
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft
File: rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft (raw, json)
Hash identifier: LskoRL2mWJBj3sllMZIg3AE1NLb02mYpNkRbZLYuZ+U=
Subject key identifier: 19:3D:DA:30:2D:68:0E:D8:BC:D1:F2:DB:F3:47:69:E6:6C:38:C1:FC
Authority key identifier: AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A
Certificate issuer: /CN=A9196DCA/serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A
Certificate serial: 0128
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft
Manifest number: 0123
Signing time: Fri 17 Jul 2026 06:55:01 +0000
Manifest this update: Fri 17 Jul 2026 06:55:00 +0000
Manifest next update: Fri 24 Jul 2026 06:55:00 +0000
Files and hashes: 1: rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl (hash: 9c6o7MsNnjfFic3lJvDTrqGeo06daQlkPrEtMMCFrbM=)
2: E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa (hash: hdlYLSviqdsjiISi2RWRWAEZ34QocD0U9ocvGaJFxhI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl
rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296 (0x128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9196DCA, serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A
Validity
Not Before: Jul 17 06:55:00 2026 GMT
Not After : Jul 24 06:55:00 2026 GMT
Subject: CN=6a59d1c4-ab0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:53:7e:90:26:de:0f:ef:fc:d6:27:87:21:e1:
a6:d9:50:e2:2a:72:96:2b:ee:7b:70:04:5a:1d:97:
99:0e:f8:0c:bf:87:65:e7:53:bd:c9:1d:68:d0:e5:
c0:5d:7c:d0:2c:ef:04:94:88:1e:7d:52:f7:21:60:
13:79:d1:8d:de:91:59:7e:7c:75:fc:d3:ef:8e:df:
e5:68:22:1f:04:42:30:25:df:b1:43:98:f8:f1:50:
4c:95:db:b1:f8:c4:27:72:b1:04:07:de:b2:24:6e:
6b:b0:48:ac:2a:99:26:56:c3:41:e8:f8:a7:e2:a3:
66:f1:55:b5:96:95:39:bd:0e:c7:7a:a7:27:ca:5b:
ee:2f:e9:6b:51:f3:d8:78:6d:30:47:07:e4:b9:99:
37:f0:03:ff:fb:c6:53:46:a6:f7:76:06:3c:b8:41:
61:2e:8b:b0:bf:e3:80:4b:f4:62:d4:01:0c:e4:b1:
5a:8d:87:77:3f:ec:40:f7:60:cd:13:5b:27:a8:40:
6e:97:16:f7:64:b3:0d:cf:f1:80:05:46:f4:be:1d:
a8:41:6e:c4:02:3b:e0:1e:c9:81:63:04:74:18:62:
b7:72:29:a2:90:71:db:76:1d:ed:eb:71:ef:3d:63:
c3:06:a2:de:c2:42:6b:1b:cd:b3:b4:89:a4:72:80:
83:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:3D:DA:30:2D:68:0E:D8:BC:D1:F2:DB:F3:47:69:E6:6C:38:C1:FC
X509v3 Authority Key Identifier:
keyid:AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
20:d9:5c:97:7e:8e:a8:a7:df:60:4a:fb:91:1d:1c:d3:e6:c3:
ee:b2:92:2c:00:ac:8e:b2:35:5e:6f:8b:ce:90:f5:b7:3a:05:
cb:18:4f:7d:41:ca:b3:ca:bb:57:cd:7a:98:2c:5d:cd:e9:fa:
85:00:0f:5e:5b:7b:9c:bf:21:19:45:59:a4:7c:78:a8:ed:63:
bc:01:4a:80:ac:18:da:fd:d0:52:56:e3:94:bf:b2:82:e1:20:
24:01:c2:af:10:6e:7b:61:84:03:b7:55:47:13:1d:db:fc:c7:
a3:4f:d4:64:4b:8d:3c:ec:1b:ff:6d:98:90:73:43:59:e4:2a:
8f:41:28:92:1b:3f:9f:12:4d:bb:24:dc:35:d7:81:16:da:47:
31:05:26:ff:ae:60:24:e8:d0:72:01:a6:e0:cd:88:65:0e:16:
3f:11:fc:34:40:73:3b:7f:fa:f1:67:38:bd:52:34:cf:64:eb:
a0:fc:bc:1d:ee:8f:bd:93:18:96:a8:50:06:58:71:d0:f0:df:
c0:6e:f2:e0:dc:72:78:4c:af:70:e2:83:8b:0b:8f:a7:0a:08:
b1:ef:a0:dd:5d:d7:ea:d2:e9:3a:60:28:91:1d:97:f0:64:99:
f6:13:76:ce:3d:5c:53:e0:98:f3:45:52:7e:f3:58:d9:72:bb:
9b:66:80:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:33 2026 by rpki-client