
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json)
Hash identifier: 1LIRnf4HoIiVXi+dQEzyEwBIAV476V2jTh9MdKiKuPI=
Subject key identifier: E1:C9:85:93:F6:CE:9A:5C:84:46:D1:36:7A:AE:51:86:00:21:78:F7
Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66
Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766
Certificate serial: 0125
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
Manifest number: 011D
Signing time: Fri 17 Jul 2026 06:58:14 +0000
Manifest this update: Fri 17 Jul 2026 06:58:14 +0000
Manifest next update: Fri 24 Jul 2026 06:58:14 +0000
Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: ssr/M7hmVuMDpwXXZsr5FeaxlHIZIO5sIu9Tk1R3ENU=)
2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: BF86bk5wE6Zr1m3LZ6kF7qlbs43Gmk6OeQj3ok60wVo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl
rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:58:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293 (0x125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766
Validity
Not Before: Jul 17 06:58:14 2026 GMT
Not After : Jul 24 06:58:14 2026 GMT
Subject: CN=6a59d286-1af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:95:b1:21:a0:40:a0:46:6c:9b:41:15:52:33:
dc:7e:aa:18:ac:43:8e:5c:55:3a:46:a0:58:8c:26:
3d:00:4b:d5:8c:20:02:4e:e3:26:68:7e:38:9b:21:
78:ca:9f:40:18:8e:1d:77:25:b9:fd:91:79:63:d1:
0d:17:5a:d8:0a:c6:46:6e:f3:ef:fa:9d:c6:d6:7f:
84:80:bb:fa:2a:87:60:ea:91:3e:ae:b7:88:3b:e8:
2e:89:47:69:b0:93:2a:f0:b8:e8:cb:af:88:20:a4:
d5:00:32:6b:e2:31:ec:eb:22:16:40:cc:03:1c:85:
b7:dc:4e:b6:ae:21:61:8b:54:90:ff:b8:0e:52:a2:
2b:db:f9:0c:9a:91:70:f7:bd:22:3e:e2:ed:52:29:
91:56:44:93:c0:21:78:d9:7a:f8:86:3b:51:37:00:
ed:c1:84:f0:87:07:d5:85:6e:b2:56:27:19:1a:de:
a2:8b:fa:2e:3b:f7:3c:32:e5:be:b2:ef:5b:4c:31:
da:31:f6:d9:f6:7d:3f:12:c6:4e:d9:ab:72:da:6f:
46:43:24:cd:67:41:8d:22:b6:92:43:0e:1a:2a:f2:
e1:ae:bf:85:b6:14:63:fd:16:8c:5e:30:9d:21:ad:
a0:e2:8b:85:89:e4:22:3d:e1:81:dc:e3:ac:f9:dc:
fe:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C9:85:93:F6:CE:9A:5C:84:46:D1:36:7A:AE:51:86:00:21:78:F7
X509v3 Authority Key Identifier:
keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6b:84:fe:1e:bb:89:e1:ec:38:7e:c8:a4:fc:c5:01:8b:b5:f1:
f5:45:9a:86:8d:d4:67:72:f5:c3:5a:5c:cd:07:58:90:1d:d1:
25:06:46:78:93:09:85:71:a9:3a:8d:b4:21:74:6a:70:ce:e9:
4b:46:29:37:77:96:6e:94:e0:b9:54:5c:c9:bf:89:da:f1:fd:
84:01:d8:88:03:a3:12:2e:31:9e:40:e6:14:47:ee:9d:e6:55:
a5:29:7f:11:3f:d5:8a:b0:ec:f9:bc:a2:1e:57:fb:a5:51:cb:
78:a1:c2:af:bb:29:7b:17:2a:9f:d3:77:33:dd:11:ad:ef:f0:
fd:ab:fe:6d:ca:73:6b:34:f5:36:c2:9c:f2:8e:94:f7:6f:d6:
a4:3f:63:cc:68:13:7b:be:87:a9:8c:89:53:4c:41:f4:17:7f:
98:7c:0e:7e:da:e8:81:1d:80:eb:a6:91:df:59:d0:b5:06:95:
90:8b:a7:42:3b:29:ee:b2:dd:c2:9a:00:dd:ca:c3:1c:60:ac:
83:7d:e1:8a:f8:eb:dd:82:c1:88:71:12:1d:2b:50:ad:ba:a9:
43:61:f4:7f:0b:b9:ab:88:b3:13:6a:76:7c:b3:5d:b6:5a:40:
9c:8f:bc:25:42:b2:68:5e:72:b2:77:c3:89:eb:92:9d:16:de:
6e:b6:5c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:24 2026 by rpki-client