
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft
File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json)
Hash identifier: ybtigYHqUu+gJlo2ApNnE190Anyw8ZV7zmQYC4G0O3A=
Subject key identifier: 7F:99:3F:D8:03:E2:C8:CE:36:9F:59:9C:2E:09:F9:58:35:51:DA:81
Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85
Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485
Certificate serial: 0227
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft
Manifest number: 0221
Signing time: Thu 16 Jul 2026 17:39:41 +0000
Manifest this update: Thu 16 Jul 2026 17:39:41 +0000
Manifest next update: Thu 23 Jul 2026 17:39:41 +0000
Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: 3rm06FnquGmKcya+xxtz+gEn5PamVockxiysHBRiJPk=)
2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: oB4kxasRgRq+GKJ70NUc/sJMH3q5nYfTRjnemmCHnis=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl
rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 17:39:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 551 (0x227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485
Validity
Not Before: Jul 16 17:39:41 2026 GMT
Not After : Jul 23 17:39:41 2026 GMT
Subject: CN=6a59175d-4ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:38:c1:66:d7:1a:07:18:a8:d3:3f:a3:dd:ad:
63:cb:1e:c5:47:c5:de:f4:ee:2b:7e:4f:5f:a3:f4:
8d:3c:0d:12:eb:ff:14:ff:ca:46:f0:7e:0a:37:08:
10:05:20:a1:e3:e9:50:c7:44:d8:d6:b0:5a:36:0d:
14:66:58:77:e5:29:b4:7a:ba:7d:7a:59:22:69:b2:
8c:61:c4:2c:a3:c9:97:4f:74:58:bc:f9:9b:fb:f7:
3e:68:47:d4:16:ae:fb:fc:a0:ca:2b:44:47:f5:33:
57:8f:9a:ef:bd:b0:2d:15:c8:52:46:a6:57:a6:1a:
a7:f7:7c:cf:7b:ff:ec:04:cd:20:06:95:44:75:48:
db:f7:14:d0:36:89:20:0f:36:f0:10:be:5f:b4:e7:
75:15:16:fe:54:14:67:c8:f6:cd:04:d5:70:0c:92:
95:0e:9a:92:85:80:44:3e:f6:80:67:17:c8:5c:ed:
7a:3a:30:95:ab:ab:88:60:96:14:69:de:07:b0:cc:
95:b0:c7:5a:54:b7:20:13:52:26:40:93:28:d0:2f:
40:88:27:f5:5c:20:01:aa:9b:b2:28:be:b3:f5:3b:
ee:d8:ee:b0:0b:78:77:56:7d:7c:80:f4:65:52:64:
f1:d3:31:f4:5d:54:98:e9:25:28:63:c6:7c:05:23:
a6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:99:3F:D8:03:E2:C8:CE:36:9F:59:9C:2E:09:F9:58:35:51:DA:81
X509v3 Authority Key Identifier:
keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:49:e1:b8:6c:d9:d8:e8:bb:df:9c:e9:6b:e7:b1:ac:71:ad:
24:e3:1d:6b:18:56:0b:f3:d0:b8:12:f7:ca:e1:c4:0b:d4:3e:
fa:da:d1:09:91:b2:7f:42:c1:60:d0:91:d4:60:ed:2d:ce:29:
19:22:7e:ba:8b:9a:3d:6e:38:12:68:03:9c:f4:e2:32:c7:7f:
29:7f:67:c3:7b:95:09:e8:61:e8:f9:66:69:ea:80:d7:54:09:
4a:eb:e6:8c:c7:de:90:3c:6c:ff:75:b0:fe:d9:8f:9a:1b:d9:
8b:9a:b7:fa:ee:15:b6:66:ed:cc:21:db:e0:08:79:40:b7:87:
2f:16:6c:dd:73:33:e6:86:74:48:db:16:c3:0a:a3:eb:bb:90:
9e:9d:88:1b:da:f7:08:05:f5:5f:8a:95:3f:91:fd:8b:08:21:
4f:0d:d3:99:8b:b0:05:4c:22:f5:5f:e6:5e:a6:9b:a1:a3:24:
bc:ae:ce:28:e9:3d:5c:f6:ee:07:12:58:43:29:ab:57:ba:e1:
c3:1d:97:f4:29:95:6b:7c:6e:49:0a:17:f8:86:e5:43:39:13:
b8:a6:5f:34:74:56:a2:8d:77:61:1e:56:26:45:0e:8e:ed:1c:
8f:a7:de:5a:b5:7d:20:d7:b5:94:1e:78:bb:f7:92:cd:58:bc:
c2:87:d5:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:09 2026 by rpki-client