
$ rpki-client -vvf rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft (raw, json)
Hash identifier: 4axxl1m7U5FZA98QcVEwJJmWUEPLe9lnYnfbeylBNdk=
Subject key identifier: DC:1B:0D:2B:AF:2C:AA:D2:F8:CE:23:5A:0A:5C:50:FB:52:4F:48:B9
Authority key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
Certificate issuer: /CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C
Certificate serial: 071B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
Manifest number: 0708
Signing time: Mon 06 Jul 2026 22:41:19 +0000
Manifest this update: Mon 06 Jul 2026 22:41:19 +0000
Manifest next update: Mon 13 Jul 2026 22:41:19 +0000
Files and hashes: 1: LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl (hash: ZyJpbTii/QLPh9w1p1loTsq2f0Cu+vujygwlnPWjCyg=)
2: 8CBE17540BCF11EF80BE8E0CC4F9AE02.roa (hash: K5LcOR8cOoj1G9hwCRlc2w0NxNadpML+5njvncofuUc=)
3: 579FE34A0BF211EF8B0F9C81C4F9AE02.roa (hash: 2QQLdWByWmzyDLm9K7Etw2tEiz/l3b7pU56fbAv1SHo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl
rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 22:41:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1819 (0x71b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91203EB, serialNumber=2F265B0C802473094926890A85124E21B109DA3C
Validity
Not Before: Jul 6 22:41:19 2026 GMT
Not After : Jul 13 22:41:19 2026 GMT
Subject: CN=6a4c2f0f-dcd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:22:47:65:1a:78:14:0e:78:7d:90:ec:94:
6d:6b:35:7b:3b:d9:63:99:05:78:30:f4:5f:f5:0c:
11:9d:7f:f6:0f:4b:33:da:30:61:7b:44:c4:b6:cc:
db:a0:f5:d7:f6:5c:1f:70:37:4a:27:65:a1:45:0a:
c6:da:c0:29:4e:90:32:ba:6b:90:2c:fb:3e:68:a2:
c3:09:36:93:df:f5:91:9e:01:e0:4d:95:f7:b4:d5:
b2:f8:e3:6e:f9:3f:cc:69:ad:02:71:8e:fa:ac:f0:
25:c1:24:32:2e:98:9e:6c:49:c7:63:18:b0:51:38:
0f:54:b4:08:9c:cb:79:86:ae:93:67:fd:5d:0e:86:
d8:b8:f3:fc:7c:a2:a7:6d:34:c0:01:a5:4f:43:69:
44:91:90:64:b3:17:1b:29:42:9e:7e:b6:1d:8d:b5:
f6:d5:8d:93:95:e9:5a:72:04:48:8d:27:fd:e3:b0:
ad:02:90:ac:95:36:ea:3a:ad:78:c4:db:1e:6b:fc:
d7:16:4a:92:bd:73:fe:7f:3e:2a:df:1e:76:13:1c:
75:f5:11:64:1a:1c:e6:a2:9b:62:66:20:68:48:70:
89:33:e3:ed:34:89:f6:7f:43:b0:d5:68:d0:73:af:
06:6d:1a:a9:8e:0d:71:fd:f3:72:e8:d4:0f:d5:68:
16:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1B:0D:2B:AF:2C:AA:D2:F8:CE:23:5A:0A:5C:50:FB:52:4F:48:B9
X509v3 Authority Key Identifier:
keyid:2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a3:ee:33:f0:c0:e7:a0:2d:74:94:11:99:41:e7:95:38:15:56:
6f:4c:dc:65:7c:5d:e0:c0:32:92:81:a3:50:c5:b0:00:fe:7f:
bd:57:79:c3:5f:18:58:58:2c:82:31:15:4b:dd:ed:2a:68:e1:
81:e7:87:62:d2:67:4d:63:2a:0b:b5:e2:fd:19:4e:8d:30:2d:
3f:e3:c7:92:31:fc:7e:9c:95:f4:a7:ca:a6:4e:89:5f:9a:90:
42:66:5e:24:0d:42:4a:9e:8c:5b:f6:34:98:26:92:d6:5e:de:
6c:cb:79:02:40:5b:60:f9:1b:aa:26:ef:f9:e0:c5:c0:05:71:
b2:8a:d0:f0:06:31:44:e0:55:8f:1d:46:34:3f:db:be:57:50:
21:e3:97:de:48:4d:e9:25:87:5f:90:f1:9d:9d:1f:51:5c:49:
e2:e1:9c:de:51:e3:c2:f1:1e:d2:89:69:0b:6d:04:55:f7:d9:
2c:ee:3b:4c:35:fa:bd:db:a4:52:b2:98:61:32:32:47:50:94:
ed:49:5d:79:f2:90:59:ed:0a:39:c1:9d:17:ba:c4:0e:c2:cd:
8f:ad:25:ae:99:3b:c7:ea:ab:3d:e9:f2:11:cf:1b:8f:5d:35:
3e:54:c4:a4:d3:2a:9f:09:7a:44:98:83:cd:70:b1:56:ae:4d:
33:88:ff:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:30:49 2026 by rpki-client