
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json)
Hash identifier: IZ+9mtS/nlPGOR4ef4UYFey3Sc/HRkR96RdjvikPSKk=
Subject key identifier: 04:B4:E9:E9:6D:07:DE:43:E0:27:7A:FF:39:28:D7:F8:83:C8:EF:A4
Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B
Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B
Certificate serial: 059F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
Manifest number: 0597
Signing time: Thu 09 Jul 2026 00:16:08 +0000
Manifest this update: Thu 09 Jul 2026 00:16:08 +0000
Manifest next update: Thu 16 Jul 2026 00:16:08 +0000
Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: WGE+h6eqwJR5Tg67ZRgsgFn2BQT+ZKWFCVEbiUV4xY4=)
2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: CMK57h7d3VJ8Y5Z6L2ancbIus6PT121u0oU6HX7o5tQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl
rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 00:16:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1439 (0x59f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B
Validity
Not Before: Jul 9 00:16:08 2026 GMT
Not After : Jul 16 00:16:08 2026 GMT
Subject: CN=6a4ee848-d5bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1d:a5:09:fe:bd:d3:28:cb:33:e0:6f:c2:f8:
d2:9b:9e:fa:84:b5:18:a1:c0:cf:36:83:78:e6:d4:
15:26:17:57:d1:a8:44:c4:0a:9c:de:a0:8d:71:16:
04:57:ea:ca:10:31:5a:4a:4e:8d:7f:ae:dd:ef:c6:
ea:72:b0:52:36:30:f1:42:c0:c2:da:fb:88:70:25:
18:51:9c:b9:85:c3:e3:e7:16:bf:52:26:04:99:e8:
80:e2:11:44:f0:7e:fd:dd:52:16:76:98:e0:00:66:
0b:06:ac:cd:ac:63:96:f8:4d:42:35:a8:78:6d:a6:
fd:a5:e4:9f:1b:27:38:8e:0e:ed:b5:25:93:0d:5b:
1d:95:6b:53:4f:10:97:26:4b:e8:b1:df:a7:5f:10:
a1:6f:2e:b7:1f:29:5f:c5:c2:cb:80:c0:07:aa:25:
a1:fa:b7:03:d2:80:5c:fd:71:23:00:42:d3:ac:d4:
ec:3b:d5:74:64:bb:22:73:2e:4d:30:7d:a5:6a:26:
c7:f8:27:af:92:d6:38:cc:08:1f:ae:1f:c9:22:d8:
36:e0:f5:71:e3:56:13:03:4a:c8:03:da:f5:c3:17:
20:41:10:30:e9:6e:6f:7c:7b:48:08:34:7a:aa:dc:
95:dc:46:1b:c0:8b:e9:38:29:f5:49:3f:28:ca:af:
7b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B4:E9:E9:6D:07:DE:43:E0:27:7A:FF:39:28:D7:F8:83:C8:EF:A4
X509v3 Authority Key Identifier:
keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:df:34:87:c5:cd:92:df:ec:71:e2:42:ab:3b:3c:c4:20:37:
ac:3b:62:ba:42:f0:3a:81:7a:57:2b:ea:48:7e:69:cb:94:3f:
7b:14:b6:fb:38:d6:8b:62:b7:24:83:a0:ba:ee:5d:0d:30:0f:
44:07:e0:73:59:e5:de:16:47:45:a2:09:cf:42:fc:4a:aa:f7:
b2:b8:fe:f8:e2:c1:d4:f8:53:ec:20:b7:72:06:38:3e:c9:b6:
39:3e:ed:9b:ff:c5:ce:2e:2d:11:a3:8a:40:f4:3a:84:38:2e:
eb:90:e2:50:3e:66:ab:55:f7:df:76:a7:9d:c9:80:98:fe:33:
0c:23:60:df:6b:9b:46:62:03:33:22:cb:e8:a6:ff:af:40:d0:
2d:c8:2d:0b:c2:70:50:4f:f0:89:e2:58:0b:8e:41:71:03:20:
bf:ca:4a:10:4b:99:c6:47:28:b2:35:d2:1f:97:5e:10:ad:42:
90:a0:da:99:fd:98:67:6f:6e:d0:f7:ab:b8:f7:7c:07:88:47:
da:32:a6:58:d8:c4:c3:67:b6:5c:d2:79:01:c1:41:14:2b:92:
31:15:15:3b:8b:b2:c5:0b:8c:a8:e0:81:fc:ec:40:55:a7:4f:
65:d7:7b:a4:7d:2a:e9:5c:5a:2d:18:cc:b7:f2:9b:9c:44:20:
21:6c:8c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 00:43:37 2026 by rpki-client