
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
File: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft (raw, json)
Hash identifier: EIstfc9VE1t36Rr1c4dyCDfProgBPjUUIMtcDqRmQGQ=
Subject key identifier: 4D:46:2B:39:82:D4:CA:B3:0D:18:93:82:D3:01:EB:91:A7:9B:5E:71
Authority key identifier: 1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7
Certificate issuer: /CN=A91F5BCC/serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7
Certificate serial: 0123
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
Manifest number: 011F
Signing time: Fri 17 Jul 2026 06:57:49 +0000
Manifest this update: Fri 17 Jul 2026 06:57:49 +0000
Manifest next update: Fri 24 Jul 2026 06:57:49 +0000
Files and hashes: 1: Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl (hash: D3N2AqBEhHuXWhjbJHhB6RSBGYuJu7lHMAQWHJJRVaE=)
2: 7A092C88E9E211EFAD188675C4F9AE02.roa (hash: VYzj3AeenQpibuJcJi+RGSfALT2kN6QBqvlUfKfEKWM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl
rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 291 (0x123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F5BCC, serialNumber=1E48EFE53E62ED204BA7A694384CBAC9246794A7
Validity
Not Before: Jul 17 06:57:49 2026 GMT
Not After : Jul 24 06:57:49 2026 GMT
Subject: CN=6a59d26d-cb8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:3c:38:3a:8b:f2:de:ec:1e:60:7f:9b:a9:
a2:bb:7a:63:59:52:09:a0:c9:85:b0:fd:a1:cc:24:
4a:8c:e0:30:bb:c1:18:9a:fa:8c:76:10:99:8b:26:
4c:fc:58:6a:0d:dc:be:94:0c:74:11:a6:bc:8d:3f:
ad:ed:a4:ee:9d:bd:63:41:1b:33:e3:0a:09:18:78:
19:fc:cd:2e:68:e0:13:b6:16:2c:6b:62:38:cb:fa:
1b:c6:04:a5:0a:62:30:43:d3:41:0b:b7:b5:d4:be:
f6:7d:7e:6b:c3:0d:39:eb:e9:0a:ba:d9:74:3a:64:
6b:20:ae:e4:66:9b:5d:d9:dc:ba:e3:39:8e:fc:20:
3c:55:34:73:02:2d:30:f1:34:71:f5:eb:3e:88:ac:
32:9d:a4:13:f2:37:e1:c6:c7:07:24:02:46:61:ec:
b2:e2:74:5f:40:6b:8a:3d:0d:67:ec:41:68:1e:e3:
d6:d6:f7:3e:7f:eb:c1:c4:28:a6:fc:dd:5f:6b:fb:
9b:a9:b9:0d:80:ec:03:e3:53:72:2c:33:4c:cc:a3:
d4:ec:1c:6f:66:2a:7c:8f:f4:70:be:dc:63:5e:26:
68:5b:c5:99:04:cb:a2:f6:c7:3e:94:d4:af:80:3c:
40:7e:11:a4:d3:59:f7:81:e3:ff:bb:be:c0:60:fa:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:46:2B:39:82:D4:CA:B3:0D:18:93:82:D3:01:EB:91:A7:9B:5E:71
X509v3 Authority Key Identifier:
keyid:1E:48:EF:E5:3E:62:ED:20:4B:A7:A6:94:38:4C:BA:C9:24:67:94:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5BCC/B9588BACCE7811EF80EF4D44C4F9AE02/Hkjv5T5i7SBLp6aUOEy6ySRnlKc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a8:4a:f1:9b:d7:1a:af:5a:56:ca:ee:16:0c:67:a0:dd:c2:17:
fc:5a:aa:a7:27:0f:5f:fc:eb:cf:a3:3a:8d:3e:50:ec:0b:8c:
5b:56:f6:73:83:1d:e0:73:5a:ed:7c:a2:14:a8:6a:e4:65:47:
40:8b:1a:69:13:e8:45:bb:ab:f4:11:e5:5e:57:64:34:88:b0:
17:18:df:cd:ab:22:5c:26:24:04:29:3a:99:30:48:5f:1e:93:
e5:90:aa:65:90:6c:51:4b:5a:0b:5d:75:59:f2:a7:b6:ac:34:
72:d0:6b:56:c3:74:e8:bf:4c:b6:0d:6f:a2:22:0d:51:c3:b4:
bb:2f:ab:df:24:73:82:9c:d5:98:ed:c1:ef:c4:fb:a8:9c:db:
a7:e7:17:7a:48:b5:f0:9d:8f:bf:df:d2:fa:b4:59:9b:53:32:
90:63:c1:6a:f2:5c:55:76:58:83:b1:56:c9:9c:7d:4d:c2:f1:
e8:a1:94:45:39:15:66:b4:fc:d3:86:81:df:1f:ed:9e:29:c6:
bd:c4:b2:c2:bb:c1:fe:b7:f3:a7:77:d9:9d:c2:04:f6:1f:0f:
b1:4f:32:80:f4:e2:7a:e4:db:ec:f5:8a:fc:28:2e:19:57:27:
5d:f9:36:e0:53:5c:15:5b:95:06:ea:ba:3d:50:60:59:2e:10:
bb:0e:f4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:30:41 2026 by rpki-client