
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json)
Hash identifier: 6rGJsoVbvrzGCTcMORfQIuRn7yhW2MzCxo0QykWjyYI=
Subject key identifier: AA:A2:17:7F:BD:97:B9:31:5B:72:BB:1A:46:AB:D6:30:21:83:19:6B
Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E
Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E
Certificate serial: 0BC7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
Manifest number: 0BA3
Signing time: Thu 16 Jul 2026 19:18:35 +0000
Manifest this update: Thu 16 Jul 2026 19:18:34 +0000
Manifest next update: Thu 23 Jul 2026 19:18:34 +0000
Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: QkqCz2gs1FCRHz6vxUEbGrx6e7uWHeWVXSXM/vQqHo4=)
2: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (hash: fuUoAX7qold+hBso2xjm+AtCXw9QMD6MxM+hCTTXcPw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl
rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 19:18:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3015 (0xbc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E
Validity
Not Before: Jul 16 19:18:34 2026 GMT
Not After : Jul 23 19:18:34 2026 GMT
Subject: CN=6a592e8b-1939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ef:5d:aa:d8:d6:9d:4d:f5:9c:62:00:50:3a:
16:95:50:e4:e6:95:a4:82:da:12:2a:72:9d:34:45:
3f:04:4e:78:ae:b8:12:95:b2:fb:9b:9a:5e:cd:f8:
ee:ab:8f:37:9e:cc:ef:bc:76:6c:cd:6a:3d:71:34:
84:03:fb:40:65:7e:14:ac:3e:f0:7e:48:98:1d:23:
a9:e9:86:11:83:47:c7:74:be:9c:43:51:6c:88:98:
e0:dd:f9:25:7a:e4:f4:e0:4f:5f:1d:48:e9:0b:7d:
f6:01:63:fc:82:b3:2f:2d:13:02:42:81:b5:62:ef:
30:48:f1:f9:c9:b2:74:a4:ba:4b:31:cd:df:5b:c1:
20:99:e8:75:bb:b9:c7:ee:bf:e5:ef:45:e0:a7:bb:
e0:11:12:33:49:9b:87:aa:29:a3:83:04:22:c5:f1:
07:d9:10:12:02:39:68:43:3a:ea:d0:00:32:09:a5:
a4:31:0f:0a:8d:6d:0d:38:25:57:36:44:47:3d:92:
16:5c:1a:60:8d:83:9f:2f:e7:f0:2d:42:85:9e:6c:
44:bd:96:7c:72:3d:35:ec:6f:f2:09:41:c0:98:09:
b2:af:45:5d:14:3f:d9:d5:38:00:79:ce:d8:18:e7:
27:11:85:c4:29:5d:83:5e:94:da:56:d3:96:ce:f3:
11:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A2:17:7F:BD:97:B9:31:5B:72:BB:1A:46:AB:D6:30:21:83:19:6B
X509v3 Authority Key Identifier:
keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d2:02:a3:56:09:87:80:3c:72:42:97:a8:c5:fa:3e:11:2c:68:
2d:13:ab:1c:fe:c0:ab:7c:cc:be:59:38:d6:1a:d7:64:6f:e4:
94:70:54:6a:1c:66:a1:25:c1:78:59:13:f4:af:43:6b:92:f2:
20:52:5b:04:61:de:7f:73:64:9e:32:b9:da:56:9e:0a:9c:1b:
24:3b:1e:aa:cf:4b:e1:9e:84:bf:3e:14:d9:47:a1:04:10:9f:
20:86:be:27:30:36:2c:ff:98:2d:35:98:42:d8:b1:bb:6e:59:
00:7d:de:16:b2:61:de:3a:95:37:8d:ce:d5:9e:59:54:50:da:
3f:2e:11:1a:87:3e:74:d6:c1:70:9f:45:e8:ca:03:1d:1f:5a:
cf:bd:38:62:6a:1d:4d:6b:9d:e2:68:a9:cd:6b:e4:4a:d8:c1:
bc:b4:57:e8:91:81:c3:3d:cf:52:a2:68:80:0a:e4:71:c2:e4:
5a:fd:c5:08:a5:2d:44:55:45:35:9c:59:70:be:af:81:20:b1:
28:b7:e0:f0:51:eb:63:28:8e:d6:b7:c8:c3:69:a3:88:6b:37:
0d:72:e0:c6:47:c5:9c:36:a2:0f:5c:d9:d2:44:52:3d:b7:53:
3d:e2:81:80:61:5f:cf:cc:f0:64:c0:74:ed:13:6a:c1:fd:5c:
64:24:ac:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:08:50 2026 by rpki-client