
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft
File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json)
Hash identifier: jRO16CXvmE0lX9ywL5L3WY0h4Qix097XkKMXr3h3Juc=
Subject key identifier: D8:FD:9C:80:0B:BF:69:B5:81:41:0C:17:91:9B:2B:61:10:D7:43:AC
Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B
Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B
Certificate serial: 020E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft
Manifest number: 01FD
Signing time: Fri 17 Jul 2026 04:07:31 +0000
Manifest this update: Fri 17 Jul 2026 04:07:31 +0000
Manifest next update: Fri 24 Jul 2026 04:07:31 +0000
Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: 7QEok+Lr+nnWMgbosx1RCwYA0DDDDhHkyebv6aOHCgU=)
2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: zNUB+vibuX3nQWmpbN4PBwL7Sq5HwZSp7xD/bsaKx34=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl
rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:07:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B
Validity
Not Before: Jul 17 04:07:31 2026 GMT
Not After : Jul 24 04:07:31 2026 GMT
Subject: CN=6a59aa83-cfde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:0d:5e:23:98:9c:36:6b:86:fc:b6:37:de:
55:47:8a:8f:d9:5c:0b:f0:0e:95:cb:1d:17:db:08:
46:5d:02:35:c3:44:7b:ea:f6:ff:c7:19:b9:b0:57:
e6:a8:a2:87:a3:d7:fe:f4:b1:eb:53:03:1a:6e:3e:
a2:55:40:01:ed:87:de:ec:6f:a1:a9:21:5d:91:fa:
65:76:34:b8:42:0e:90:ee:b5:7c:99:8f:f5:13:eb:
15:a8:20:5f:dc:c7:16:e8:34:1e:ab:c3:5a:77:ab:
4c:0e:94:c9:e8:e1:64:8d:6c:15:3a:7a:cb:1f:22:
ef:de:aa:2b:ab:01:00:51:a8:ed:35:32:ba:53:eb:
59:c7:4b:39:d8:d2:47:7f:ac:6e:e1:7c:5c:94:9f:
7c:60:66:1c:cd:1e:52:65:be:ad:58:44:7e:ad:d8:
ec:fb:2f:58:9a:dd:26:5c:fc:d0:cf:bf:2e:a9:24:
a4:27:87:6c:f8:e9:b0:ef:a3:ff:48:db:53:cc:76:
5a:51:e0:08:5b:33:e3:e4:0d:7f:ea:69:87:7a:d7:
5f:5e:36:ce:f0:55:26:d0:1f:6c:5a:17:12:52:3a:
45:1f:dc:d9:34:75:d1:6f:00:a8:5c:7a:41:8c:8e:
81:8d:0e:7f:57:40:b0:71:83:9a:42:1b:d3:74:bd:
c1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FD:9C:80:0B:BF:69:B5:81:41:0C:17:91:9B:2B:61:10:D7:43:AC
X509v3 Authority Key Identifier:
keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
83:f7:ac:e2:34:df:be:e4:00:01:d7:01:a3:37:58:c5:e9:4d:
c4:38:d9:4e:e8:8f:e0:72:65:89:bd:82:f2:cc:46:04:1e:3f:
91:60:b9:4e:6e:06:1e:08:86:5d:10:71:c8:fa:4d:02:fd:85:
2d:2b:36:5e:21:52:dd:25:30:54:1a:20:19:9b:03:f4:a7:a3:
4d:db:f7:3e:41:82:63:cb:40:44:cf:87:d3:45:ea:a3:05:da:
d0:64:cc:20:32:8b:5b:4e:7e:98:78:a0:c4:81:67:c7:1f:d1:
00:56:4f:41:56:16:92:55:66:3d:5f:88:f3:23:b7:69:31:8a:
8c:9a:28:fc:8c:88:91:fe:5a:c1:05:19:fc:bc:0e:a1:ba:9c:
83:37:3e:0b:0a:e3:9e:1c:1a:10:d0:08:18:83:b3:ab:92:53:
bc:0c:e0:1f:64:d3:94:b3:6a:fd:f2:52:91:6f:bb:c8:70:c3:
aa:f6:e0:d8:ee:0d:8e:58:ec:77:4d:f7:15:6a:44:24:a8:2d:
ee:30:ed:f0:de:13:35:2d:36:79:c5:0f:c0:c8:c4:c7:d5:93:
cf:ef:db:f3:d4:c3:6e:09:3c:4c:4b:79:fb:87:8a:c7:57:82:
62:80:be:e4:39:00:a3:97:28:42:b1:5a:40:15:e7:1c:cb:92:
aa:5c:27:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:15:50 2026 by rpki-client