
$ rpki-client -vvf rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
File: I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft (raw, json)
Hash identifier: 5BVhz8l+361lVfyqbtwXg4l8NDTRC6pCE1f2RpsT1fA=
Subject key identifier: 4A:2B:BE:54:20:61:08:23:04:DB:17:7F:15:8A:02:9F:CA:A4:4C:86
Authority key identifier: 23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28
Certificate issuer: /CN=A919DB08/serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828
Certificate serial: 59
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
Manifest number: 55
Signing time: Fri 17 Jul 2026 09:35:13 +0000
Manifest this update: Fri 17 Jul 2026 09:35:12 +0000
Manifest next update: Fri 24 Jul 2026 09:35:12 +0000
Files and hashes: 1: I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl (hash: BOh+ZZNYFiMeCxRVg0tRHP9gonSdk+S4+3o6UTJKsx0=)
2: 3F7E724808FA11F1B69E3FD3313D8C67.roa (hash: NZDM0P5b400zVrhyd2jzSLfxw/qGeaxR3jXe0NSn67o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl
rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 09:35:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89 (0x59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919DB08, serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828
Validity
Not Before: Jul 17 09:35:12 2026 GMT
Not After : Jul 24 09:35:12 2026 GMT
Subject: CN=6a59f750-6665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cc:be:62:e3:d0:7c:6c:45:08:64:09:55:1d:
68:0a:db:a1:0c:34:7b:1a:7c:d9:07:f9:be:d4:dd:
d1:ef:d4:dd:7b:db:60:f1:78:a5:b2:48:13:39:c1:
46:28:72:cb:9b:4f:09:0b:7f:16:9c:35:98:6b:15:
a2:b9:b5:be:ce:62:58:0b:c2:81:12:75:70:5a:18:
2d:5d:76:6d:2a:25:f6:a0:09:ae:c8:a2:90:e2:4d:
80:00:aa:39:23:2f:4b:68:de:76:3f:0f:7a:ae:8c:
57:2f:e2:89:50:fc:e2:d5:8f:2e:61:a3:33:2c:df:
0d:07:54:d0:3d:26:e2:d1:d2:e8:8d:12:73:e1:bc:
64:00:d2:b5:c0:0b:8e:cc:ab:10:02:4a:64:95:b3:
84:15:7f:bc:dc:07:0e:09:c6:52:7f:0b:2a:65:57:
78:75:9b:f1:fa:ce:03:83:99:0d:1c:50:37:91:2e:
b8:a7:6e:0f:f3:50:26:af:0e:99:8d:4b:0d:d5:1e:
7f:66:35:81:df:9a:0a:f4:50:e1:cd:e2:62:04:bf:
a2:78:f9:fc:f4:84:bc:d0:0a:4c:2b:de:58:a4:30:
af:3b:56:34:2d:f6:03:40:25:46:03:0e:d5:8c:f4:
23:df:df:e8:c4:1d:0d:35:47:93:4f:f2:6d:30:f2:
fe:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2B:BE:54:20:61:08:23:04:DB:17:7F:15:8A:02:9F:CA:A4:4C:86
X509v3 Authority Key Identifier:
keyid:23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1b:f9:ca:ad:ae:96:81:17:83:de:0c:02:a5:10:a0:bb:a5:07:
f7:fe:38:47:a1:b9:36:0e:be:1e:aa:d3:72:04:6c:e9:fa:eb:
76:62:30:cc:65:a1:a2:e5:62:f7:2f:2f:0b:07:08:e1:47:67:
fb:ef:c5:4b:d6:b4:57:1d:c2:2d:2b:fc:3c:07:91:c3:31:5f:
3f:e4:4a:6b:99:fb:1b:0d:91:8b:98:12:ae:94:3d:91:7a:0f:
3c:87:d4:eb:73:ea:7b:64:fe:b0:ef:3f:da:fe:72:75:34:3c:
98:2c:8d:dd:bd:e7:22:fc:5f:62:73:a7:5d:0b:ac:2a:8e:55:
86:96:da:bc:fd:15:9e:a6:41:82:8f:aa:83:d9:6f:76:0a:17:
31:99:05:cc:53:21:03:18:e7:55:47:7d:f1:e6:43:17:fe:63:
f7:82:ba:22:e3:40:51:dc:eb:78:11:40:a4:d9:3e:d2:ee:3d:
82:60:fb:82:a5:a8:5b:29:2f:6d:a5:1e:fa:05:a7:5f:d1:05:
64:d6:d6:a5:e4:48:9f:48:02:4d:be:ff:ed:4d:ea:f4:cc:16:
7f:26:08:3f:de:c2:77:7c:33:75:23:bf:94:db:ef:6e:bd:d9:
27:6c:f3:16:2b:01:82:c5:9b:dc:96:a9:c3:65:24:ea:a1:fa:
f0:80:19:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:20 2026 by rpki-client