
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json)
Hash identifier: IiNtgFMR9EWX0SU2O9jIkiTWlFd0gCfnSDswjMZyskA=
Subject key identifier: A2:47:01:CE:F1:57:B5:8A:F9:FE:FB:13:C4:17:4B:5F:82:BF:9E:80
Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8
Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8
Certificate serial: 092D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
Manifest number: 091D
Signing time: Thu 02 Jul 2026 20:28:17 +0000
Manifest this update: Thu 02 Jul 2026 20:28:17 +0000
Manifest next update: Thu 09 Jul 2026 20:28:17 +0000
Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: EZD2aTeqtwun9UJX9hrJCe8YeeRKHr5CGfiG7TWZXR8=)
2: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: T90KWb99cEbWcYjxKrcTOKfx/Qq8bgV36JoCAoZr1DA=)
3: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: FHR5X9UUHIe+lbh333dtqmnv9RGCApUiICBVfwjLgCs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl
rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 20:28:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2349 (0x92d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8
Validity
Not Before: Jul 2 20:28:17 2026 GMT
Not After : Jul 9 20:28:17 2026 GMT
Subject: CN=6a46c9e1-3c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:43:02:e2:6a:81:45:09:89:9c:30:a4:51:
34:c4:f0:68:e5:79:00:83:03:32:80:f9:38:00:90:
f9:30:3f:20:87:a2:00:a5:c7:ac:99:c1:10:14:30:
64:54:45:05:59:ac:63:ef:af:18:db:8a:f4:ff:ff:
cc:f6:1e:04:bf:90:5e:49:01:7c:d5:9b:9a:0a:15:
b8:e2:72:4f:a8:36:69:0b:e0:36:2e:69:8b:b0:56:
b7:e0:2b:21:5c:fb:76:fa:93:b0:73:3c:15:20:63:
96:6f:87:b9:81:82:ec:50:dc:dc:90:35:01:ae:e1:
47:7f:40:6e:05:ec:20:5d:45:43:3f:0b:20:05:c2:
08:21:cb:ae:8f:de:b1:6c:30:c4:d5:2d:d7:cb:fa:
f2:92:3a:d6:8e:c8:5b:0a:2c:a3:ca:c1:3a:0a:45:
a5:66:2f:ff:e7:c9:93:db:30:a1:51:df:13:dc:1d:
24:b3:a7:75:b6:6f:b5:37:b3:21:af:99:92:18:21:
e7:d5:95:b1:96:0f:2c:fc:3f:44:8c:15:5f:b5:16:
95:bf:c6:5c:a6:ea:c8:4f:40:ef:ca:df:c9:3a:b1:
72:14:1d:14:7d:1d:3e:b0:9a:09:fe:e6:77:6f:0a:
39:d3:f7:0f:03:a0:8f:bb:5e:4d:f9:46:c6:6a:01:
8c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:47:01:CE:F1:57:B5:8A:F9:FE:FB:13:C4:17:4B:5F:82:BF:9E:80
X509v3 Authority Key Identifier:
keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c5:b1:0d:54:61:ba:b2:02:ec:98:47:74:77:fe:09:56:31:80:
67:76:10:73:83:82:88:8c:6b:63:0b:b5:3b:e1:90:cb:a5:30:
69:f5:06:f2:fe:52:7b:17:d0:bf:1a:6b:45:6e:72:0c:36:51:
f7:ed:41:80:9a:bc:32:d8:bc:e8:2b:81:41:be:06:3b:4c:29:
09:c1:9a:8e:a6:5f:49:b6:6e:1c:93:f1:8f:23:72:67:ae:c0:
ad:1c:ed:9d:db:a5:76:ef:bb:00:1a:54:dc:13:e2:3f:31:0e:
b1:90:bb:b6:01:55:62:00:18:3b:77:08:92:ec:a9:98:82:d3:
88:72:f1:37:5f:6d:dc:80:73:d3:d4:54:76:2a:08:21:7e:85:
cb:84:07:9e:b6:82:6e:e2:98:10:ef:68:73:a1:d4:ef:c3:de:
33:b1:3d:ac:78:e5:1d:b8:70:67:b9:76:8e:3e:d0:41:f0:c8:
a8:e7:72:fe:3a:49:c6:7e:4f:dd:4b:29:a9:1d:a1:59:be:c6:
a2:53:04:10:7c:c8:07:ca:5f:2c:73:b0:fe:be:2d:2f:95:1f:
50:6e:8b:4b:e7:42:64:e3:b9:e7:3e:0e:b6:fb:1e:27:4e:12:
4f:9a:cd:51:27:e1:c2:ae:fa:7e:ef:44:b8:55:14:d0:b6:07:
32:b0:60:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:28:07 2026 by rpki-client