
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json)
Hash identifier: 4CJEWAGAQUO9uZXO0IkXPuSwGLez4vu2Ul1stCzPDtw=
Subject key identifier: 2E:88:D1:98:00:B1:BD:D2:7D:21:48:E1:1A:B9:79:3F:52:A2:B0:67
Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C
Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C
Certificate serial: 15ED
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
Manifest number: 15D8
Signing time: Wed 08 Jul 2026 16:59:27 +0000
Manifest this update: Wed 08 Jul 2026 16:59:26 +0000
Manifest next update: Wed 15 Jul 2026 16:59:26 +0000
Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: CUf2oyKOASUIaZUsyhX/IikruBFNgx81UKmh9pYHnow=)
2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: IPwUYf1i7UXpGfgy42YQLyz0KFiyyYobrDQbSdSHXgY=)
3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: jueJlQIp/n088nFesAl2o/XwQiao4sKjxZsgZFyb2lM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl
rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 16:59:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5613 (0x15ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C
Validity
Not Before: Jul 8 16:59:26 2026 GMT
Not After : Jul 15 16:59:26 2026 GMT
Subject: CN=6a4e81ef-bfef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:dc:04:30:6d:0c:2e:1d:d1:6e:3c:3f:df:75:
aa:f1:83:4a:99:4c:a1:1b:36:69:25:da:b5:e2:82:
d0:ce:11:68:23:f5:c2:80:5b:9e:8e:0e:f4:18:ac:
e5:19:2b:da:bd:2c:ad:47:7a:1a:06:dd:44:2a:5b:
84:04:a8:d6:1c:7d:50:c3:1c:e5:39:42:9c:e2:e5:
7f:f3:09:ac:a1:6d:d3:5c:d5:87:13:a9:d0:79:45:
17:00:65:1b:15:a3:1b:b3:18:3c:2d:08:c9:16:9f:
c1:d3:58:8f:cb:25:f3:c9:df:0c:11:8a:ff:05:24:
e4:e4:0d:f8:d2:75:83:dc:de:cd:39:87:6e:8d:df:
d3:e3:30:14:2f:b4:93:13:91:6c:d8:6f:94:33:71:
3c:d5:d1:e7:10:58:3c:b4:54:2e:ff:53:ce:44:c7:
d4:9b:59:ed:44:3c:35:58:8b:56:31:b2:01:0a:87:
c2:48:c0:e0:a7:fd:f8:30:67:d6:59:e7:d9:5c:2e:
e0:2d:82:ab:73:bc:54:8d:1b:ad:6c:dc:09:3a:48:
28:36:66:01:d0:cc:24:b4:8b:1a:cb:68:50:f8:38:
e9:a7:70:17:d9:d2:3f:a7:55:23:69:85:1e:0b:8b:
57:e4:2d:d1:11:ae:c4:e4:79:bd:8c:02:80:93:ca:
37:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:88:D1:98:00:B1:BD:D2:7D:21:48:E1:1A:B9:79:3F:52:A2:B0:67
X509v3 Authority Key Identifier:
keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:6f:bf:d8:4a:dc:23:2c:af:ae:96:2b:e9:30:2b:7b:f8:3c:
bb:df:c6:90:26:72:60:5b:88:48:93:62:da:48:02:80:55:08:
35:b7:32:c1:9e:78:e9:f9:a7:30:92:b4:9b:47:44:24:9e:a2:
69:11:c1:33:e3:f2:65:b4:4b:d7:de:62:ed:df:94:41:e0:32:
7b:fc:4b:d8:db:1f:f9:d8:29:47:ff:16:61:3b:04:bc:90:71:
bf:2e:98:47:e6:f8:b4:9b:03:5a:d0:9d:77:36:9e:a2:1d:6b:
b1:98:cc:22:d0:37:e3:61:88:60:b2:98:1e:81:9c:28:7d:e5:
33:de:7e:04:f0:06:92:d4:90:92:f4:90:a4:ce:82:72:6b:78:
7b:3d:02:ec:51:1b:e9:41:13:a2:1f:f9:eb:8a:ea:a7:3d:68:
63:23:dc:44:2d:2a:9a:be:bd:3a:f1:02:d2:d2:bb:75:4a:5e:
19:ee:aa:e8:13:1f:73:0b:fc:fe:b3:c3:5c:35:4d:97:7a:71:
89:3a:5a:38:d4:51:43:55:05:35:8b:e1:18:c5:e3:44:b7:fb:
7d:a5:17:b7:95:5a:93:5d:22:62:ca:ee:da:a9:a4:fa:b0:be:
44:9a:a7:1d:ee:d7:e2:79:38:78:b2:f2:d5:f6:a7:e6:cb:6f:
65:f3:1d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:31:51 2026 by rpki-client