
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft
File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json)
Hash identifier: J0vcUcap/y3cVvCpDnTvz58kqg+s2tyCI5Ics6duvnA=
Subject key identifier: 37:6E:01:0A:EB:6A:06:8B:D3:0E:C1:E7:57:05:51:50:6E:CC:01:78
Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED
Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED
Certificate serial: 25DF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft
Manifest number: 25DF
Signing time: Thu 16 Jul 2026 14:33:01 +0000
Manifest this update: Thu 16 Jul 2026 14:33:01 +0000
Manifest next update: Thu 23 Jul 2026 14:33:01 +0000
Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: PbwKOFTPMBqeoyP1uWRp5aks2vHwzvU5oe3S4xED7v0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl
rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 14:33:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9695 (0x25df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED
Validity
Not Before: Jul 16 14:33:01 2026 GMT
Not After : Jul 23 14:33:01 2026 GMT
Subject: CN=6a58eb9d-38d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f5:31:51:1b:63:86:a5:21:03:db:99:b1:d9:
ce:cc:6f:6d:08:3a:c8:4f:da:00:e2:96:0d:97:91:
5e:51:d0:f2:9c:64:fa:71:84:28:37:fa:17:92:13:
15:9f:f2:0c:65:64:d9:0b:1b:a1:99:67:2b:0f:aa:
77:e5:fe:3b:1e:d0:27:54:2b:c8:d9:c0:e2:f0:25:
9e:8e:40:73:fa:52:35:af:39:eb:69:83:cc:24:3a:
d5:ab:e2:69:2c:a8:36:f2:c8:2d:d0:b8:25:3b:e6:
9d:59:94:55:6a:f7:4d:39:22:d4:98:0f:c6:e3:f9:
97:23:18:f2:48:bf:57:69:7d:21:37:01:97:ea:bb:
64:1e:a9:a1:72:53:d9:09:72:fe:69:21:29:a7:41:
d2:6c:c8:16:5e:2d:d5:7e:0d:5e:70:ab:4c:aa:5f:
ff:a5:93:a6:4f:fc:0b:2e:5d:94:f3:89:28:3d:cd:
97:a0:d7:08:24:56:3a:3c:74:ab:a8:41:c6:06:e2:
3a:86:ed:8b:23:fd:62:b0:d8:54:59:22:b1:3e:03:
9c:3f:04:29:ec:58:88:1c:72:00:e7:15:91:b1:2c:
7e:b2:0e:20:1d:f4:3f:ba:79:a0:a6:bc:f8:21:19:
13:b0:18:06:df:6b:bd:9d:d7:ee:56:93:a4:50:02:
a1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6E:01:0A:EB:6A:06:8B:D3:0E:C1:E7:57:05:51:50:6E:CC:01:78
X509v3 Authority Key Identifier:
keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5d:1d:ed:d0:f9:2d:0f:b4:7c:8d:31:21:29:73:64:d8:5b:ca:
5c:d2:c6:98:de:87:8c:0a:04:fa:9f:07:b2:08:f8:fe:5f:83:
ad:d3:54:1c:5f:bd:d4:48:bd:e4:cd:9b:91:83:1a:78:9f:d5:
a2:c6:87:b2:a9:0a:dc:34:98:59:49:8c:56:fa:cd:b9:9f:b5:
9c:bb:59:78:6a:fa:98:65:14:0e:9d:4a:8e:9e:34:65:ad:c6:
cc:27:97:e3:54:25:fd:58:53:9d:19:e0:6e:56:f8:30:c4:28:
95:98:cc:26:47:bd:bb:d1:d2:96:cb:a6:ee:b5:a9:b4:c3:0e:
0b:0a:5c:65:46:10:27:bc:9d:b4:25:50:a2:61:4f:46:70:c4:
16:ac:63:e0:7f:05:cf:4c:80:ac:53:6e:65:67:61:ac:a9:02:
f0:a6:45:e0:10:a6:b2:f6:7c:ab:7b:8c:f9:8a:eb:e0:61:e8:
8d:39:f5:69:9a:d4:a7:cb:a5:c6:1e:f5:93:f8:e0:dc:2c:60:
8c:31:6a:a1:6b:f9:f8:e0:da:85:f8:ea:4b:aa:ce:63:6b:ca:
4d:a6:42:35:7c:40:2b:4b:fe:07:58:07:4f:31:ef:5b:d6:4c:
79:df:0f:aa:99:bb:29:61:6a:58:85:ef:60:76:c1:eb:47:01:
cd:11:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:39 2026 by rpki-client