
$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
File: Tcfii1RvKgtTjozfgy2aofN8yOQ.mft (raw, json)
Hash identifier: HHM9OSuBcz+5cckdF0O/nouLbgGbABSlC5OB4d6K98A=
Subject key identifier: 6C:9B:87:01:13:D2:6D:18:52:AE:ED:6C:57:C0:3F:80:81:EB:16:8F
Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4
Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4
Certificate serial: 0167
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
Manifest number: 014F
Signing time: Fri 17 Jul 2026 04:16:07 +0000
Manifest this update: Fri 17 Jul 2026 04:16:07 +0000
Manifest next update: Fri 24 Jul 2026 04:16:07 +0000
Files and hashes: 1: Tcfii1RvKgtTjozfgy2aofN8yOQ.crl (hash: CI9xWupMe3xgXS8s7J/tcmTOeUZRmTGZD0TokYdk7qk=)
2: 1C6D5ED2C51F11F08993E41BC4F9AE02.roa (hash: h9DoWAti9FtevIgArDst4H6dPePV+rhbEHLYlKOnyqw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl
rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:16:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359 (0x167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4
Validity
Not Before: Jul 17 04:16:07 2026 GMT
Not After : Jul 24 04:16:07 2026 GMT
Subject: CN=6a59ac87-76c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:da:2c:fa:8c:fd:e8:0a:75:76:71:22:b6:21:
38:cd:41:a2:a5:9a:d2:ba:81:66:90:78:d7:70:9a:
7c:44:ef:ff:20:90:7c:15:45:7b:a8:40:b1:db:7e:
a5:f1:9b:c3:e9:ea:85:5e:18:bc:bb:35:39:ad:50:
1f:f3:c8:b0:29:f7:94:2d:ac:43:71:73:8f:e2:f6:
22:e3:77:fd:ef:c6:c6:b4:2d:29:05:4c:7d:68:84:
fa:d1:8a:2f:d6:7c:29:1a:37:c0:5a:0f:71:14:18:
85:5c:31:6c:69:28:63:93:53:94:92:13:2e:24:21:
5a:2c:cb:42:33:b6:eb:9c:ce:bf:e9:bd:a6:71:b8:
c4:95:19:44:31:eb:05:97:6d:0a:c0:2a:3e:09:3d:
57:c3:cd:c2:ea:31:27:e4:5d:38:22:f5:fd:23:31:
74:77:5d:d2:51:e1:d9:d4:53:82:06:86:e6:74:92:
b8:40:71:e4:1c:67:b6:2a:27:9f:68:33:0b:05:a3:
9e:9f:f0:c5:ab:c4:20:c6:8f:ce:a1:01:93:35:3b:
52:f8:26:ac:1f:09:2e:55:0e:5e:51:b1:05:fb:88:
60:14:10:36:a5:77:6c:ab:ad:73:26:27:e0:b0:01:
cf:18:9c:f8:63:f4:aa:3e:61:56:3a:fe:bd:66:e8:
d7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:9B:87:01:13:D2:6D:18:52:AE:ED:6C:57:C0:3F:80:81:EB:16:8F
X509v3 Authority Key Identifier:
keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:88:67:e9:de:48:2d:47:c3:24:ad:49:eb:8a:4d:5e:dd:59:
fa:d1:00:18:b2:87:3c:d8:af:c4:8f:87:67:8a:45:47:4c:42:
d7:ff:b3:ab:47:c5:b9:81:33:bb:4f:a2:b7:23:0a:b4:b6:c3:
4b:cd:7c:4b:20:d0:bf:04:40:9c:e7:90:fa:36:36:ba:7c:56:
90:bd:ee:ac:b0:e8:22:86:f7:6c:27:43:df:10:c1:06:41:bf:
1f:5c:7a:a6:56:8e:13:47:02:07:2f:db:85:ca:fd:83:99:ca:
9a:fe:f4:fd:c2:23:14:6d:ba:ff:78:1d:68:27:b5:00:45:1f:
31:37:c3:9d:a2:4c:0b:ad:79:6c:68:1d:8c:f1:68:e9:bc:41:
a2:3e:21:3b:b1:f1:fa:77:a8:d5:c8:26:c9:f8:67:99:44:d3:
70:00:2f:28:78:2e:2d:2f:21:04:34:86:57:70:77:99:43:1a:
ab:74:29:73:32:50:65:c2:a0:8e:51:b8:56:64:0b:05:8d:93:
58:cb:57:95:6f:ac:2b:03:8e:38:06:09:c9:d3:82:26:29:e8:
99:16:bc:f2:db:e1:4f:e3:f1:e1:2f:56:be:53:de:f0:8a:8e:
2c:18:54:b6:b0:02:d1:26:08:ff:fa:c3:f3:e0:ea:df:4a:c5:
89:13:90:68
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx
RjM3Q0M4RTQwHhcNMjYwNzE3MDQxNjA3WhcNMjYwNzI0MDQxNjA3WjAYMRYwFAYD
VQQDEw02YTU5YWM4Ny03NmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA09os+oz96Ap1dnEitiE4zUGipZrSuoFmkHjXcJp8RO//IJB8FUV7qECx236l
8ZvD6eqFXhi8uzU5rVAf88iwKfeULaxDcXOP4vYi43f978bGtC0pBUx9aIT60Yov
1nwpGjfAWg9xFBiFXDFsaShjk1OUkhMuJCFaLMtCM7brnM6/6b2mcbjElRlEMesF
l20KwCo+CT1Xw83C6jEn5F04IvX9IzF0d13SUeHZ1FOCBobmdJK4QHHkHGe2Kief
aDMLBaOen/DFq8Qgxo/OoQGTNTtS+CasHwkuVQ5eUbEF+4hgFBA2pXdsq61zJifg
sAHPGJz4Y/SqPmFWOv69ZujX8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGybhwET
0m0YUq7tbFfAP4CB6xaPMB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG
NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5
T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
MjNDMS9EMDMyMEVGOEJGNEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktn
dFRqb3pmZ3kyYW9mTjh5T1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAGohn6d5ILUfDJK1J64pNXt1Z+tEAGLKHPNivxI+HZ4pFR0xC1/+zq0fFuYEz
u0+ityMKtLbDS818SyDQvwRAnOeQ+jY2unxWkL3urLDoIob3bCdD3xDBBkG/H1x6
plaOE0cCBy/bhcr9g5nKmv70/cIjFG26/3gdaCe1AEUfMTfDnaJMC615bGgdjPFo
6bxBoj4hO7Hx+neo1cgmyfhnmUTTcAAvKHguLS8hBDSGV3B3mUMaq3QpczJQZcKg
jlG4VmQLBY2TWMtXlW+sKwOOOAYJydOCJinomRa88tvhT+Px4S9WvlPe8IqOLBhU
trAC0SYI//rD8+Dq30rFiROQaA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:56 2026 by rpki-client