
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json)
Hash identifier: 9d41J7rsZUhQCXG29ySKfrShsULCqGZo3AgwnPgMtm8=
Subject key identifier: E7:45:12:E1:8F:FB:9C:25:B3:77:E8:CC:C3:B9:78:5E:64:D8:4F:D3
Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50
Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050
Certificate serial: 06A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
Manifest number: 0697
Signing time: Mon 06 Jul 2026 23:04:08 +0000
Manifest this update: Mon 06 Jul 2026 23:04:07 +0000
Manifest next update: Mon 13 Jul 2026 23:04:07 +0000
Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: nXw7WZ/a1I0AwSLixKI3tRearUmcVpGo8I6FXqwsnaY=)
2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 3hykLcorYgLEfCJWHrkkPwMpO+Se/Lm85HODusfioqM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl
rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 23:04:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1699 (0x6a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050
Validity
Not Before: Jul 6 23:04:07 2026 GMT
Not After : Jul 13 23:04:07 2026 GMT
Subject: CN=6a4c3467-8059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bb:ed:b8:0d:7b:51:70:9e:af:2f:d7:32:e4:
4e:89:5b:bd:8f:9a:91:73:33:0f:e3:cf:63:7e:5d:
58:30:cc:d5:21:19:ed:58:e4:2e:35:04:1c:67:10:
27:14:99:5f:3f:f5:e3:4e:16:02:09:b3:a3:4c:15:
ef:92:27:65:2a:ed:6f:dd:7b:9a:f4:96:a3:de:48:
93:f7:2b:25:4d:54:60:ee:14:c3:6a:d2:17:32:61:
86:f5:7a:63:1c:1b:92:ff:6f:5c:cf:55:67:95:85:
eb:77:ae:bb:b7:be:9c:79:3b:eb:0d:c5:f1:b4:cd:
bb:5d:1b:80:e9:c1:14:2c:b5:fa:43:70:16:eb:b7:
77:7a:1f:f3:76:cb:99:ec:de:98:88:d2:69:af:af:
93:74:0c:f1:78:05:3e:16:d9:17:8b:32:ce:eb:31:
ef:96:01:88:03:37:b6:c5:89:df:46:74:b2:49:84:
e0:49:42:04:5f:c0:c9:e9:0e:da:f6:32:d9:5c:6b:
72:64:1b:71:53:60:10:c7:ef:cf:01:0f:32:fb:a1:
c5:41:df:b8:91:f9:60:dc:0a:23:5b:3d:05:a9:2f:
9e:a0:39:1a:20:12:d3:44:32:7d:0d:f5:6f:21:62:
ab:7b:31:da:ed:99:be:51:50:0b:c4:cf:aa:a9:46:
b2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:45:12:E1:8F:FB:9C:25:B3:77:E8:CC:C3:B9:78:5E:64:D8:4F:D3
X509v3 Authority Key Identifier:
keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b0:fa:3d:2d:90:fd:57:62:93:43:59:f2:a0:64:a4:b7:af:96:
38:7b:cf:03:39:04:43:40:75:e9:b6:51:e2:83:28:00:11:e0:
a3:84:23:d0:e7:90:6f:51:6b:a7:c4:d9:d4:49:6f:e7:31:38:
9d:30:a0:a6:14:f6:94:0b:4d:a3:fc:e9:8c:2d:b9:d6:52:b1:
c2:8c:8a:d3:2e:ae:76:9e:2c:13:a5:f0:4b:77:5b:cc:90:0c:
a8:b6:c4:db:8d:4c:87:0b:35:0b:79:36:d4:58:aa:c5:47:79:
dd:06:eb:67:41:d8:bc:86:c8:2b:3a:d8:b9:7c:35:45:45:7e:
19:27:d7:d4:ec:0c:ae:c8:e8:4b:77:ac:33:7e:23:b8:1c:4a:
5c:ba:80:25:61:48:4a:ea:ac:b5:fb:9b:f9:60:90:e7:b6:0d:
bb:67:e3:20:24:01:41:a6:61:a9:c4:dc:ff:d9:09:cf:71:0e:
cd:40:c6:b7:98:03:d5:99:38:42:a6:61:a7:03:7d:b2:36:47:
df:7f:3a:b2:09:13:40:dc:a7:78:1b:1e:60:e2:b4:95:24:90:
93:15:05:db:93:02:cb:aa:3b:77:e0:a0:7d:32:9e:c0:74:4d:
c2:97:42:af:60:e4:31:49:c2:19:76:63:a1:27:d7:4a:5c:48:
8f:52:1d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 10:44:12 2026 by rpki-client