55:ad:3a:d9:bb:
6c:43:53:d2:87:06:59:df:be:d8:96:2a:f8:cf:06:
81:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D8:2C:07:16:97:5E:0F:17:39:CE:CA:23:7F:21:68:2A:F7:6E:ED
X509v3 Authority Key Identifier:
keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ff:b4:43:d3:cd:76:ba:c6:fa:85:79:ae:50:4b:a8:3c:21:
55:fb:7a:64:42:a4:47:da:fc:89:28:7b:d5:4d:13:c6:d6:18:
61:3b:01:d5:fa:82:19:56:50:af:80:ca:71:87:40:a1:f7:f4:
96:27:48:df:40:97:05:51:52:a4:41:7a:8c:41:64:53:5e:f8:
83:67:ee:0b:25:c9:99:47:c9:b1:b4:b1:46:82:3e:f7:67:9b:
8b:90:9a:76:8d:2d:e8:64:58:89:d3:c2:d9:4c:ba:a6:a7:8d:
19:7c:93:7b:58:0b:02:7d:db:93:dc:fa:3d:d9:f5:51:bd:e6:
a3:46:5f:a5:24:0a:99:98:46:96:1a:0d:e2:94:0f:dc:c7:f0:
58:cb:bd:24:81:fb:18:9a:e4:15:15:89:3d:f9:e0:83:71:0b:
62:e2:a2:96:2e:17:76:dd:72:18:85:6a:2e:e6:43:e6:a5:48:
c4:ee:44:f2:cc:3f:47:28:25:04:79:f0:c6:9c:4c:32:7c:85:
5f:e8:55:65:ec:cf:fc:ff:12:dc:1e:3a:85:ae:fe:77:9a:5d:
08:d5:5f:ce:e3:da:32:1b:d1:48:5b:cb:03:04:b2:35:fb:b1:
69:a3:f5:80:c6:72:c6:36:13:7a:1a:81:a5:d7:3b:ec:d6:45:
77:68:e5:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:16 2026 by rpki-client