
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft
File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json)
Hash identifier: f1Ndk5s7hFu2/Mzwg5A8Lh/9JSY3sO0k8+cWD3UfgXc=
Subject key identifier: C4:99:0A:5A:1B:01:B3:17:1E:93:07:30:86:33:DE:7C:8A:4B:38:09
Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68
Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368
Certificate serial: E7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft
Manifest number: E3
Signing time: Fri 17 Jul 2026 07:43:33 +0000
Manifest this update: Fri 17 Jul 2026 07:43:33 +0000
Manifest next update: Fri 24 Jul 2026 07:43:33 +0000
Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: B9pEaethPF3+2Qq+zls4n9hw9WuHQl0dAmff1rcOo5k=)
2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl
rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:43:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 231 (0xe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368
Validity
Not Before: Jul 17 07:43:33 2026 GMT
Not After : Jul 24 07:43:33 2026 GMT
Subject: CN=6a59dd25-2b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:fc:b1:71:0c:a0:41:16:49:38:f5:c2:4d:
2e:06:b5:5c:42:08:d9:8c:27:bc:1d:0b:64:ca:66:
8d:5f:88:16:d3:b9:5a:77:98:55:90:a5:d0:18:de:
0f:48:33:31:c4:49:3e:0b:43:97:99:80:26:ed:72:
5b:26:34:5b:2f:0d:31:52:de:c8:b8:ed:63:63:71:
d0:a1:25:6a:fe:02:17:23:f5:49:8e:6a:d2:4e:90:
07:44:1a:3a:cc:b8:d2:cf:23:c7:b3:e1:70:83:76:
41:8c:79:a3:f1:76:2a:1e:70:e7:3e:05:84:c8:fc:
ae:aa:13:3f:24:04:b9:0f:e5:71:f9:44:4d:d7:8f:
e7:cb:96:e7:c2:f8:cb:e5:69:3b:01:9d:09:e8:1d:
33:c7:04:a6:8c:46:6e:f2:a3:41:65:ec:07:b7:6e:
50:8a:5a:43:14:7c:dc:30:41:29:f6:e1:c8:cd:f1:
57:86:b3:a4:c0:27:cc:e1:05:47:17:1c:e4:cd:2e:
44:70:6d:bf:68:b4:69:9f:40:2a:96:90:d5:c1:08:
49:c3:6b:7e:e8:85:7c:1d:7f:f9:28:44:b5:91:10:
9b:64:01:e8:e4:01:b1:4f:4c:fc:df:9e:cd:43:3c:
37:00:5a:01:fb:6f:f0:4f:79:5d:3d:35:f0:1e:7b:
dc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:99:0A:5A:1B:01:B3:17:1E:93:07:30:86:33:DE:7C:8A:4B:38:09
X509v3 Authority Key Identifier:
keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
11:aa:f7:e1:fc:c2:ae:4a:b5:0a:3d:13:0d:fb:25:8f:fa:4f:
78:4d:51:7a:85:b6:c6:39:62:e0:bb:be:48:7c:b8:67:a0:08:
1f:fd:14:1f:2e:d3:a2:37:09:f6:86:15:ec:73:28:39:55:99:
73:25:e4:94:ba:2a:55:3f:b3:8a:b1:84:39:16:3e:0a:94:59:
07:83:37:0f:73:bc:89:4f:7c:50:f0:e5:2d:bd:77:d0:8a:2e:
82:98:59:bb:b5:48:65:ef:ba:64:97:a8:68:bc:89:19:25:fc:
85:d9:99:7e:4c:e9:af:02:2d:c0:91:d8:e2:68:ef:65:a3:f2:
8d:15:9d:bb:03:6b:56:9e:99:f5:47:88:48:9a:1a:ba:bd:3e:
f5:8d:53:ee:ec:95:41:99:aa:74:5f:a1:8f:43:e0:c1:97:5f:
ba:8d:70:2f:8c:1c:9c:7f:ac:9b:27:4e:0f:02:48:14:52:ec:
7a:f9:6f:8a:19:89:75:3c:66:79:7e:b8:1f:47:6c:9a:2e:57:
c3:19:3f:24:d2:e8:bc:95:0d:cb:7a:82:a5:7e:bd:fb:7d:5a:
2e:86:0d:26:ae:ef:d8:ad:99:b1:ef:3b:9f:bb:fa:bb:43:8d:
3d:51:81:37:ab:ac:4e:45:5d:1a:6c:9f:85:c0:27:2d:c9:58:
4e:4f:6c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:21 2026 by rpki-client