
$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft
File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json)
Hash identifier: usCiw1hSyAuyzomjv2p94i/NRJMQRjPbhh+wwO2Bh90=
Subject key identifier: 23:57:F6:B1:87:7F:CC:90:0B:EF:0A:5D:AE:5C:36:01:7A:25:A5:9A
Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20
Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320
Certificate serial: 0C19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft
Manifest number: 0C10
Signing time: Thu 16 Jul 2026 18:59:30 +0000
Manifest this update: Thu 16 Jul 2026 18:59:29 +0000
Manifest next update: Thu 23 Jul 2026 18:59:29 +0000
Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: QVeV/68F7xwIcS0kNSZIzAqUtfkuC7YdgkDN0Zxth1A=)
2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: miF3Bd+XSLHucz0FC/5HkJ/vce5TslwDpsNS9Q4tZB4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl
rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:59:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320
Validity
Not Before: Jul 16 18:59:29 2026 GMT
Not After : Jul 23 18:59:29 2026 GMT
Subject: CN=6a592a12-fe7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4a:9e:5e:10:4d:ab:4e:da:87:bf:0e:72:de:
56:05:ac:53:9c:70:8e:e3:e9:05:e3:4c:9a:ac:e4:
c9:ac:41:91:1d:ba:b4:24:3c:b0:df:04:07:1c:79:
f8:07:f9:26:d1:0d:08:63:86:7b:fd:e2:1c:71:35:
bd:59:a7:22:01:33:9f:6b:d7:e1:e3:96:2a:cb:bb:
3a:1c:a9:81:33:bc:b6:7f:d9:b7:83:12:3d:53:42:
fb:dc:e9:fa:1a:08:46:fa:97:47:26:9e:24:f7:5b:
fd:b9:6b:fb:18:84:8a:4f:fa:a2:58:aa:58:75:50:
65:51:93:91:36:d2:8e:a2:45:d5:3d:b0:21:d9:52:
0b:92:57:8f:da:3a:40:4b:18:25:0e:36:8c:9e:f2:
c8:18:88:69:05:01:69:9f:f9:45:70:1e:23:1d:85:
29:4c:27:8f:89:4c:94:cc:76:31:a3:1b:c4:c3:65:
df:24:61:0a:77:c1:44:84:52:26:ae:3f:d7:f2:b8:
98:bc:1d:67:3e:15:9f:47:c0:40:53:a2:ad:24:0d:
00:2d:c9:6a:56:27:04:6e:11:6b:70:0f:8c:c6:9c:
f8:f6:d3:ed:1b:51:64:52:ad:f7:6c:89:86:27:c2:
90:3b:20:ab:36:3e:c6:86:df:fb:fa:c2:64:e2:26:
87:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:57:F6:B1:87:7F:CC:90:0B:EF:0A:5D:AE:5C:36:01:7A:25:A5:9A
X509v3 Authority Key Identifier:
keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:b7:28:12:12:db:c8:c3:4a:6d:a9:c4:ce:6e:c9:d2:29:78:
aa:9b:08:3d:6a:83:a5:dc:9f:b2:9b:52:ac:83:6f:0e:3b:fa:
69:6d:1b:b8:a7:ec:8f:38:01:6a:5c:f2:14:5d:21:44:ae:77:
ac:0f:d7:b0:be:cd:b6:fa:6e:14:e8:fe:7a:1d:82:e0:21:99:
39:e7:3d:91:88:89:11:94:dc:35:5a:dc:e9:25:75:62:66:32:
dc:fc:5a:ea:b5:4b:c4:cd:20:9a:ce:37:3e:ec:7d:81:31:99:
64:af:21:37:3c:f3:57:e3:a4:78:08:71:a7:20:01:ca:ec:ff:
94:63:88:b4:9d:d5:97:f1:4d:5f:75:c7:74:b9:7a:89:11:c1:
c3:f3:50:3f:33:22:9f:eb:7e:40:48:29:10:a5:19:df:f2:37:
f6:6b:19:b8:17:ee:d1:a7:b7:bf:ac:97:34:c5:ea:a5:98:cd:
62:24:a7:44:34:38:57:ab:7a:c8:2d:de:ef:77:64:9b:bf:ff:
38:f1:4e:1d:79:5d:e2:52:2a:ae:cb:43:56:39:60:ad:ca:d3:
d9:6d:49:10:a4:41:61:ff:44:ed:26:30:da:7d:b1:f3:f7:89:
34:cc:1c:da:ec:23:24:78:c9:76:40:51:e9:8b:f6:8f:f4:7b:
7d:eb:a6:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:10:47 2026 by rpki-client