
$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json)
Hash identifier: Ix+7d4/96yacxcfd2wtFsVVULp7eXFc//k97/iT/PqA=
Subject key identifier: F7:4E:20:78:0D:7C:66:76:15:B1:D5:42:95:6E:04:5D:33:B6:A2:03
Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7
Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7
Certificate serial: 0AEF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
Manifest number: 0AD5
Signing time: Tue 14 Jul 2026 19:42:36 +0000
Manifest this update: Tue 14 Jul 2026 19:42:35 +0000
Manifest next update: Tue 21 Jul 2026 19:42:35 +0000
Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: QT60WPm0TBsDEOBPeTmB3msSy7NsOBgS+7yr5+WQLX8=)
2: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: /vzrtqQCcQVSvHagWxuB+gMULE9rVx3mbboeBNca//A=)
3: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: Qr7OnU5cwXgYQ6DyrDnDHL3zNQ6VCMQTENBCUIMJfFg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl
rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 21 Jul 2026 19:42:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2799 (0xaef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7
Validity
Not Before: Jul 14 19:42:35 2026 GMT
Not After : Jul 21 19:42:35 2026 GMT
Subject: CN=6a56912c-e3cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:ff:a7:75:e0:69:28:2a:06:4b:be:01:ae:
cf:b3:26:02:23:11:97:d8:70:a6:19:d6:f8:7a:a5:
86:68:c1:11:98:67:61:e2:a0:7c:a7:71:59:a4:62:
59:48:34:b9:12:6d:ff:0a:a1:f6:a9:f3:85:08:00:
63:70:77:96:1b:ca:e8:0a:44:28:c3:2c:d4:d5:e4:
6a:7d:1d:2e:9b:82:fd:56:f2:07:23:6d:40:92:42:
fb:8a:fc:28:0a:f1:a7:ca:61:a1:7d:fb:0a:f8:2a:
08:de:24:95:3d:ae:59:1b:44:b3:92:00:9c:da:84:
72:9a:c6:4e:e7:71:56:4c:b4:5c:4a:b8:6a:2e:84:
0f:cf:02:35:f1:c1:13:86:19:66:46:d6:79:38:f2:
7e:18:7e:e6:30:7d:cd:20:66:21:06:90:28:9e:91:
58:23:d9:8d:d9:bf:74:e4:97:18:62:17:e6:ea:9c:
8a:fa:99:e9:4f:7b:c9:00:09:3a:8d:45:a7:72:16:
d2:dd:0a:5a:35:87:d5:b6:ba:78:76:ca:22:05:fd:
d3:5d:a9:77:ea:f9:43:08:52:15:91:0c:8c:f1:c2:
44:33:6c:bb:e3:22:50:4b:e4:cd:6d:8c:67:4c:64:
46:28:38:60:d2:a1:9c:c2:5b:a2:2d:a6:48:21:a9:
e9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4E:20:78:0D:7C:66:76:15:B1:D5:42:95:6E:04:5D:33:B6:A2:03
X509v3 Authority Key Identifier:
keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8d:2e:31:ba:1e:30:73:36:5f:31:fc:a3:3c:6a:6f:8c:19:38:
d9:63:6e:0f:a7:dd:f5:f6:c0:8d:e8:d7:92:e0:21:be:a5:28:
d0:49:54:6c:dd:00:64:22:70:a9:96:2f:a6:1c:9a:e4:a1:7f:
e4:ff:83:35:95:7b:b9:71:35:3a:fd:c3:6b:28:3c:63:6d:37:
70:36:cb:a7:7b:01:74:0f:95:64:20:6c:e4:d5:7d:49:f4:27:
a8:32:e9:e6:78:35:38:17:0e:76:72:39:e1:9a:76:d5:97:1e:
22:c7:10:d1:01:45:80:bc:5e:f8:40:74:17:9d:16:7f:54:a4:
0f:21:bf:34:ca:19:b2:91:e6:05:f4:77:ba:85:50:0b:62:96:
1b:ec:74:4f:d4:00:a2:8a:83:16:2e:87:6f:70:9c:21:aa:d0:
76:85:e4:b1:13:28:ee:0a:2a:e7:b3:6e:23:6a:ca:d5:2f:42:
9d:7f:4a:85:39:c1:da:e9:4d:08:e7:66:20:34:17:36:2e:8e:
7c:c7:03:cd:29:47:38:52:b7:88:02:e0:66:e4:9c:49:66:05:
ff:e2:dd:87:f0:03:65:7c:b7:2b:94:45:ca:12:f5:8f:2e:47:
41:dd:f8:71:1f:7a:a3:5d:5d:15:e6:80:98:26:34:ba:6a:9f:
4b:09:a6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 01:46:06 2026 by rpki-client