
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft
File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json)
Hash identifier: s91Kksn1X3EbRb9WgBAq/MSPyy9QRFtBLU4JS08YpgY=
Subject key identifier: 75:A8:35:12:97:32:9D:E8:6E:F6:5A:62:8E:9B:22:E2:FF:64:5D:87
Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA
Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA
Certificate serial: 08D1
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft
Manifest number: 08B8
Signing time: Thu 16 Jul 2026 20:50:07 +0000
Manifest this update: Thu 16 Jul 2026 20:50:06 +0000
Manifest next update: Thu 23 Jul 2026 20:50:06 +0000
Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: b655SKa4VtnsLzXbSgK45+7x4MG9ien89Op17LTT3g8=)
2: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: Agm1iHBSDHpN64vkTSxuS0Cc6JpxKn9+gu3qk14vA4A=)
3: 1229795E652C11EB9B039023C4F9AE02.roa (hash: GJUGEPZQBd+of4IF8rrVMeNhftE2HSnPOO2CkzhhVYM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl
rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 20:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2257 (0x8d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA
Validity
Not Before: Jul 16 20:50:06 2026 GMT
Not After : Jul 23 20:50:06 2026 GMT
Subject: CN=6a5943fe-b81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:43:b7:91:2c:2a:71:4d:4b:1a:ff:57:cd:
4b:74:ec:c2:e2:db:d3:07:30:4c:c6:96:49:47:3c:
57:ee:12:b4:27:de:fd:e7:d0:34:47:7f:69:52:3c:
c4:3a:a0:96:74:5b:c3:dd:2e:1f:bc:cb:8f:37:fa:
cd:64:ab:32:79:d6:dc:50:9c:84:62:0e:e6:a9:ca:
0d:de:ba:b4:f0:f4:4f:93:7a:ec:98:8b:8d:76:cc:
98:22:5b:9f:a2:a2:b8:8c:e1:83:97:ca:0c:c5:64:
6b:9e:7d:d0:21:22:ce:5b:0e:f2:d4:50:86:44:8e:
fa:e9:c6:d9:d4:75:d1:e6:78:5f:50:f0:b3:81:8c:
6d:89:d0:24:84:29:7b:05:80:02:1d:84:61:a4:53:
a9:c7:3f:30:fd:eb:67:93:33:49:8b:48:cd:95:c7:
d0:96:90:6f:ca:c8:e7:e0:ef:34:8d:cd:3b:02:90:
ac:4a:a0:d7:1b:54:6c:c6:34:36:5c:b8:aa:ad:05:
c5:b7:3c:65:84:26:8b:ab:14:72:7c:ab:33:5c:82:
d8:d0:1b:88:3c:9b:16:24:e2:3c:b8:b3:92:76:b1:
db:47:98:4b:4a:85:35:85:c6:3e:bd:e0:9f:2d:0c:
ba:18:cf:eb:1b:cf:9c:00:74:5f:23:5c:64:16:fe:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A8:35:12:97:32:9D:E8:6E:F6:5A:62:8E:9B:22:E2:FF:64:5D:87
X509v3 Authority Key Identifier:
keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
25:cd:d7:60:6d:66:d5:64:31:78:8d:d2:68:92:8e:39:e5:09:
38:c7:aa:a9:02:b5:a2:10:36:91:75:66:d7:00:ec:c9:27:3e:
74:a9:51:57:6d:6b:09:d3:cf:c3:f9:42:5c:6c:40:b2:ac:c8:
16:78:40:79:1a:c1:87:80:44:a5:ad:30:c3:da:0b:72:70:1a:
d9:33:13:b6:f7:14:10:ae:18:a0:7e:2b:f8:73:e1:66:39:f6:
03:34:eb:d9:98:c3:00:37:bd:40:1a:16:c8:f8:3d:1b:54:3b:
05:e0:05:3f:15:27:3d:28:dd:5a:d9:3c:98:64:9a:a8:9a:12:
1e:35:dd:f0:d2:07:3d:66:e1:0a:ed:8c:33:c5:89:8d:9f:57:
56:4a:f7:fe:a2:a6:ea:9f:48:e2:f3:8c:d8:64:14:e7:1b:81:
f6:83:4f:70:8c:9e:0e:92:c7:3a:c3:47:a4:fc:55:52:48:24:
06:41:3e:64:f9:b2:d2:51:80:0f:eb:39:3c:35:34:0d:fb:f7:
3a:fa:d7:61:dd:2e:8a:a4:6c:8d:fa:16:ae:9b:ff:ef:2d:d6:
bb:ff:34:65:2e:cb:64:9b:0f:33:52:ed:77:70:c3:d4:c3:2d:
80:ae:ac:f9:de:b5:87:53:37:15:9e:45:8f:b8:71:92:24:10:
cd:49:c3:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:21:36 2026 by rpki-client