
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft
File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json)
Hash identifier: 31etPN1+TvFVbPyF0rnlODJyqFZXgJ2NjwHr0umBORM=
Subject key identifier: 46:D4:5D:56:B2:33:47:9A:B8:59:6B:1B:97:79:72:C7:1C:20:B6:5E
Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7
Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7
Certificate serial: 1B4B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft
Manifest number: 231F
Signing time: Thu 16 Jul 2026 15:57:58 +0000
Manifest this update: Thu 16 Jul 2026 15:57:57 +0000
Manifest next update: Thu 23 Jul 2026 15:57:57 +0000
Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: W1Y4eGO1n4sfJCq2dSixoceAK/pL7whqmaIiZiVEPYc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl
rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 15:57:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6987 (0x1b4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7
Validity
Not Before: Jul 16 15:57:57 2026 GMT
Not After : Jul 23 15:57:57 2026 GMT
Subject: CN=6a58ff86-8e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0b:10:96:18:8a:cc:83:1b:4c:65:23:da:54:
58:9c:5e:1d:ed:08:45:e7:db:7b:aa:4b:ae:7f:1a:
58:be:de:35:2d:fd:91:52:bb:16:4a:0e:7c:ff:e9:
f3:b5:cc:19:bc:2f:d6:32:af:21:71:0d:ad:f3:fc:
d2:61:af:35:4b:22:84:14:5e:27:75:62:e6:32:5b:
a3:f6:ea:b3:d3:70:ca:c6:07:9f:15:f5:d6:66:3d:
a6:b4:03:01:35:41:63:bf:49:e8:48:dc:65:14:c4:
ee:17:b0:e9:5a:55:ce:ef:aa:75:47:7d:d7:e2:a0:
43:9d:a5:e4:f4:80:24:55:6a:f2:a7:2f:aa:34:26:
25:cb:74:44:6f:a1:e0:f7:d2:c4:bf:ff:7e:06:83:
a6:d8:5a:bd:fa:83:2a:22:44:79:ab:28:e7:5f:e2:
55:0a:66:3b:dd:30:34:8d:1e:c8:23:91:af:6b:dd:
18:c9:cd:f8:80:eb:7a:4d:77:f0:27:4d:6b:e4:7c:
05:8f:4a:a1:64:af:03:da:12:3b:5d:7c:88:cc:b4:
a7:83:0c:19:e2:89:2c:01:b1:52:69:94:27:bb:bb:
9f:e3:5e:4b:6d:90:54:7d:04:ec:f5:e5:23:15:1c:
b1:e4:55:48:41:0f:58:dc:5c:f7:fc:ea:09:00:f8:
d7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D4:5D:56:B2:33:47:9A:B8:59:6B:1B:97:79:72:C7:1C:20:B6:5E
X509v3 Authority Key Identifier:
keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
82:8b:6d:7b:0f:bf:4a:83:61:0c:02:f2:2b:42:37:41:44:fb:
f9:0e:a5:8b:ed:97:5e:b9:bc:cb:b9:63:02:1b:11:bf:6a:51:
89:2a:c7:7a:a1:d9:f6:46:27:9c:41:67:b5:d7:ce:a7:52:f3:
97:b4:de:85:d5:ac:4e:50:1b:09:98:9c:61:b6:12:55:75:b8:
31:35:c3:2b:f0:09:44:18:c2:31:39:c5:13:7e:42:92:9a:2b:
15:36:fe:49:a2:4b:5f:ee:39:7f:75:5b:47:56:3e:ed:70:ee:
57:9b:3c:74:93:9c:6b:53:79:c0:be:d2:b0:24:76:c1:af:18:
5c:f5:80:1e:2c:87:f0:9c:15:3b:c2:17:27:0a:8d:32:dd:33:
a1:98:1d:11:9f:54:74:8b:3b:61:a0:d9:d5:99:52:e3:f3:fe:
3e:02:aa:7c:3c:89:ba:7a:56:7b:72:ba:c5:a5:35:e4:3e:05:
d9:1d:0b:98:00:ea:08:29:b3:40:04:9f:38:f2:5f:f5:41:2a:
31:0b:74:1a:15:e6:be:02:b7:e0:a1:8e:88:51:5a:d8:41:a8:
03:88:fd:74:07:bf:7d:85:67:d4:05:b8:af:f2:17:19:47:fa:
ce:59:4d:63:f9:8a:86:0a:30:38:5b:4a:2d:9e:7e:c9:99:2b:
4f:16:6f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:25 2026 by rpki-client