
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft
File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json)
Hash identifier: NVWjzZo7qkNROMbH4GeFzqGX2cj5ZFg6Fioe2y00j7Q=
Subject key identifier: DF:4B:B9:7F:66:8A:FB:7C:EF:6B:02:90:1E:FD:2B:44:45:16:61:F9
Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00
Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300
Certificate serial: 0690
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft
Manifest number: 067F
Signing time: Mon 06 Jul 2026 23:09:01 +0000
Manifest this update: Mon 06 Jul 2026 23:09:01 +0000
Manifest next update: Mon 13 Jul 2026 23:09:01 +0000
Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: Z4nqeOFnEj97I6J2lV3jbLcbMBASuPH7iev57Z6fWN4=)
2: 18981398329B11EDB9F09862C4F9AE02.roa (hash: BIoQ+elASRB2TiBp78lt2ETWeyKSdC3Iplvz/Xmhi9o=)
3: 324C60ACDD2211F0BB0B52AC636F56BC.roa (hash: DeEQGurqm7eSpSsYzXwNaAtssPLf2RiuTFIL21AIcCE=)
4: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: Zg+eHPdVNDM4QI8KEgw81Og4McuXzxsHfkNcln3oKOk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl
rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 23:09:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1680 (0x690)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A5D8A, serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300
Validity
Not Before: Jul 6 23:09:01 2026 GMT
Not After : Jul 13 23:09:01 2026 GMT
Subject: CN=6a4c358d-c472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d3:c8:ba:46:b5:69:d5:d3:c4:10:4a:99:38:
ab:ef:98:18:f0:2d:e5:02:5f:6c:20:2b:fd:4d:d9:
b0:76:1c:e0:10:1a:25:73:19:0d:9d:e3:ec:15:05:
91:e3:c6:a3:f6:04:6a:7a:1b:e9:ae:4b:d5:30:47:
3e:e1:3a:0c:1c:30:2f:c1:46:2f:15:41:5d:87:e6:
7c:a3:af:a7:1b:1b:d4:b8:09:74:4c:ad:3b:a6:06:
bd:29:e9:e4:56:39:20:ce:83:14:91:e7:c4:06:32:
c2:78:97:32:88:4c:98:f8:dd:9e:70:4d:af:86:b4:
3f:e6:06:73:b1:5d:fd:77:49:16:37:90:41:65:bd:
4b:f6:f0:42:50:80:9b:50:28:d9:6a:89:6e:18:84:
0d:95:f2:a8:1c:e9:16:b4:12:cb:41:3e:d0:22:ab:
a0:21:71:e1:c8:99:94:9f:57:80:35:b9:1e:6d:d8:
3d:2e:c9:65:2c:4f:66:d8:8d:c2:fa:59:41:de:ab:
90:52:6c:c7:2a:47:5a:58:c5:1c:09:7c:7e:dc:37:
cb:d5:bc:82:dc:6f:0d:1d:f9:15:43:1b:1e:3a:0a:
f1:ff:6d:4f:af:3f:b3:26:58:91:87:1f:64:68:fc:
b3:9e:a1:c1:f6:bd:fe:a5:7d:e9:0e:51:8b:26:52:
69:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:4B:B9:7F:66:8A:FB:7C:EF:6B:02:90:1E:FD:2B:44:45:16:61:F9
X509v3 Authority Key Identifier:
keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
20:aa:e1:80:6a:00:b3:e3:84:b9:9f:40:94:1f:41:eb:d1:e6:
22:ef:f1:94:ba:3b:cb:08:6e:df:80:8f:5e:9d:d4:d9:86:04:
a4:b8:ba:6d:06:c8:a7:20:34:60:93:63:d6:d9:aa:66:69:c0:
fa:cf:d8:bd:05:f2:eb:9f:08:cd:19:6d:bb:8e:40:87:02:85:
02:72:0f:b0:ce:58:56:8f:b3:ab:81:9a:3a:52:b1:71:3f:45:
f6:c5:90:93:d2:5a:67:7d:94:77:95:ca:72:7f:af:c4:c8:b9:
f9:70:1c:27:ac:b5:3b:54:96:ea:5b:46:0a:49:7a:e9:ca:4b:
8f:cf:f8:d8:2e:62:04:c5:55:0b:b0:07:f5:72:ca:ba:fa:93:
b6:4f:e4:8e:e9:59:94:df:77:51:29:f8:af:c6:cd:37:43:30:
dd:81:13:49:49:d2:c3:71:5d:7b:31:0a:ba:10:89:fc:e7:f3:
c7:62:f1:11:cd:8b:22:14:1e:4f:c4:16:92:0b:56:b4:e8:2b:
87:2b:fe:7d:9e:26:c0:56:b5:3c:f4:64:d7:96:42:4b:b9:7f:
3e:09:81:df:97:02:6e:c9:1b:52:2c:99:47:05:38:28:fc:3d:
86:1e:f9:d4:03:bc:7b:65:26:ab:a3:28:24:f8:4f:a7:cd:54:
74:89:a2:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:03:37 2026 by rpki-client