
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft
File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json)
Hash identifier: rdya+YTQzRzl177P40SPFYIcJMk7SzBkjxU3UpgbuVM=
Subject key identifier: 3A:8D:21:DC:34:70:58:D1:98:F3:A7:07:6A:C9:88:96:22:3B:FB:B1
Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26
Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826
Certificate serial: 1439
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft
Manifest number: 142A
Signing time: Tue 30 Jun 2026 17:08:13 +0000
Manifest this update: Tue 30 Jun 2026 17:08:13 +0000
Manifest next update: Tue 07 Jul 2026 17:08:13 +0000
Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: 9iYkjHg+2HM1IHIYaG8uKSr6h4nOdZDLtPujuzNm/us=)
2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: 2PmqHELB1hwleGl17N3DUTadd9q9hQXwA/8mpl3xfuo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl
rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 Jul 2026 17:08:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5177 (0x1439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826
Validity
Not Before: Jun 30 17:08:13 2026 GMT
Not After : Jul 7 17:08:13 2026 GMT
Subject: CN=6a43f7fd-b66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b9:7c:d1:2a:36:1e:e3:2d:d0:63:83:01:a5:
41:d6:a5:fc:d2:ec:4b:66:7d:2b:38:5a:7d:4b:f0:
c3:6c:25:d4:82:c7:f7:77:ee:4d:f6:a0:df:83:76:
e6:45:04:62:cc:ef:e5:f5:95:25:f7:05:ac:66:f1:
6c:0c:b6:97:24:9f:2e:90:3b:50:e2:3d:d5:98:48:
f8:06:33:69:60:de:a9:f6:c1:2c:18:b8:54:39:ca:
3c:e2:b4:84:76:66:3d:ed:89:1f:41:ab:3e:f0:fa:
93:50:65:fc:4d:41:cc:da:f9:f2:49:80:73:b8:49:
60:b2:40:8f:18:6f:7c:dd:61:5c:62:c8:3a:e1:a0:
90:9b:b0:9a:fb:28:48:80:c8:3a:43:d5:ac:54:31:
0f:c5:49:df:df:08:04:f1:47:36:15:e5:ee:7d:9a:
1d:34:70:13:0b:1d:a8:52:bf:69:e1:2c:cc:db:91:
f5:e9:89:8c:4b:3f:62:03:b1:f5:93:9f:1a:ee:51:
ac:f7:5b:43:69:3f:3a:7e:cc:b8:af:07:b9:8f:e1:
e8:5c:15:37:46:fb:f8:99:f5:a7:4a:a7:24:35:45:
4f:1d:45:08:e3:b6:e2:44:45:f6:2f:fc:e5:6e:82:
63:8e:55:45:5d:2b:9e:3d:dd:01:33:06:c7:92:c8:
c1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8D:21:DC:34:70:58:D1:98:F3:A7:07:6A:C9:88:96:22:3B:FB:B1
X509v3 Authority Key Identifier:
keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
88:a9:40:5e:44:9f:03:b8:8c:88:dd:66:72:ae:18:2f:84:ef:
c0:16:6f:4a:e2:d0:af:36:5a:f8:02:28:ff:ae:95:b8:26:06:
6e:c9:f3:5d:ff:70:34:3d:03:c2:25:d8:7e:1d:1b:c5:39:0f:
0b:b6:d8:a9:fb:68:e5:05:88:1e:00:bd:a6:7a:e3:cc:59:2e:
08:01:11:d6:20:0c:e7:40:71:40:8f:90:4b:2f:37:e2:c8:0d:
c6:f8:9f:ca:6c:11:11:aa:a4:73:45:66:73:5d:6b:d1:9b:8b:
c6:b9:15:73:78:33:dc:f2:9a:05:da:2d:a1:a7:35:c4:c2:eb:
ca:29:d5:75:f0:ad:81:44:d0:ee:36:dd:7d:ff:1c:fc:b2:c6:
e4:ef:6e:7f:6c:2e:91:79:b4:3c:e5:e7:a9:dc:f3:b9:8b:bf:
57:00:43:4a:f6:44:0c:dc:f0:75:81:23:66:14:14:4c:9f:eb:
4a:f7:cc:8c:28:54:03:12:5d:6e:a1:e4:5e:65:86:a0:21:ae:
40:d8:ea:a5:4d:6a:fc:94:62:89:2e:94:67:b7:53:94:a1:38:
f7:86:f0:15:a3:31:b2:f4:29:98:a1:1a:81:1a:68:c3:78:da:
a1:13:f7:5b:63:a0:a9:68:80:1d:ae:d0:3f:ee:70:23:85:d5:
e6:0b:d3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 09:02:35 2026 by rpki-client