
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft
File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json)
Hash identifier: GCQHB8y0iq4g2hBrM5XHRH3jtsL9wUNvgCDqDFLAgNw=
Subject key identifier: 29:8F:50:4A:B0:99:6F:B8:F2:73:BF:9D:CE:7F:08:1D:6B:FE:6F:E1
Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F
Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F
Certificate serial: 015C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft
Manifest number: 0150
Signing time: Fri 17 Jul 2026 06:27:02 +0000
Manifest this update: Fri 17 Jul 2026 06:27:01 +0000
Manifest next update: Fri 24 Jul 2026 06:27:01 +0000
Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: iEOvxuns3KYfyV59yJqyghKq0nPPa3fJ/XVsv64uTQU=)
2: E12300F27DE711F1A1F9DA6963A30FBC.roa (hash: CLjO1Bnvk0710BZL66L/XRdRq4LOS+bYZOmQijT3wNE=)
3: 01C9DEFC7DE811F1B49B5A6A63A30FBC.roa (hash: Ga1gZ7IxHn2IC+iE25UbgfqUt3X5U/1/OgUyd7yyVT0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl
rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:27:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348 (0x15c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F
Validity
Not Before: Jul 17 06:27:01 2026 GMT
Not After : Jul 24 06:27:01 2026 GMT
Subject: CN=6a59cb36-2c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:bd:44:c0:b0:20:68:d1:d8:fe:d3:82:2a:
13:8b:f4:a1:11:37:37:49:c6:49:22:50:73:8e:03:
f8:fd:c9:2b:38:a1:28:4c:47:cf:65:a7:e4:bb:0f:
b3:4d:12:09:be:11:86:a5:3a:63:21:52:bb:40:df:
06:14:1c:6a:ea:0b:a3:ee:39:2e:eb:a8:e8:52:d0:
52:8e:f2:c9:01:01:98:56:e5:57:e6:88:e9:e0:9a:
86:e3:33:0d:55:9c:bf:9d:31:e9:0a:14:06:22:38:
9b:68:df:07:bd:ec:30:14:28:bd:b0:12:76:04:29:
b3:0c:2a:20:26:c3:4e:67:37:5d:b0:c3:ff:ca:bc:
fb:ab:bc:f6:a8:85:0e:85:61:ec:44:05:4b:be:f4:
dd:5d:47:41:d9:f0:8e:07:f1:2a:46:55:84:ca:e5:
b7:a7:12:0f:f2:cd:20:3e:54:a4:15:ce:b7:78:2e:
9e:42:2a:53:08:d7:67:78:9e:75:a9:3f:c3:3a:cc:
a0:07:a0:e5:2b:8b:c9:8c:0e:78:0f:98:09:f1:eb:
27:1c:bc:2d:95:e4:eb:61:7f:b1:a6:90:be:37:54:
35:ca:7a:57:d0:73:47:b0:2e:90:3b:e9:c8:0e:58:
3b:7a:e7:0a:0e:8b:b8:79:e5:cf:e3:df:3f:a1:5a:
d4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:8F:50:4A:B0:99:6F:B8:F2:73:BF:9D:CE:7F:08:1D:6B:FE:6F:E1
X509v3 Authority Key Identifier:
keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:9a:74:e3:8b:24:2e:a3:75:d4:03:e2:fa:47:23:6f:8c:3d:
25:53:e2:bf:76:0a:d2:b2:cb:0f:b0:50:2b:f6:b4:80:7b:79:
5c:58:38:7c:37:50:09:03:c4:4c:90:68:30:fc:88:df:fb:07:
6b:94:d7:bd:dd:02:8b:05:98:33:3f:5a:3d:6a:b1:62:9b:84:
43:e3:db:d7:c6:3b:10:e5:85:77:d6:b5:c0:fa:84:e6:85:29:
db:f2:5f:18:63:74:b9:90:19:ec:10:f9:97:33:99:fd:f9:14:
36:df:0c:c1:c8:17:75:95:10:a9:d2:b8:3f:1a:13:2d:8f:db:
64:9d:cb:09:9c:53:57:5c:db:68:fc:50:86:bb:8e:8e:4b:51:
9e:96:71:60:a4:8d:ae:1c:2b:37:b5:70:38:6c:b4:f1:83:63:
01:20:23:34:29:54:76:8c:b8:89:67:f3:18:1d:b2:55:44:1e:
7d:3a:27:f8:8c:54:51:56:dd:51:ae:12:45:25:1b:fd:13:0e:
c6:d0:01:2c:17:f4:8d:15:b0:91:67:e9:8e:6b:57:c7:30:14:
c6:99:ac:0b:d6:85:27:57:ca:d0:99:eb:36:50:6b:30:e2:1d:
f3:39:53:ca:5c:4e:35:dd:64:60:cc:0e:4e:00:b7:21:f2:96:
0a:69:f0:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:15:59 2026 by rpki-client