
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json)
Hash identifier: umWHzE5K1S53NEx/8NehKNkVz8y+ekTvGBnnQq5EeME=
Subject key identifier: D8:6E:A2:EC:D5:DC:AA:96:B6:0C:80:E0:B0:D1:AD:13:F8:73:78:AD
Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46
Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46
Certificate serial: 0E69
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
Manifest number: 0E5D
Signing time: Thu 02 Jul 2026 17:52:50 +0000
Manifest this update: Thu 02 Jul 2026 17:52:49 +0000
Manifest next update: Thu 09 Jul 2026 17:52:49 +0000
Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: RvX41UIMIkhdPk1slqGk0GPutd0+B9uAXQEsODXBuNs=)
2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: DD1ADaREQj4FZ7nnow63JObODw7KCChH9CO7F5RCGA8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl
rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 17:52:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3689 (0xe69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46
Validity
Not Before: Jul 2 17:52:49 2026 GMT
Not After : Jul 9 17:52:49 2026 GMT
Subject: CN=6a46a572-042e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:47:40:62:bc:9b:a5:19:70:5c:f4:59:ff:84:
bd:da:fa:f8:2a:e6:1b:97:87:65:8c:64:8a:27:58:
36:f1:81:da:19:39:c4:40:7f:e5:42:57:9f:53:1e:
5f:5e:23:09:01:5c:45:16:3c:4b:aa:94:a5:27:b1:
61:2a:9f:03:b1:bc:72:ce:89:c0:09:53:8b:9d:28:
4f:6a:28:56:b9:2d:7d:ec:36:da:da:a0:5a:24:2a:
e6:7d:59:b0:a8:75:dc:79:1c:c7:b8:e2:f2:d5:ab:
ac:ce:3f:ff:93:18:4d:03:8c:51:39:d5:97:e3:89:
eb:64:b6:c5:a9:d6:f1:87:ec:99:66:ed:17:8d:55:
5c:f3:e8:66:c3:da:11:c5:d4:f6:ea:a1:56:c3:5b:
00:58:94:92:5f:67:6b:1a:4b:7d:75:40:a9:65:47:
e4:e9:da:50:6d:2a:fc:d0:51:f1:75:8f:4b:5e:87:
45:bf:18:3a:e7:8f:d6:6a:25:ee:80:89:a2:f8:3b:
5f:dc:21:5e:46:1b:fd:da:b8:7f:67:cd:22:56:db:
ca:79:d5:ad:ab:b9:65:4f:9b:cc:b6:91:40:2d:09:
2f:ee:54:f7:4a:8d:f5:eb:2c:0d:03:23:42:e2:41:
3f:42:4d:2e:b2:e7:e7:79:ee:f2:b1:f4:ac:99:28:
90:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:6E:A2:EC:D5:DC:AA:96:B6:0C:80:E0:B0:D1:AD:13:F8:73:78:AD
X509v3 Authority Key Identifier:
keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8d:07:28:09:da:f1:ba:9b:a6:2e:8d:54:3b:06:a1:3f:8d:65:
71:39:07:13:45:4e:a8:61:86:7e:79:d3:51:04:5e:d1:77:0d:
f2:bc:bc:9c:36:94:76:06:f3:6b:0c:c7:c4:2d:10:40:48:e8:
55:b8:d5:d3:fb:f0:ca:da:b9:a8:2f:fa:09:49:09:fd:85:ce:
9d:94:77:86:ec:ea:5c:4c:9b:10:fa:d3:25:d5:ed:8c:22:5f:
fe:31:63:2c:ea:d6:35:06:77:66:2e:bc:55:13:ff:b3:35:cb:
25:a2:90:a3:61:4a:77:69:2f:c2:c0:a5:ee:0e:c4:3f:f7:28:
34:39:2e:f3:93:1e:02:88:d0:4c:a1:12:af:0b:18:49:80:80:
e7:4f:84:2d:4f:11:60:df:15:87:98:72:0d:c3:bb:15:ac:9d:
a7:0b:19:a9:7a:a8:b9:01:d6:5b:dc:8f:dc:2e:41:61:a0:54:
66:1a:72:ad:5e:01:9d:4f:b3:d5:de:46:2f:d3:61:23:54:e9:
bb:c2:d5:4c:3f:d0:77:7e:ce:66:81:15:e5:14:71:36:1d:a9:
1b:7b:57:7d:06:92:0f:42:3b:30:0a:20:3b:ed:08:0c:51:88:
cb:c2:9c:e6:af:eb:de:5e:54:10:7c:20:89:69:1e:c6:eb:00:
11:79:d2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 05:08:46 2026 by rpki-client