
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
File: hxSXyIUOQWJXlcT42UXHs9BBbB8.mft (raw, json)
Hash identifier: Ka48dnc4iAZxx5svHSP+NqM3+uP69JNvsVumE96yW28=
Subject key identifier: 3D:15:75:F6:6C:49:DA:A0:4B:C8:FE:1B:6B:1D:0E:84:A4:63:DF:64
Authority key identifier: 87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F
Certificate issuer: /CN=A91C6825/serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F
Certificate serial: 06FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
Manifest number: 06F5
Signing time: Sat 04 Jul 2026 22:25:36 +0000
Manifest this update: Sat 04 Jul 2026 22:25:36 +0000
Manifest next update: Sat 11 Jul 2026 22:25:36 +0000
Files and hashes: 1: hxSXyIUOQWJXlcT42UXHs9BBbB8.crl (hash: Ua+PXvLLaw6RFRiw/xqYf4UaWztu0oF5gVxoW4bdR6Q=)
2: 925B815E9ABE11EBA445A74FC4F9AE02.roa (hash: 5YAjbk8gVmeDfdIGGQU28GyyYyx56OcJBfHArp8itRY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl
rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 22:25:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1789 (0x6fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6825, serialNumber=871497C8850E41625795C4F8D945C7B3D0416C1F
Validity
Not Before: Jul 4 22:25:36 2026 GMT
Not After : Jul 11 22:25:36 2026 GMT
Subject: CN=6a498860-2457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:24:3e:00:7e:c8:e4:f9:f2:e1:98:96:c8:e8:
a7:f7:73:cc:7c:26:70:40:be:f0:79:86:50:23:71:
36:41:22:6a:6f:71:b5:34:06:51:a7:fd:44:13:f9:
d5:8c:40:54:64:29:f7:65:c7:6e:46:98:b5:87:42:
27:5c:f1:f9:d1:12:b1:92:70:e1:cb:bc:d8:14:59:
17:e1:13:88:68:95:19:28:69:25:60:6b:04:3f:74:
d3:46:49:35:7c:26:1e:dc:9c:4c:95:13:3a:eb:5c:
1d:48:9c:54:d2:36:b2:c7:ba:c5:f4:c7:da:6f:c2:
b3:88:25:9a:69:f1:1d:1f:79:ec:74:b9:21:af:14:
5d:61:98:33:d0:9f:fb:f0:6b:41:09:26:29:41:e5:
b0:b1:14:af:ad:cc:c7:56:8c:8b:db:98:86:72:29:
44:70:d2:9d:b1:5d:20:fd:35:48:58:ae:3f:e3:c0:
c7:de:0e:12:14:5e:70:a7:43:00:96:ce:d1:60:0a:
d4:ef:b5:fa:e9:31:08:9f:de:3b:10:79:3a:c4:56:
18:71:62:50:b0:02:5a:82:1a:fc:52:8f:b5:04:68:
78:e4:8e:fc:9d:e8:bb:73:b6:44:13:19:fc:62:09:
02:f6:35:dd:37:41:2b:65:aa:bd:41:fd:b4:ac:71:
78:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:15:75:F6:6C:49:DA:A0:4B:C8:FE:1B:6B:1D:0E:84:A4:63:DF:64
X509v3 Authority Key Identifier:
keyid:87:14:97:C8:85:0E:41:62:57:95:C4:F8:D9:45:C7:B3:D0:41:6C:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hxSXyIUOQWJXlcT42UXHs9BBbB8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6825/1AA90FB69ABC11EB900A164CC4F9AE02/hxSXyIUOQWJXlcT42UXHs9BBbB8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b6:40:eb:45:e6:ab:74:2b:77:56:64:6c:a4:41:b5:98:68:bf:
e4:3d:05:fa:d3:5a:cb:21:5b:b7:27:e8:49:f9:59:36:80:f7:
89:a7:6f:65:5c:2c:fa:42:be:42:0d:21:34:a8:d0:83:4d:6e:
91:61:7b:af:2d:19:d1:bc:15:cb:f8:bc:05:f1:ae:75:8f:d9:
fd:33:b3:ac:56:95:bf:e0:57:7a:5d:4b:d1:15:a4:14:66:42:
72:c9:08:96:57:08:2c:8d:a9:e1:e4:0c:85:5b:22:f7:ce:28:
40:52:77:8f:02:1d:e9:c7:b6:0d:1a:18:6f:c5:99:85:13:f4:
75:a4:d2:91:da:58:ab:8a:7e:3d:37:eb:20:53:1d:9a:af:6c:
31:6c:f6:e9:b5:e3:73:96:92:6d:84:ac:d3:52:b0:4d:3c:57:
a1:8e:3b:04:76:e2:bf:54:34:2b:87:5f:d2:10:23:ef:43:43:
76:35:40:4e:e9:13:4d:cb:ba:00:57:a9:0e:bb:3d:fc:e1:88:
a4:52:3a:83:59:6f:ee:7a:96:c7:7c:21:44:99:3e:d7:ca:3b:
c8:ed:32:93:49:f2:fd:ae:d8:cc:b5:f8:92:46:0b:4f:9c:80:
fe:3c:35:82:6f:05:f2:cc:d8:ca:4b:88:0b:d1:39:7c:6b:3c:
ac:b6:37:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:20 2026 by rpki-client