
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft
File: OUPUJhV5zeDoKgXKKrVLOHulGTM.mft (raw, json)
Hash identifier: 6VU0fX4nGzgqnMB9znNGjSBm8VaJ7yCfHlYwIYxCghY=
Subject key identifier: AD:3E:36:E8:03:E5:C0:11:86:29:D0:0B:24:BA:69:BD:A4:12:03:8F
Authority key identifier: 39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33
Certificate issuer: /CN=A919D88F/serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933
Certificate serial: 0150
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft
Manifest number: 0148
Signing time: Fri 17 Jul 2026 06:25:33 +0000
Manifest this update: Fri 17 Jul 2026 06:25:32 +0000
Manifest next update: Fri 24 Jul 2026 06:25:32 +0000
Files and hashes: 1: OUPUJhV5zeDoKgXKKrVLOHulGTM.crl (hash: AwxkDF1LTXL0xBEOKMOLQIWUnDD5KqPY3vilm6lT3jw=)
2: 31C36B64905F11EFAF49EB6BC4F9AE02.roa (hash: dKI7uA/SKO3RusYnEdr0A/ZscE+vPWKaXvZ4/iotjxI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl
rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:25:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336 (0x150)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919D88F, serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933
Validity
Not Before: Jul 17 06:25:32 2026 GMT
Not After : Jul 24 06:25:32 2026 GMT
Subject: CN=6a59cadd-ea2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:e3:c0:45:3c:ed:30:74:82:5d:60:14:b9:
d2:28:f4:96:7f:6a:b9:da:e8:b4:60:6b:cb:d5:e9:
83:f6:a7:10:58:90:68:bf:ba:a4:94:10:d0:c3:c3:
92:37:1a:b7:98:95:e4:f9:d9:36:3f:3e:e8:ed:1b:
1f:df:90:67:62:ae:bf:e8:af:7d:11:e4:ac:68:c3:
eb:d6:9a:5b:ed:ba:d7:b9:9d:85:c9:3a:68:3f:74:
88:9a:5b:08:b8:36:0c:73:6b:52:01:e4:73:d9:0a:
8c:f7:7e:e1:8a:cc:9c:80:03:12:98:37:8a:de:99:
a3:9b:38:f9:16:39:17:2e:9f:ee:bc:ab:af:c9:a9:
f7:65:d7:9b:75:4d:4a:7e:16:2e:9f:fe:52:20:81:
8d:49:fa:8c:06:65:91:02:80:9b:24:34:e1:38:1c:
f6:10:33:ac:57:83:ae:2a:33:72:ff:20:72:4c:e6:
2a:60:83:2a:19:4e:e3:b3:fd:27:14:40:7f:5e:c0:
f7:a3:e4:76:06:89:75:34:bd:e2:28:2f:ac:89:a1:
f1:63:97:32:a2:29:f4:bf:65:96:f7:ad:d1:00:4d:
db:8d:df:5d:a2:70:aa:f9:e6:4a:a7:9c:aa:b1:c0:
f8:9e:b5:4a:50:89:d7:f8:2a:7c:02:39:d6:1f:04:
cd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3E:36:E8:03:E5:C0:11:86:29:D0:0B:24:BA:69:BD:A4:12:03:8F
X509v3 Authority Key Identifier:
keyid:39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2b:a8:d3:88:39:f5:db:d3:58:8c:46:88:9e:23:4f:a5:82:21:
f2:eb:fd:dc:e2:d8:8f:8d:81:2c:16:eb:80:a4:91:1c:bd:f0:
e5:33:22:4f:9e:ab:cf:87:cd:26:43:e2:56:29:6e:a5:42:fc:
8e:f5:b0:6a:e5:70:8d:b5:05:8e:ec:38:db:82:6e:65:73:9a:
b8:79:9a:e7:9b:03:6a:7e:55:d1:4c:c1:14:96:b9:ca:1f:b0:
d8:90:98:3a:ae:d4:7b:71:61:4d:aa:33:dd:d7:5e:c7:b3:34:
ff:19:56:c6:c6:6c:db:e7:8c:6b:a1:67:1a:de:7f:5e:71:5b:
7e:b2:9a:ea:5d:a4:83:3f:a1:18:2e:24:6e:48:f6:9d:56:8f:
ec:f9:ce:6d:c0:95:ca:cb:30:13:02:83:83:a5:c0:0e:be:c5:
90:0e:8e:99:d8:7f:e3:56:3e:a6:24:72:2e:d7:89:cf:3e:54:
17:9c:24:3b:26:f4:e6:fc:56:38:8a:c8:60:bf:04:08:01:a0:
2d:f5:ca:f0:14:fc:71:20:24:51:05:20:93:c2:55:a6:07:70:
55:a6:58:8b:e7:8d:0a:82:29:bd:6d:bb:0b:00:44:ac:c8:15:
64:7f:95:69:ee:79:cb:82:c3:27:a5:a8:0b:94:fd:c2:e7:2c:
e2:e8:a0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:17:46 2026 by rpki-client