
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft
File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json)
Hash identifier: pKG8cPd0rINJNTyVmazazdzOv6btxmi2vg+0QSIo48U=
Subject key identifier: 92:5D:4B:0F:F7:36:C7:7F:73:95:6D:63:AA:EF:74:4E:50:8E:8F:D5
Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2
Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2
Certificate serial: 014F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft
Manifest number: 0146
Signing time: Fri 17 Jul 2026 06:28:23 +0000
Manifest this update: Fri 17 Jul 2026 06:28:23 +0000
Manifest next update: Fri 24 Jul 2026 06:28:23 +0000
Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: ehGH9XG/PxLn1rbQvOloeFjvoaXgRANOyvp+Rg7TRAA=)
2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: QqqXcy0rlKoYg63rZeBH+t86JUXNBkFgw10UvyH6Mls=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl
rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335 (0x14f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2
Validity
Not Before: Jul 17 06:28:23 2026 GMT
Not After : Jul 24 06:28:23 2026 GMT
Subject: CN=6a59cb87-e707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f2:cb:26:bd:6a:6e:b0:ec:80:1e:43:79:4e:
84:93:37:bd:1c:66:4f:ae:81:40:0f:a2:c4:f8:e4:
08:12:27:b5:76:e3:7f:13:91:c5:21:ce:46:e5:a4:
fb:24:e3:60:4d:3d:c5:9a:3b:48:8e:07:c3:11:56:
da:35:91:08:be:0a:1e:a8:0e:49:f0:ee:c7:13:fa:
3e:41:b6:eb:be:3e:fb:43:00:60:05:c3:15:d9:02:
55:bb:d0:57:9d:a8:98:af:00:7c:34:ff:0e:bd:b7:
08:fe:53:51:02:90:8e:da:b5:42:a2:c7:d7:02:ce:
0a:00:e5:6e:1e:27:d5:c4:ab:35:e6:3a:44:3b:e1:
93:3a:53:24:eb:45:36:f3:cb:ed:2b:bd:01:04:09:
55:8a:e5:3b:3d:3b:95:25:c3:a4:61:1f:fa:35:b3:
ae:7e:26:6e:30:3b:fe:cb:ad:f5:85:5d:58:1f:d5:
5a:8a:15:a5:9f:b3:c0:b1:6a:e8:28:77:46:05:48:
be:7d:7e:a0:f7:91:15:4d:dd:8d:16:90:86:98:0c:
c3:c7:f7:97:db:45:4e:bd:d9:51:7f:01:4a:9a:f1:
50:9f:99:7c:b4:6e:0d:6f:3f:13:9b:0f:a2:e9:bd:
82:4b:95:70:2c:8e:d9:f4:9c:8a:f3:d5:e0:d1:6b:
c0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5D:4B:0F:F7:36:C7:7F:73:95:6D:63:AA:EF:74:4E:50:8E:8F:D5
X509v3 Authority Key Identifier:
keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3c:8e:74:90:1e:1a:41:60:85:6b:63:05:f5:e0:4a:dc:8c:c8:
bc:09:21:57:e9:f5:21:cf:8a:6c:57:8b:4a:94:a8:c9:22:c2:
d5:20:34:44:8b:e7:1e:2e:a5:5d:98:c9:d4:90:37:0f:62:ed:
fb:30:f1:1a:3e:7a:81:65:62:c0:4a:46:0e:1f:0d:e2:aa:d8:
6b:d7:88:03:61:36:8b:15:a0:1f:e6:7f:66:e5:24:b7:88:86:
af:f7:e8:99:3d:c5:e5:64:37:fd:65:17:f1:c4:2c:fa:3a:77:
00:bb:a7:ac:07:fb:bf:19:e7:2c:6c:9c:d8:f3:48:71:aa:6b:
d5:e8:c1:1e:92:1d:b5:dc:94:e8:11:de:b2:6b:3d:d0:29:f5:
2a:e0:1c:68:1a:b8:e7:4c:8c:6d:db:99:ab:0d:63:7e:90:2c:
fb:b5:ac:a8:c4:bb:29:e1:76:d2:32:ff:06:6c:06:98:04:51:
21:ca:e2:79:68:f6:42:ea:0d:23:5f:4f:04:bd:72:78:6a:0f:
36:62:b1:f7:7b:26:ae:de:1c:63:1b:60:8f:db:b1:76:3f:d9:
fa:ee:dc:4a:9f:60:63:82:96:e7:69:87:f0:a7:5e:d2:7b:96:
06:17:62:48:ba:9b:a3:a9:38:08:3a:00:55:5c:33:7c:e0:63:
0d:3b:1f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:16:23 2026 by rpki-client