
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft
File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json)
Hash identifier: IMHkNCqqdg6xfsUpLDsozqbBS5dlZa2XmF9+yHSNwnI=
Subject key identifier: 2C:AB:C3:5F:A4:0C:85:36:97:60:5A:C7:EB:B3:AB:47:68:BB:07:4F
Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16
Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516
Certificate serial: E2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft
Manifest number: DE
Signing time: Fri 17 Jul 2026 07:46:42 +0000
Manifest this update: Fri 17 Jul 2026 07:46:41 +0000
Manifest next update: Fri 24 Jul 2026 07:46:41 +0000
Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: YxsDxw8dovlTRBqMILxIbG5lr8qDuOlGlTgcDC8EiLg=)
2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: LQJzwkclBmwOmL2YkraTcankSfQmcjnSpIupRPPZZKI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl
rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:46:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226 (0xe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516
Validity
Not Before: Jul 17 07:46:41 2026 GMT
Not After : Jul 24 07:46:41 2026 GMT
Subject: CN=6a59dde1-32e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:f1:00:83:c0:fa:93:80:e3:a4:7e:5b:71:
d3:bc:f1:55:bc:bd:a0:25:5b:ed:8a:14:f1:d4:cc:
35:04:3e:f2:38:55:43:cc:9b:07:71:ad:a7:ed:9f:
2c:12:e3:9c:0c:9d:f3:7e:79:32:f8:9d:27:4a:20:
f1:f9:be:b3:a4:17:8b:03:e0:97:bc:62:51:fc:b8:
b0:78:9b:29:7a:4f:f1:48:8a:30:ca:a2:47:ec:48:
07:38:97:bf:3e:36:1d:e5:e0:32:58:3b:5b:0d:16:
cb:0c:3c:dd:bb:ad:8e:43:62:66:20:ef:54:ee:83:
cd:96:d0:0b:02:4f:d2:a4:2e:0e:4f:a9:53:d1:6d:
59:1a:d8:9f:c6:d5:3c:c7:ad:28:ea:14:b8:7c:7f:
58:5e:00:8d:f8:d5:2f:7a:fb:fc:9f:70:d4:96:cc:
79:6b:e4:0d:99:e9:61:ad:7a:80:bf:ae:49:6e:7e:
4a:bd:88:b9:96:fd:f5:3a:c0:f2:a8:46:dc:89:a1:
cf:18:28:e3:3f:91:2f:e6:69:16:a9:7a:01:a0:38:
4e:99:0f:42:b5:0a:15:a4:41:8b:0a:be:c3:e8:d7:
79:3f:e2:f3:7f:6a:e8:97:c1:70:06:e4:ba:25:be:
3f:be:45:8a:8f:0e:06:a0:d5:e4:05:80:fc:8d:3b:
44:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AB:C3:5F:A4:0C:85:36:97:60:5A:C7:EB:B3:AB:47:68:BB:07:4F
X509v3 Authority Key Identifier:
keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b6:86:54:b6:7e:1d:61:38:fc:67:35:26:14:89:f0:ba:77:87:
c6:e4:b9:75:11:26:cf:5c:8b:97:a6:5b:8a:9b:ef:7b:17:e1:
d4:d1:73:31:b0:18:d2:b6:96:7b:bd:eb:59:04:c0:7a:63:af:
5f:46:c6:1c:2e:52:a7:85:f3:99:6b:e6:da:11:ba:70:b1:10:
c7:50:30:33:1f:28:f1:50:70:d0:16:33:7a:9e:cc:6c:33:6c:
30:0f:86:cd:26:d1:c9:98:94:c3:40:ed:ce:2c:c1:33:fa:70:
f9:49:cc:48:ff:11:57:03:af:3a:91:87:46:c4:03:50:0d:14:
19:45:06:57:b8:13:b8:73:9b:20:f5:bf:9e:b5:de:13:51:22:
2b:81:b0:ff:c8:ac:b4:36:92:23:ff:f0:6f:60:ce:2c:74:aa:
a1:81:dc:2b:b0:c8:da:22:bc:f0:2d:d2:73:6a:47:5a:fa:ff:
18:c6:25:93:b3:41:99:1d:4c:24:f6:9c:b7:60:0a:78:de:f3:
3c:dd:1f:ef:0b:e7:8f:e3:d9:89:e2:e8:33:3e:56:16:13:4a:
0b:7e:10:9e:dc:be:7c:96:d3:b6:1e:e4:63:f7:8d:00:23:b5:
55:6d:b2:42:17:76:8d:0c:7f:e9:46:5c:5a:b2:42:ee:66:cf:
53:43:e2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:19 2026 by rpki-client