
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
File: 15aZWndnWcQmQxeAAofr7u-0umo.mft (raw, json)
Hash identifier: W5zVj3TyCICeM9pleDnVWtgX1TCkuw/7Q5VvJeh+H8s=
Subject key identifier: 40:0E:A1:CE:73:14:92:3C:A4:C4:E6:17:BB:F7:60:61:76:43:65:7A
Authority key identifier: D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A
Certificate issuer: /CN=A91C022C/serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A
Certificate serial: 0127
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
Manifest number: 011D
Signing time: Tue 07 Jul 2026 07:02:33 +0000
Manifest this update: Tue 07 Jul 2026 07:02:33 +0000
Manifest next update: Tue 14 Jul 2026 07:02:33 +0000
Files and hashes: 1: 15aZWndnWcQmQxeAAofr7u-0umo.crl (hash: fNpw7CaITZiLyw9fRpYs2gaN6S86Jl+t9QgMffDyE2U=)
2: B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa (hash: 64GI0jvZyfRwaaUyqyoO9+bG/AmsXG/f9aCo9uCRhhE=)
3: 90405CE2D5DD11EF99075D78C4F9AE02.roa (hash: JQiJdIpN3R5SOAUVHjnNQhCnZmq0gQJLMPrdXEKGdyA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl
rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 07:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295 (0x127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C022C, serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A
Validity
Not Before: Jul 7 07:02:33 2026 GMT
Not After : Jul 14 07:02:33 2026 GMT
Subject: CN=6a4ca489-d18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:63:4b:16:dc:bf:b0:a6:4e:e9:5f:bb:91:59:
82:4c:86:33:72:07:98:bd:4f:9b:b2:4f:61:7c:5f:
c9:70:5f:61:05:47:34:83:8c:7c:d7:8d:5b:ab:28:
21:9a:7f:42:12:f7:c4:ef:7b:77:42:92:c0:fc:70:
19:b2:3b:f2:bf:26:b7:7d:dd:c2:9f:7d:65:8e:5b:
26:d5:c7:df:1e:ee:3a:87:b2:9f:8a:39:1b:63:71:
38:e6:6a:93:d0:2e:6c:d7:b1:4f:d9:ee:a9:57:3a:
ea:e8:cc:c3:26:d6:47:a7:7a:14:1f:7b:4f:a0:c3:
f9:f6:76:fb:03:61:19:22:d2:bc:52:96:77:5d:23:
6e:47:70:8f:b6:f3:f2:54:40:5b:73:f8:dc:48:91:
a2:22:0a:7e:03:26:44:09:bc:fa:44:28:80:0d:5d:
e0:f4:7d:dd:be:52:e4:ed:69:9c:32:26:37:c4:e8:
81:01:98:de:fe:9e:b1:61:ae:35:2c:5c:65:6d:ce:
2d:92:96:7e:87:c8:60:6d:0f:95:67:93:7b:df:73:
2c:0b:51:3d:0d:5b:f9:fb:be:48:20:37:9f:a6:ec:
1c:3c:78:d7:d9:e3:8e:7c:48:ba:d9:d1:37:9f:71:
3d:f4:05:c7:ae:c2:d2:a6:81:b2:22:1e:52:72:2d:
4b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0E:A1:CE:73:14:92:3C:A4:C4:E6:17:BB:F7:60:61:76:43:65:7A
X509v3 Authority Key Identifier:
keyid:D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7b:2c:a2:50:d8:10:7f:b9:a0:17:12:71:9a:a4:f6:f9:13:81:
ef:3f:30:74:2c:3f:eb:f9:17:3c:f8:b1:d3:1b:fa:13:62:8c:
ac:b7:3e:15:7d:f6:15:a0:8a:96:6b:5d:ea:da:66:4d:d2:18:
f6:ee:58:c6:33:67:22:c9:83:08:a4:15:fb:0a:14:b5:88:cc:
1f:53:b6:6d:31:06:22:d4:84:30:56:6b:45:84:78:4e:4e:64:
fd:df:32:c3:8d:f7:11:d5:58:9c:00:df:8d:52:78:49:dc:5c:
05:63:e1:c5:97:ab:37:de:01:fd:c8:27:19:34:d6:48:d5:05:
40:80:fa:ae:d1:4b:94:28:e0:43:3c:46:68:7e:46:2c:e0:86:
2b:b2:87:e8:41:80:f6:0d:00:01:e6:71:2a:97:d8:ac:76:4a:
cf:b4:db:11:61:8e:06:42:c2:2a:5a:65:d7:c4:66:df:90:09:
e8:56:03:8f:18:55:e6:22:18:c9:0c:46:f5:12:38:b3:77:16:
8e:dd:e6:3d:b8:44:34:a7:57:45:22:06:33:5d:cf:6d:58:40:
90:44:a1:a1:91:d9:44:95:d0:f7:0c:95:63:41:d3:44:da:a2:
5f:0c:01:88:c4:12:85:ca:91:09:bc:9e:42:4a:86:04:3b:76:
08:8b:4a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 13:19:41 2026 by rpki-client