
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft
File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json)
Hash identifier: oW91OAl5lWQsG+nakLhptQgnwLm9GmtsyF9zSs7eQ2k=
Subject key identifier: 3E:F3:4C:30:C0:A3:29:B4:52:8A:8C:21:3F:E5:1A:C1:1D:D6:AA:57
Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56
Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456
Certificate serial: 01C4
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft
Manifest number: 01BC
Signing time: Fri 17 Jul 2026 04:57:11 +0000
Manifest this update: Fri 17 Jul 2026 04:57:10 +0000
Manifest next update: Fri 24 Jul 2026 04:57:10 +0000
Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: rg4iz9lMml5ooYMj5asPvzz5JfgQL9uQNg2N6Sf3PSA=)
2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: Km37wq6aDw75/u5KZyWOq+MrrDlARwtAXstjS4OwvhE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl
rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452 (0x1c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456
Validity
Not Before: Jul 17 04:57:10 2026 GMT
Not After : Jul 24 04:57:10 2026 GMT
Subject: CN=6a59b627-3787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:91:91:64:cb:b9:52:02:9b:04:91:10:06:bf:
f1:fe:34:cb:49:b9:68:d0:37:3c:20:53:c7:36:0a:
8a:50:fc:34:f1:cd:51:d0:8e:d1:3a:3e:73:fc:e2:
d6:47:e2:82:4e:2e:30:94:39:fb:a9:d5:e6:f0:12:
56:89:af:38:35:f9:3c:b1:58:8b:03:72:8b:e0:f7:
d7:7c:5e:01:55:22:34:da:5c:de:cf:4c:03:14:39:
ed:cb:66:a8:f1:4f:fa:2a:40:ae:fb:51:44:4f:41:
8a:b7:2d:cc:ca:30:1d:e9:d3:17:d1:57:53:53:2e:
d3:9c:ab:4f:d6:d3:1d:2b:42:ab:61:65:71:bb:e3:
bb:e3:6b:75:de:bf:40:f8:95:6e:28:1f:aa:28:35:
cb:e6:ad:f8:8a:af:e2:a8:36:d7:08:62:a5:39:df:
c0:aa:45:46:9b:82:37:8d:43:7a:77:09:5f:4d:a6:
84:3f:d2:2d:f0:8d:78:1b:4f:44:ae:e7:34:b0:a1:
28:c0:75:87:c5:8a:6c:9a:63:2b:7e:2a:5b:c1:1d:
6b:02:62:14:d9:df:96:a1:d1:e0:1d:53:f9:2b:04:
d3:a1:85:02:0c:55:30:55:6b:1b:20:ef:fe:7b:04:
16:22:0e:3b:55:db:cc:93:92:15:69:e8:aa:e3:97:
3d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F3:4C:30:C0:A3:29:B4:52:8A:8C:21:3F:E5:1A:C1:1D:D6:AA:57
X509v3 Authority Key Identifier:
keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a2:b5:ee:e8:4d:73:91:9b:a4:08:23:1d:a3:05:21:a9:7e:bc:
bd:3c:98:6b:b2:0d:5c:6f:3c:2e:f0:f6:70:5c:9c:2e:c2:06:
ed:19:9a:46:a8:c8:6e:16:c9:32:fc:7c:cd:cc:05:7b:20:11:
c9:fb:d9:f5:f4:5c:83:f9:25:ae:95:c6:4a:90:1e:34:c8:ae:
61:4a:47:d0:42:0a:66:36:ff:74:02:24:3f:de:12:f8:ba:42:
df:87:e2:44:34:df:cb:ce:d1:46:78:af:e5:1c:7b:78:ed:38:
6c:20:0f:f0:d7:4d:92:50:10:36:ae:18:14:4c:78:2a:a2:d7:
4d:ae:e9:c4:7c:1c:6d:37:84:59:73:5e:95:1a:d5:07:4f:b9:
4e:b3:e7:df:3b:4a:42:c0:b8:57:ac:0f:5a:07:71:d1:59:05:
87:34:d7:51:ae:7c:54:f7:0e:67:fa:91:2c:42:2b:e6:ea:b3:
b5:c2:de:7c:ea:3f:ee:74:d2:e7:4d:2a:bf:a3:2b:a1:86:9b:
d8:76:d3:84:5e:45:69:1c:e9:46:55:32:d0:03:83:cc:7f:7b:
87:e3:21:b4:90:9a:b2:93:43:e2:94:8f:37:25:e7:03:d7:e2:
f3:55:1f:08:db:e4:49:13:32:db:89:bf:4b:86:ed:0c:16:81:
fc:5e:d5:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:45 2026 by rpki-client