
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
File: ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft (raw, json)
Hash identifier: bgI6pO90+WboqMrwclqpzQNPu6Szx7hyYmEasyuVO4w=
Subject key identifier: 97:70:52:E7:A0:5E:9B:9D:72:10:83:AA:82:C0:56:06:98:9F:2B:02
Authority key identifier: A2:E2:DF:85:05:FE:2F:2A:8A:CD:D6:DD:F1:C5:61:EF:F7:DD:9E:E2
Certificate issuer: /CN=A9196AF7/serialNumber=A2E2DF8505FE2F2A8ACDD6DDF1C561EFF7DD9EE2
Certificate serial: 39
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
Manifest number: 38
Signing time: Tue 07 Jul 2026 09:50:59 +0000
Manifest this update: Tue 07 Jul 2026 09:50:58 +0000
Manifest next update: Tue 14 Jul 2026 09:50:58 +0000
Files and hashes: 1: ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl (hash: I6az9ZEEtNk4+eZAL1LYvVpdtPS2A4vjyeGjRkz7VeU=)
2: 7EF6CB6E24CF11F1AAA533A9A9833773.roa (hash: 8y7L9hPSTuk1LDFXpb7ShDJmE7OnOp5HbjTXee/kCzg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl
rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 09:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9196AF7, serialNumber=A2E2DF8505FE2F2A8ACDD6DDF1C561EFF7DD9EE2
Validity
Not Before: Jul 7 09:50:58 2026 GMT
Not After : Jul 14 09:50:58 2026 GMT
Subject: CN=6a4ccc03-dc10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:dd:3a:5e:9f:02:b0:ed:9d:d4:04:27:19:
87:5a:0c:e9:ba:1c:10:b1:5b:a0:01:1e:d1:0c:22:
47:62:d4:2b:5c:0a:9c:38:40:e8:ef:0c:56:b1:3a:
d7:dc:b2:33:cf:a3:7d:14:5b:56:0c:56:76:55:9b:
c5:a5:07:42:f0:36:8d:95:ca:f2:a0:f3:c5:32:01:
49:ce:95:15:2b:98:9a:a7:b3:c8:72:79:0e:20:f1:
0c:f4:a5:ce:40:63:e3:41:45:8d:32:0f:69:b5:0b:
f1:af:3c:3c:21:3c:94:c2:40:cf:b2:7b:39:0e:9b:
ff:ce:18:7c:b7:af:fe:79:f3:e2:c8:dc:f4:12:1d:
1f:d0:c4:09:8a:76:76:ab:1d:d5:7c:c1:49:84:52:
f2:4d:f6:18:2b:a8:a4:e0:ed:68:39:58:1c:d2:15:
c1:89:2e:1d:a1:44:e3:ca:58:a4:48:b0:58:2a:e5:
b2:37:a4:e7:1f:4d:93:61:f5:0e:e6:68:dd:73:01:
ef:c7:8b:45:c0:14:55:40:96:b3:37:24:b5:05:8b:
df:51:8c:5a:41:f7:97:f6:4e:17:0e:99:3d:6b:71:
c6:fd:09:39:c7:9a:9c:11:05:72:6a:f5:68:43:de:
7f:30:57:d1:1e:c1:4c:11:79:dc:d8:ed:cc:eb:49:
33:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:70:52:E7:A0:5E:9B:9D:72:10:83:AA:82:C0:56:06:98:9F:2B:02
X509v3 Authority Key Identifier:
keyid:A2:E2:DF:85:05:FE:2F:2A:8A:CD:D6:DD:F1:C5:61:EF:F7:DD:9E:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a0:43:83:21:3f:4c:b9:e7:c3:90:df:cb:45:1b:a1:75:97:b3:
02:ba:9e:a9:dc:5f:7d:97:75:f9:98:bd:be:63:91:68:70:04:
b5:41:f3:d7:18:1e:ea:81:de:a9:27:aa:d4:9a:ea:70:dc:ef:
b5:4f:f1:99:cd:8c:29:89:7c:63:57:a7:a5:2a:45:47:df:dd:
74:48:0b:44:e8:43:08:e0:79:ca:9a:72:c2:ec:9f:e5:a7:77:
8c:be:22:e4:27:b9:cd:47:27:21:3f:16:c4:31:51:a2:12:65:
ad:0f:0e:db:bf:07:5c:bd:32:88:6f:ec:5f:25:a0:d8:f5:7a:
71:79:94:1b:01:2c:5f:e7:d7:ed:f6:d5:56:30:df:94:96:9c:
38:89:c0:a8:dd:f5:91:aa:34:32:62:59:47:6b:cf:90:fb:ec:
76:5c:8f:9e:2c:57:06:b4:a2:83:d2:ad:c1:b2:b0:d4:e3:19:
52:3f:5f:00:39:a5:74:ab:2f:e6:33:0c:08:00:8e:5b:1c:02:
00:72:dd:e7:20:48:b8:8a:4a:cd:11:4e:b2:4b:bc:22:40:d3:
29:ba:26:6d:0b:12:83:c9:d6:73:ab:8e:ab:9e:c2:16:3e:bf:
3c:a2:c1:00:e1:45:0c:f0:95:63:6d:91:3b:2c:59:84:21:a0:
cc:cc:e8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:03:44 2026 by rpki-client