
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json)
Hash identifier: KeH5NPmz+fhqhp4g89EoxPjnVPUJjYVRSVhyz9cywSc=
Subject key identifier: FA:8B:BA:83:58:23:92:74:00:26:48:E7:F1:09:E3:8B:40:B3:88:23
Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3
Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3
Certificate serial: 0364
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
Manifest number: 0348
Signing time: Fri 17 Jul 2026 01:45:56 +0000
Manifest this update: Fri 17 Jul 2026 01:45:56 +0000
Manifest next update: Fri 24 Jul 2026 01:45:56 +0000
Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: 5JHM6lUdkB+lNavqVKBHiHPJbZMT1ZrTfVq53zc9An8=)
2: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: BV3fAhzYpd4ungoocRUfiG5/5RWB1BiAarK17R/lLO0=)
3: F3997FACE21D11EFA5819B7EC4F9AE02.roa (hash: SaiPWLAHUnkyojVdelS2uSfpAinLvbN01a3ry45lnng=)
4: 3D331986E17211EFA5959B2FC4F9AE02.roa (hash: GgxFX6325kuN6RICOxtS2gvb+gkFJTzGc8YA7E0IOc0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl
rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:45:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 868 (0x364)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3
Validity
Not Before: Jul 17 01:45:56 2026 GMT
Not After : Jul 24 01:45:56 2026 GMT
Subject: CN=6a598954-98bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c1:11:25:b5:00:48:33:1a:e0:00:0a:0e:fd:
57:8d:f1:33:fe:da:bc:a5:4e:16:eb:41:92:6f:c1:
ed:55:2d:70:84:1b:e7:87:96:c8:ca:4b:fe:68:39:
f3:d3:e9:84:00:96:27:0d:52:65:f8:af:23:bd:12:
77:d1:52:8a:41:1b:e4:0c:33:93:e3:4c:47:6a:f2:
45:e3:7b:05:52:3d:dd:86:ab:e7:c7:fe:80:dd:fc:
46:61:cb:46:e3:82:40:b1:e1:94:3b:28:19:01:19:
c5:46:a6:a9:6a:95:da:b7:12:d3:ca:60:86:fd:ed:
18:47:1c:c2:f3:a3:5a:fe:de:9b:b6:61:01:1b:58:
ae:60:42:8a:db:cb:86:d2:d0:99:a0:00:89:c9:c8:
18:aa:d2:e6:9b:63:91:e0:48:2c:57:f4:e5:38:57:
e7:b6:03:a8:11:c9:9c:6e:85:2b:99:20:f5:f0:b2:
b4:d3:1e:42:58:37:f7:48:54:94:68:2e:41:a1:04:
5a:e4:1e:e6:3e:de:e9:e0:9a:34:4a:59:00:8a:e2:
f8:2f:8a:64:5b:39:74:8c:bf:02:eb:cf:9d:34:07:
31:e0:49:4f:8c:8c:8a:2c:3b:2d:19:dd:70:6e:2b:
45:25:90:a5:e3:35:bd:ba:3c:cc:fa:20:6f:15:19:
06:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8B:BA:83:58:23:92:74:00:26:48:E7:F1:09:E3:8B:40:B3:88:23
X509v3 Authority Key Identifier:
keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
45:ca:3e:a5:14:02:e7:77:50:71:33:43:d4:c4:98:e5:db:6f:
bc:1d:20:68:68:fd:8d:c4:43:6c:b1:45:06:c7:4a:f9:ad:c3:
b6:c4:25:cc:b1:2d:18:ef:1f:1f:cd:90:86:5f:1e:48:78:7f:
92:c5:ec:a7:ee:bc:ed:fc:20:ea:61:c2:2b:77:48:e8:ea:68:
af:22:fe:34:ac:3a:39:85:5a:59:16:0a:2d:cc:8c:09:b9:ac:
61:93:7c:c0:ea:6a:7b:80:8b:50:7a:7a:a4:22:b1:08:15:6e:
09:4f:71:ef:e4:e8:15:9c:76:8e:c8:52:89:d5:a4:3e:0b:14:
90:1e:1e:f0:04:00:fb:de:da:3e:9c:03:74:6d:c5:19:7b:74:
ec:cd:e0:9d:69:9c:a1:cf:54:82:42:4f:4c:20:9e:c3:0e:bc:
f4:40:ed:cd:f9:20:3d:a1:ec:fb:5f:00:5e:a9:a9:e0:fd:9f:
9f:04:bf:31:5c:7f:db:bd:1c:c3:5a:00:7c:40:3f:eb:11:9f:
bd:0f:76:ea:b2:f6:f2:e6:ad:f8:5f:ce:be:51:ad:3b:18:3d:
5c:d1:d4:95:14:9f:b1:75:2f:c4:e1:12:8f:9b:30:be:89:db:
ab:0d:99:57:25:dd:f9:e6:7d:16:73:36:57:72:87:ad:81:41:
d8:a9:b4:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:43 2026 by rpki-client