
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json)
Hash identifier: cz43/ZrM+wo5/rb/d2O9IrW/A8HL3V5b6Mb7laHKab4=
Subject key identifier: CD:F6:40:36:D5:93:B9:7B:DA:6E:63:BD:1C:88:D8:21:72:5C:A9:DC
Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0
Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0
Certificate serial: 0380
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
Manifest number: 036D
Signing time: Fri 17 Jul 2026 01:32:18 +0000
Manifest this update: Fri 17 Jul 2026 01:32:18 +0000
Manifest next update: Fri 24 Jul 2026 01:32:18 +0000
Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: FZd3RPT+RXJqm+iKfANwB9XNJHBjldcAqDmsGCl82tc=)
2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8=)
3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: sBJZeZ++/x7I1pXhx5Ucb2PyYvnG4JjYuOXlXA0qZVU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl
rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 896 (0x380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0
Validity
Not Before: Jul 17 01:32:18 2026 GMT
Not After : Jul 24 01:32:18 2026 GMT
Subject: CN=6a598622-ae90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:80:cf:a0:c4:8b:6b:23:79:cf:36:42:78:6a:
e2:00:73:38:1a:02:99:10:dd:cd:c1:da:c7:5a:80:
8d:47:8c:1c:08:d4:00:e2:c5:72:32:d2:0e:ba:96:
eb:ac:e2:4d:88:07:76:a2:da:aa:6b:4a:7f:68:e5:
9b:3b:18:0a:42:26:0e:aa:b0:ca:68:55:1d:0a:04:
20:97:60:bb:56:b6:b8:a3:13:25:28:58:5e:0c:f1:
cf:de:bc:ab:1a:c7:62:4f:65:dd:ec:b4:5a:49:4a:
78:64:27:29:78:67:f8:b7:b0:9d:a4:14:f8:da:0c:
c7:ee:3d:54:14:6d:42:e4:49:10:be:ef:21:ec:69:
99:72:82:e2:f4:66:fa:c8:af:fc:55:5d:16:ff:39:
53:f6:a5:9c:b2:4d:56:b8:24:13:f0:3f:1b:d5:6a:
95:23:6e:6b:b5:5f:61:0a:98:c7:c2:9f:d5:b6:c0:
0e:12:5f:f1:2f:cf:70:67:8e:3a:e1:f7:c1:81:c4:
52:93:ab:fe:b4:07:cb:cf:d6:cf:74:e8:0b:c5:67:
42:e3:79:61:55:23:f4:cc:54:2e:60:d1:83:44:2f:
8e:5a:9f:86:d0:81:c0:f2:87:a7:20:13:ac:f4:6c:
03:c3:67:8e:7a:d0:96:0a:89:d1:6c:16:14:20:d3:
da:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F6:40:36:D5:93:B9:7B:DA:6E:63:BD:1C:88:D8:21:72:5C:A9:DC
X509v3 Authority Key Identifier:
keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f7:58:d9:14:f7:09:a7:9c:3d:a5:8f:8b:20:25:72:0f:8b:
98:ab:94:c4:26:41:e6:cd:4d:b3:66:51:11:27:bb:e9:d7:ee:
e9:f3:4b:75:73:e3:95:20:16:5e:f2:ce:a0:66:46:9f:23:b3:
0b:0c:12:d7:ca:40:05:b9:02:46:76:74:30:bb:86:87:e3:38:
75:85:c2:ee:37:23:51:c2:ba:22:cf:f0:a6:60:a1:8a:32:fa:
3e:8a:83:2d:ba:74:7b:1b:50:d5:00:58:74:bb:11:ea:c4:64:
f2:e6:d2:20:f5:40:eb:cb:3e:b6:ee:a6:7e:7e:4a:27:4d:3f:
29:07:42:66:7d:ab:c6:1b:98:15:29:80:1c:81:84:bc:1d:48:
f3:d6:c7:4d:54:d1:85:21:a7:ea:a6:7e:8e:31:e8:9a:89:f5:
5c:f4:b0:03:a4:30:8d:0a:50:2f:19:39:64:4e:cd:74:91:3f:
ea:f1:7b:a4:23:ea:19:84:d2:4e:b4:d3:2b:20:5c:87:f0:13:
a2:e7:ab:6e:f0:e4:67:09:d0:85:2c:07:ff:7d:d6:10:aa:20:
41:6f:c7:21:21:6b:f9:46:d7:ed:9c:82:f0:18:dc:71:35:e8:
9d:be:1c:5e:80:a1:c4:2a:52:43:98:8a:35:30:21:40:53:7d:
59:b8:3f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:23:03 2026 by rpki-client