
$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json)
Hash identifier: P7NIMyc3j5CPLTeNudI1X7Di1/4WM5iJd3oPw8tEz5E=
Subject key identifier: DD:B7:AC:C9:08:FB:D7:C7:5F:B1:FB:8C:CE:18:42:D6:79:A9:94:05
Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA
Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA
Certificate serial: 18B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
Manifest number: 189E
Signing time: Wed 08 Jul 2026 16:43:47 +0000
Manifest this update: Wed 08 Jul 2026 16:43:47 +0000
Manifest next update: Wed 15 Jul 2026 16:43:47 +0000
Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: r21cHSzOoC9Q1ANkpsuQRooswXfeLln0tx+0Gl8rtMk=)
2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: rehHNVoMzYrcbyHR3xn9AScPl8hoBFDtA7CJ2MlnTrM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl
rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 16:43:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6329 (0x18b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA
Validity
Not Before: Jul 8 16:43:47 2026 GMT
Not After : Jul 15 16:43:47 2026 GMT
Subject: CN=6a4e7e43-0cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e1:05:6a:b9:9e:e4:f1:69:87:9c:bb:a1:ae:
ff:fe:61:80:90:02:e8:eb:ed:bd:41:1a:5d:09:e6:
19:f1:60:6c:84:7b:97:ff:82:5e:76:40:46:b6:a0:
d3:da:94:2b:48:48:ad:ae:27:59:b5:8e:63:9d:ea:
47:ca:b5:40:64:63:2c:05:ae:43:96:d6:71:eb:97:
75:c2:70:ec:b7:e9:0f:d2:4d:7e:55:4d:0c:6e:8c:
96:76:63:15:e7:b6:39:e3:12:a7:d6:bd:ca:5c:98:
ea:94:04:8c:d5:d2:95:e2:18:ec:53:53:5f:24:da:
54:8b:24:8c:c7:53:23:f4:3b:f6:1a:b4:86:d8:d1:
c1:5a:cf:00:44:1a:0e:df:6a:b5:8b:24:a5:d2:56:
ea:1f:8e:b1:97:d8:59:cd:3a:df:69:e6:03:ac:97:
2a:83:f1:c7:14:8a:2b:f5:82:2c:6d:1d:03:03:83:
45:53:20:fc:4f:b9:21:c2:81:06:0f:78:cd:2a:46:
a4:ce:d5:7e:ee:20:67:6e:b5:95:cc:ab:5a:e9:d2:
09:a2:7c:2d:89:88:d2:27:aa:a1:bc:19:61:59:86:
6f:37:0a:d2:9a:ef:d9:1e:92:57:1b:b4:6b:0a:00:
5c:78:54:2e:31:8c:83:ea:45:f2:1b:b4:b9:25:4f:
b7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B7:AC:C9:08:FB:D7:C7:5F:B1:FB:8C:CE:18:42:D6:79:A9:94:05
X509v3 Authority Key Identifier:
keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
64:42:eb:88:6e:bb:2d:4b:b9:72:19:50:7d:eb:f7:21:57:10:
d2:f9:19:d3:71:8e:05:f5:9f:35:ad:3c:03:fd:72:4d:6f:70:
08:9b:15:8f:2f:7d:59:24:3c:26:89:34:41:1c:f4:7d:2b:98:
13:4a:dd:ce:b4:9a:6d:d0:33:6e:9b:7e:fc:de:30:6e:a3:97:
90:57:24:bb:4f:4a:5c:4d:3d:f7:dc:6f:82:0e:45:a5:28:80:
c8:b1:66:f4:37:ac:b1:93:b9:9c:e5:b5:20:3b:db:0d:d3:41:
5f:1c:7d:78:a8:60:48:74:89:4d:e8:3f:1e:54:b9:03:3a:40:
fd:01:17:c7:27:d1:9d:5c:01:f5:08:6d:c7:1e:cd:0f:eb:5d:
05:0e:dc:62:d8:39:05:df:ce:84:ed:68:d3:57:2e:47:e9:9b:
73:49:fb:ee:35:ef:54:74:f4:c0:b7:ac:fe:15:8b:14:b2:da:
90:9a:40:26:68:bf:2f:7e:70:66:e6:c9:9f:4a:f3:37:97:dd:
3e:86:c2:e0:9b:c9:93:6b:b9:a3:56:4b:af:0d:24:8f:bb:8d:
94:ae:81:be:ec:d9:cd:e3:fd:80:61:42:83:44:31:ca:9d:f7:
f8:72:91:db:77:77:f0:f4:1e:db:f8:2c:91:34:9e:65:f7:5b:
8b:93:c8:30
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICGLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0
RjZFRDg5QkEwHhcNMjYwNzA4MTY0MzQ3WhcNMjYwNzE1MTY0MzQ3WjAYMRYwFAYD
VQQDEw02YTRlN2U0My0wY2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq+EFarme5PFph5y7oa7//mGAkALo6+29QRpdCeYZ8WBshHuX/4JedkBGtqDT
2pQrSEitridZtY5jnepHyrVAZGMsBa5DltZx65d1wnDst+kP0k1+VU0MboyWdmMV
57Y54xKn1r3KXJjqlASM1dKV4hjsU1NfJNpUiySMx1Mj9Dv2GrSG2NHBWs8ARBoO
32q1iySl0lbqH46xl9hZzTrfaeYDrJcqg/HHFIor9YIsbR0DA4NFUyD8T7khwoEG
D3jNKkakztV+7iBnbrWVzKta6dIJonwtiYjSJ6qhvBlhWYZvNwrSmu/ZHpJXG7Rr
CgBceFQuMYyD6kXyG7S5JU+31wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN23rMkI
+9fHX7H7jM4YQtZ5qZQFMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2
RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp
Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3
Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAZELriG67LUu5chlQfev3IVcQ0vkZ03GOBfWfNa08A/1yTW9wCJsVjy99WSQ8
Jok0QRz0fSuYE0rdzrSabdAzbpt+/N4wbqOXkFcku09KXE0999xvgg5FpSiAyLFm
9DessZO5nOW1IDvbDdNBXxx9eKhgSHSJTeg/HlS5AzpA/QEXxyfRnVwB9Qhtxx7N
D+tdBQ7cYtg5Bd/OhO1o01cuR+mbc0n77jXvVHT0wLes/hWLFLLakJpAJmi/L35w
ZubJn0rzN5fdPobC4JvJk2u5o1ZLrw0kj7uNlK6BvuzZzeP9gGFCg0Qxyp33+HKR
23d38PQe2/gskTSeZfdbi5PIMA==
-----END CERTIFICATE-----
Generated at Fri Jul 10 16:25:25 2026 by rpki-client