
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json)
Hash identifier: kivJR6IYFwePufDAfDNy+IdEt3NHCfsorYSVX6yMQPY=
Subject key identifier: 95:5F:71:BF:D2:15:68:F1:34:9B:33:A8:31:D7:9E:F8:BF:81:8F:A4
Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1
Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1
Certificate serial: 037E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
Manifest number: 0376
Signing time: Fri 03 Jul 2026 01:16:42 +0000
Manifest this update: Fri 03 Jul 2026 01:16:41 +0000
Manifest next update: Fri 10 Jul 2026 01:16:41 +0000
Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: 4N4pQQwz1cmdHrVMyO9MUkDeMwKs0dxzbIKCj0aLrzk=)
2: C78C216A070211EDB5178252C4F9AE02.roa (hash: fyu14Jx6k1oTAKIdxEeJ8rrmDDiNJP7D4BIKAgsLJek=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl
rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 01:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 894 (0x37e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1
Validity
Not Before: Jul 3 01:16:41 2026 GMT
Not After : Jul 10 01:16:41 2026 GMT
Subject: CN=6a470d7a-b4a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c2:14:a6:2d:7e:da:60:97:cf:1c:5c:c4:70:
7c:05:d1:ac:b5:ee:38:ac:5a:ee:82:4a:48:7b:40:
b3:3f:dd:21:a0:d2:e8:18:ba:17:ab:64:ac:c0:17:
5c:3a:f7:ef:0b:70:b0:24:40:73:3d:a6:a4:0c:c5:
a5:57:ec:e3:11:b9:3f:2e:b7:e6:14:74:cb:c4:e8:
99:dd:79:42:dc:1c:29:91:47:c7:87:f9:82:76:c9:
f9:13:ca:43:37:4a:bb:20:85:aa:95:1b:df:0d:af:
ad:ea:58:7d:87:2a:ab:e6:52:7e:4f:13:e4:3c:fc:
31:0d:c1:4e:11:34:0d:b5:02:13:7e:45:cf:f1:74:
e0:50:6f:1e:34:50:6b:76:9e:98:64:38:d5:eb:ae:
fe:83:3d:3d:00:68:76:85:50:91:b6:9a:1a:c6:ab:
61:d5:f0:86:e2:e6:50:ea:1b:e4:f0:af:fe:4f:d1:
23:62:f9:c9:ec:27:f2:41:48:32:6e:98:f1:4e:00:
4c:4f:3b:e0:d9:7e:10:a8:24:a0:f4:a6:1e:b6:f1:
37:86:b0:ca:68:74:87:76:16:4a:9d:75:e3:2d:91:
09:ec:63:86:b1:33:d7:b1:35:c5:49:15:2b:07:88:
92:92:5d:b6:a5:ea:2d:25:13:3d:96:02:87:22:b9:
22:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5F:71:BF:D2:15:68:F1:34:9B:33:A8:31:D7:9E:F8:BF:81:8F:A4
X509v3 Authority Key Identifier:
keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:a4:bd:66:d5:71:65:17:ad:09:2d:2c:46:3c:5d:66:d9:1f:
f6:82:59:4e:52:58:58:31:86:89:1c:4e:fe:46:0c:a9:72:fa:
4a:6e:a3:46:1c:d0:d3:90:91:ef:3d:1c:f1:3c:04:8e:d4:a7:
c2:96:c0:99:ab:01:7b:d0:9d:66:5a:5b:00:0d:e0:50:92:f0:
34:a7:3c:d6:83:41:3e:c9:5f:6b:22:88:55:ba:1e:72:bc:70:
45:ec:9d:d9:f5:b4:f8:38:8a:d3:bc:4c:b0:9c:8a:93:7b:72:
bf:c4:5d:33:83:9f:1f:4a:ae:f3:83:ae:5b:0e:a4:bc:4e:e8:
3a:a8:32:99:2c:14:ec:b1:0a:2b:10:f7:7d:85:c3:9e:5d:be:
e5:2e:60:17:64:dc:14:58:0e:e5:44:96:9c:15:c3:57:bb:76:
54:40:d3:37:b6:d6:7b:6a:45:e9:87:34:22:1d:89:65:a3:27:
2b:e2:cd:b3:72:59:fc:14:82:25:80:66:a5:c7:23:4e:10:65:
a6:a7:d7:13:48:9a:70:cd:5b:c1:24:15:df:34:ef:f6:17:f5:
a6:37:29:9c:f8:22:c0:cb:07:45:dc:1a:d9:a1:83:de:ee:72:
54:d4:77:f9:89:94:82:f1:b9:ad:54:a8:62:29:76:3a:20:7f:
67:4f:4d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:47:27 2026 by rpki-client