
$ rpki-client -vvf rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
File: YpYWXDbflgVmse01DqfefzOLOpk.mft (raw, json)
Hash identifier: PtrnZoaxxM4XVV8/Ir7EfT2JY+iO9RnT5bUItjqf0B4=
Subject key identifier: B9:76:E5:A1:90:B1:C7:9F:78:27:6E:06:EA:B3:82:45:65:F1:B0:E8
Authority key identifier: 62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99
Certificate issuer: /CN=A91456CD/serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99
Certificate serial: 30
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
Manifest number: 2D
Signing time: Fri 17 Jul 2026 10:01:17 +0000
Manifest this update: Fri 17 Jul 2026 10:01:17 +0000
Manifest next update: Fri 24 Jul 2026 10:01:17 +0000
Files and hashes: 1: YpYWXDbflgVmse01DqfefzOLOpk.crl (hash: ySW9p9CaKvYZGDLF8Qe0t0jSEVBM6nq25oBg2JgwvUs=)
2: BBFF83183E1311F1A75FAD3AAF833773.roa (hash: tVkmnNetZiuk3U9n5t1OgMJioxU81CU8IuCEcNguLvc=)
3: E70D393E3E1211F1B8544D87AE833773.roa (hash: QKtJAkqUtPB3mTAjjBY4LLg9Wgtws5WpGtADkwoN/hg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl
rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 10:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48 (0x30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91456CD, serialNumber=6296165C36DF960566B1ED350EA7DE7F338B3A99
Validity
Not Before: Jul 17 10:01:17 2026 GMT
Not After : Jul 24 10:01:17 2026 GMT
Subject: CN=6a59fd6d-c6ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:87:ad:49:d3:18:21:42:77:9c:05:ee:78:ba:
5e:0a:ef:08:ae:b4:25:24:6e:30:73:05:77:f0:0a:
d6:d8:d9:58:17:be:d3:28:45:52:7e:52:e5:bf:ab:
29:40:f1:d6:2d:3f:fa:6c:61:95:49:8c:59:80:69:
1e:38:e1:ae:99:d9:ad:41:4c:d7:56:7e:66:17:c6:
75:79:7c:e9:ff:f6:64:83:cc:56:70:95:0f:64:b2:
28:7a:31:23:12:12:01:0e:18:58:9c:4a:49:13:f1:
c2:35:96:d6:2f:ac:0a:e5:4c:14:df:25:63:7a:a1:
32:70:c0:12:7a:9a:01:0e:d5:64:c2:2e:fc:a8:20:
c9:8c:d9:c1:26:4c:61:b3:cf:93:c7:a2:00:95:7c:
28:cb:ac:a7:2c:a9:87:64:18:82:4f:d7:53:e5:99:
15:74:23:7e:2a:ed:18:e7:a6:f3:c3:43:52:97:1c:
71:1b:68:3a:43:92:83:8f:c9:ae:be:9a:e9:2a:f7:
19:cd:85:a8:f2:5d:89:e3:f6:25:8d:48:b5:45:bf:
30:4f:ef:99:ae:0d:e4:aa:84:82:5b:c7:16:80:b4:
b8:8b:67:ac:19:c1:c5:02:4e:8f:1a:88:0c:dd:d7:
a7:f0:76:e6:28:f5:9c:2c:73:d5:f4:76:22:36:40:
c5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:76:E5:A1:90:B1:C7:9F:78:27:6E:06:EA:B3:82:45:65:F1:B0:E8
X509v3 Authority Key Identifier:
keyid:62:96:16:5C:36:DF:96:05:66:B1:ED:35:0E:A7:DE:7F:33:8B:3A:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YpYWXDbflgVmse01DqfefzOLOpk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91456CD/AC4A88403E0F11F1AA158D56AA833773/YpYWXDbflgVmse01DqfefzOLOpk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e0:25:06:a9:78:eb:b0:30:cb:f2:e0:0d:b3:0c:13:8c:47:
ea:ec:30:66:48:08:1a:83:37:e1:d7:22:fb:84:00:49:da:62:
1b:d5:c5:1e:0c:dd:1c:ef:76:12:d8:38:29:e5:b5:68:f5:c9:
37:74:a0:da:6a:b6:47:8c:01:50:f1:0a:e5:7a:db:a0:92:bb:
d0:59:90:5b:ce:7c:f3:ea:75:74:fd:0f:0e:d2:72:ef:8e:43:
c3:e1:11:34:f7:67:73:be:91:47:bc:0b:77:53:1c:f9:5f:58:
d0:1e:b8:12:73:f4:a0:bb:da:d3:42:7d:be:93:8e:c9:d5:b4:
fb:24:f3:f0:fa:01:e2:ca:9f:66:cb:0f:d8:a3:9d:d1:41:5b:
ae:0b:fc:41:2d:02:fa:c6:7a:ee:80:44:ab:66:52:39:80:8a:
90:dc:9e:77:11:20:df:1a:61:3f:27:5a:d3:84:1f:9c:af:c2:
0d:b4:f9:3f:39:6e:ac:57:46:88:ff:60:5e:c4:51:72:58:6a:
b4:a6:9a:00:9e:5c:09:2f:18:b1:1e:f5:f6:b0:ab:91:89:a8:
97:3a:49:ee:62:30:41:f6:ea:fe:16:a5:83:2e:5c:5c:cc:d8:
59:f1:3a:93:41:81:6b:26:73:db:49:21:a7:64:c4:ca:83:a6:
19:f2:16:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:01:42 2026 by rpki-client