
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft
File: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft (raw, json)
Hash identifier: L3pwWcZnjbQv9idjpzw5vqSwVu88YcL6l4aSAoohCxc=
Subject key identifier: C2:94:BC:35:E7:0F:CF:5A:A3:25:68:1B:3D:00:03:E0:96:B5:53:F9
Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6
Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6
Certificate serial: 2664
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft
Manifest number: 2654
Signing time: Thu 16 Jul 2026 15:45:17 +0000
Manifest this update: Thu 16 Jul 2026 15:45:17 +0000
Manifest next update: Thu 23 Jul 2026 15:45:17 +0000
Files and hashes: 1: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl (hash: HshP3ehtrKf+1QPNquvhGLp8tsIO08NIdfHf1ry4G/E=)
2: 86D7036A0E1011F1BB4320E6093D8C67.roa (hash: 1LNNXkd+Q9F2+XYaHqlpvMElvIg5HAkgkTyIWH3Jb34=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl
rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 15:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9828 (0x2664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CE6EC, serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6
Validity
Not Before: Jul 16 15:45:17 2026 GMT
Not After : Jul 23 15:45:17 2026 GMT
Subject: CN=6a58fc8d-1dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:90:fd:7e:41:63:c3:1c:b7:60:36:e0:3b:aa:
54:8f:c8:44:07:a3:b3:e8:dc:24:93:0d:70:11:0a:
7b:c0:ef:57:53:07:9e:9b:20:de:27:a0:97:83:bf:
2c:a0:55:eb:44:03:9a:e9:6a:06:11:a9:85:c3:cc:
55:41:aa:2d:38:95:39:e0:7a:96:44:77:ce:b8:59:
7f:2a:e6:e2:ca:20:79:cb:c0:dd:be:e5:10:8f:bd:
e0:07:05:24:bb:ce:30:a4:ce:da:26:84:87:95:d3:
18:53:c4:9f:d6:c7:47:c9:ef:21:f7:59:b4:41:fe:
10:90:11:5d:82:4f:a5:4e:25:11:fe:e9:3c:15:7b:
98:1e:19:fc:01:ac:ee:8f:91:9a:27:c0:96:86:ba:
af:97:18:76:fb:9f:5e:a0:f5:75:8b:75:d0:cf:08:
d7:03:43:e9:80:8d:72:50:9e:3b:b1:84:44:32:87:
07:6c:8d:61:07:4a:c8:b2:8a:f4:e1:b8:b0:23:01:
b4:a4:c4:84:74:e0:b6:17:be:f9:d2:90:1f:bf:78:
37:de:a1:09:2a:f2:88:04:9d:82:cd:30:0e:51:43:
01:9f:3f:04:f4:6a:1d:db:f8:14:97:8c:18:d4:74:
6b:25:a8:cd:c7:af:6a:bd:38:52:2b:72:89:31:7d:
e9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:94:BC:35:E7:0F:CF:5A:A3:25:68:1B:3D:00:03:E0:96:B5:53:F9
X509v3 Authority Key Identifier:
keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9a:24:8e:66:18:da:ef:7f:35:8c:fe:ef:91:af:51:8b:ae:31:
9a:5b:0f:2e:f3:ec:d1:a4:10:e1:17:48:49:7d:04:e5:ef:c8:
8e:46:49:ae:cc:ee:0b:63:5a:dd:54:db:7f:65:f7:02:a3:dd:
a7:28:3c:f3:d3:10:60:0a:af:63:5e:36:34:6d:13:dc:54:55:
b8:e1:4b:c4:b2:47:e3:6e:b4:1b:27:31:b7:4f:3b:b6:1b:e3:
00:d0:9e:d6:ef:e1:03:5c:72:a7:ea:72:23:86:86:50:25:56:
86:f0:3f:fd:13:cb:9c:b8:e5:d9:50:40:35:55:4c:d3:27:21:
81:60:1a:f4:d3:a4:90:50:5a:7d:91:c6:e2:70:52:02:bc:71:
57:22:4b:de:b5:86:be:17:ea:15:22:0d:b1:1d:55:27:5c:26:
76:2d:b6:4d:49:14:56:3c:5a:13:e7:fd:08:a7:30:43:c4:19:
92:bd:a7:03:b4:86:f8:9b:4e:a2:34:14:c0:78:b8:9e:2b:e6:
b8:8e:1b:8c:2f:41:ee:95:b3:af:da:b2:0c:01:bf:b1:da:48:
48:66:fe:5f:3e:58:8a:ae:4a:df:ee:d0:5c:a4:47:8f:08:97:
c3:c1:52:09:f4:dc:13:98:cf:38:7a:fe:13:02:6f:ba:1d:44:
a3:cb:2f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:14:26 2026 by rpki-client