
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft
File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json)
Hash identifier: 70GDek4RwQZAGAtm13m01sh8cRz73XCPJkD8VzqXAWI=
Subject key identifier: 56:80:4F:EE:65:0D:C7:19:9D:24:42:24:25:FF:DB:BC:96:09:93:DE
Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8
Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8
Certificate serial: 0145
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft
Manifest number: 0140
Signing time: Fri 17 Jul 2026 06:32:05 +0000
Manifest this update: Fri 17 Jul 2026 06:32:05 +0000
Manifest next update: Fri 24 Jul 2026 06:32:05 +0000
Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: LOcgUTwA3MNcs6qZuLzPmVttNqdKmLmi/HciP/evTAs=)
2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: aoBTkJouVxyNkkgtw1vmV8sS1BnP7mpfp25E9TCfROM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl
rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 325 (0x145)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DD584, serialNumber=A0FA23776D544C877946CAC7C487746519937DB8
Validity
Not Before: Jul 17 06:32:05 2026 GMT
Not After : Jul 24 06:32:05 2026 GMT
Subject: CN=6a59cc65-78f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:69:72:a9:ad:6b:a2:17:64:95:26:9c:41:d0:
11:b5:3f:38:e9:e4:1b:1c:83:16:93:80:91:1e:7f:
65:ac:2f:f7:7d:a1:fb:cf:f6:ad:c4:d4:e7:fc:1e:
3e:ff:10:f8:6f:32:40:5f:47:7f:9b:c1:04:4b:9b:
10:1b:41:bb:64:cd:2d:62:07:2b:0c:cd:88:cb:c9:
4c:2b:47:26:32:4f:4d:2b:b9:39:a7:c0:27:25:88:
1d:fc:87:91:22:20:a3:30:18:76:ae:bc:22:a4:51:
21:ea:97:51:75:8d:d5:9d:dc:e8:16:16:5e:36:06:
76:b2:76:c8:fd:4c:48:99:35:04:4a:a9:44:ce:22:
b9:af:a6:dc:4c:47:e3:73:1c:a3:c2:d8:af:01:ea:
61:3c:23:8d:36:b0:16:45:99:df:1b:e0:a1:3d:ae:
81:11:dc:29:35:6a:f6:6a:96:50:59:c8:a4:84:1d:
0b:f4:83:c1:4d:3b:eb:67:00:fa:73:6c:04:c6:e1:
89:97:bc:43:90:62:3b:2e:26:d5:07:b1:b3:27:b0:
3d:de:7d:06:7e:cc:38:3c:62:8c:28:5b:42:76:88:
d2:d7:ec:50:26:75:67:ef:b2:ad:40:32:67:a0:54:
c2:1d:e4:7e:22:98:e8:f2:ed:66:65:01:b4:de:8c:
b3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:80:4F:EE:65:0D:C7:19:9D:24:42:24:25:FF:DB:BC:96:09:93:DE
X509v3 Authority Key Identifier:
keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
23:2b:10:2f:d9:e3:7b:ba:90:88:88:87:40:8e:86:24:6b:a7:
8c:a6:b8:b8:f0:f2:da:b2:6b:cc:42:fb:27:c1:dd:c9:51:db:
35:48:10:39:29:a6:da:02:37:44:58:55:4f:9b:24:b8:11:a5:
fc:d5:3f:bc:23:62:c6:a6:c2:5b:19:3e:57:22:53:c1:62:7f:
8a:39:15:9e:30:40:e0:e8:f6:32:f0:ca:3e:98:2a:f3:4b:b2:
47:9f:dd:a4:f9:25:03:5e:69:39:a0:89:e7:77:92:2e:ab:6f:
f1:a9:a9:fa:b1:50:15:e8:aa:34:a5:f5:41:24:f6:26:52:b5:
4c:b6:e7:dd:5a:7d:27:ca:0b:cf:89:a1:94:43:3a:fa:d7:75:
78:16:44:75:68:29:50:ad:08:73:4c:ff:46:12:7b:2e:a2:eb:
ea:8a:1d:66:cb:eb:06:ea:3e:5e:55:ea:a3:dd:f9:ce:c2:36:
20:b2:d8:e1:8c:01:29:53:38:0b:5e:51:df:c8:dd:c8:b5:0f:
6d:15:00:7e:3d:6f:40:ab:6e:93:88:2b:cb:58:7c:88:1a:f5:
b1:1b:a8:a1:77:1c:d8:a0:1e:83:fc:6c:50:c5:52:a7:e9:e1:
cd:20:e2:e8:bf:fc:34:dc:c2:4e:6d:30:5e:10:83:58:98:0f:
91:22:f0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 13:33:29 2026 by rpki-client