
$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json)
Hash identifier: NEabnO8yadtvweAEj7h/Y9Lf8Gh1hS9H2HsP5QcNlPw=
Subject key identifier: 4F:BF:33:EB:65:3A:E2:1D:D3:67:FC:6D:52:2D:29:41:03:99:65:75
Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC
Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC
Certificate serial: 357C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
Manifest number: 356A
Signing time: Tue 30 Jun 2026 14:46:56 +0000
Manifest this update: Tue 30 Jun 2026 14:46:55 +0000
Manifest next update: Tue 07 Jul 2026 14:46:55 +0000
Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: 2YjowH3HVynoHTebPcAzXLgda2fw4nVTKkKbCIplY/s=)
2: 67AAC7161D1411F1B0E2BAD80C3D8C67.roa (hash: CHdRjKAYDzl4mARbLMEIedXV1bESXGd76YlTxW4AhVo=)
3: 5D8B2B06D90B11F0A960BEC67CD3641D.roa (hash: yOZ7NWihMQh2xMOicbiIAZG+/dVYwm+tNO5GsESSJA4=)
4: 4821776AD9A211F092913C6268D3641D.roa (hash: Sy1HvppFOycihdTszz/358rIRt69yzzeT9izOzy0CC4=)
5: 929D25381D1711F1981A78170E3D8C67.roa (hash: i9GKuEAC1w7Uzsve2QE3rzgfDee7AvdLIQUdi85I8+s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl
rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 Jul 2026 14:46:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13692 (0x357c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC
Validity
Not Before: Jun 30 14:46:55 2026 GMT
Not After : Jul 7 14:46:55 2026 GMT
Subject: CN=6a43d6e0-ecb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cc:f3:d1:ee:79:a2:cd:ed:94:79:bd:c5:9e:
11:91:c6:a0:25:6b:8d:03:18:d9:14:94:c4:80:55:
5c:6c:9c:a2:06:a6:2b:38:9d:20:eb:82:82:40:b1:
85:75:d5:4b:a1:95:f3:9d:73:8c:d8:20:ef:b9:c4:
38:e2:96:28:d4:a9:46:41:34:8f:b4:5e:7d:2f:52:
25:58:1f:fc:18:aa:aa:58:f5:86:95:02:9c:57:6f:
77:64:82:64:44:75:12:81:b1:cc:69:8a:ae:57:a1:
99:d4:1c:39:85:79:c8:73:1b:2b:e3:fb:45:92:10:
d4:b2:9c:91:87:0d:22:9e:2b:14:d6:39:cf:8f:78:
e8:b6:77:3b:0d:c0:3c:c9:86:81:4f:6b:37:d1:74:
e1:7f:c4:2b:af:8b:0e:77:5f:e4:aa:6e:0c:5c:0e:
c5:a3:13:e8:7e:ef:ad:e1:76:d4:de:ba:1e:fc:f1:
44:c6:13:e6:10:8c:41:d1:2b:09:11:a1:77:ec:74:
e2:bd:f0:da:7e:7c:06:be:94:e3:fa:3f:55:5f:a9:
0b:77:ac:28:f9:89:70:aa:f3:5e:44:2a:e5:7a:af:
65:10:49:82:12:e8:e2:09:d0:7c:cb:f5:28:b1:0b:
06:24:41:22:a6:23:d7:12:a4:d8:69:56:e2:0d:72:
77:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BF:33:EB:65:3A:E2:1D:D3:67:FC:6D:52:2D:29:41:03:99:65:75
X509v3 Authority Key Identifier:
keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
68:aa:13:4b:3d:ac:60:1a:3b:c1:61:73:c5:88:d2:6e:62:f8:
58:81:ea:24:fb:03:27:e7:3e:2a:9f:22:d2:37:f3:20:3c:0d:
96:36:b3:05:11:ab:79:83:8b:46:04:29:ae:d2:04:e3:5f:f6:
d6:cf:2b:3c:22:51:5c:7f:a1:4a:5f:c5:f0:d3:16:c4:05:fa:
6d:42:aa:08:59:48:05:e8:4a:c6:f4:d6:96:03:78:4b:16:ec:
d1:de:7f:91:70:12:19:8e:a3:db:a5:0a:cf:8b:37:fc:e1:05:
66:d5:ce:7c:94:ef:1c:4c:ac:e2:41:6b:2f:2b:b3:9c:ff:60:
e4:5c:a5:aa:b0:fd:f5:33:e2:5f:7b:df:56:e4:8c:e7:23:f5:
9f:a5:3a:4e:65:ae:ad:3a:75:e3:10:19:e2:0c:1b:dc:10:70:
ea:91:2c:3c:8c:cd:3e:2a:57:53:53:bd:1e:97:f4:d2:60:b9:
7d:43:ed:a3:fb:49:6a:ce:b8:41:70:a0:9b:a8:ad:e8:5b:21:
fa:83:98:07:98:41:2b:d3:41:8d:14:7a:8e:15:57:0b:32:6a:
71:dc:ba:65:1f:d1:77:29:49:31:e4:00:70:d3:e1:c1:9f:dc:
7e:5a:39:9a:43:b4:af:49:49:f5:7d:63:6a:c9:a7:35:8a:b2:
c8:82:c3:6e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICNXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2
MUFEMzI1QUMwHhcNMjYwNjMwMTQ0NjU1WhcNMjYwNzA3MTQ0NjU1WjAYMRYwFAYD
VQQDEw02YTQzZDZlMC1lY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApMzz0e55os3tlHm9xZ4RkcagJWuNAxjZFJTEgFVcbJyiBqYrOJ0g64KCQLGF
ddVLoZXznXOM2CDvucQ44pYo1KlGQTSPtF59L1IlWB/8GKqqWPWGlQKcV293ZIJk
RHUSgbHMaYquV6GZ1Bw5hXnIcxsr4/tFkhDUspyRhw0inisU1jnPj3jotnc7DcA8
yYaBT2s30XThf8Qrr4sOd1/kqm4MXA7FoxPofu+t4XbU3roe/PFExhPmEIxB0SsJ
EaF37HTivfDafnwGvpTj+j9VX6kLd6wo+YlwqvNeRCrleq9lEEmCEujiCdB8y/Uo
sQsGJEEipiPXEqTYaVbiDXJ3IwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE+/M+tl
OuId02f8bVItKUEDmWV1MB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE
OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK
YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC
TEpmQzNPeDhrRzVoclRKYXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAaKoTSz2sYBo7wWFzxYjSbmL4WIHqJPsDJ+c+Kp8i0jfzIDwNljazBRGreYOL
RgQprtIE41/21s8rPCJRXH+hSl/F8NMWxAX6bUKqCFlIBehKxvTWlgN4Sxbs0d5/
kXASGY6j26UKz4s3/OEFZtXOfJTvHEys4kFrLyuznP9g5FylqrD99TPiX3vfVuSM
5yP1n6U6TmWurTp14xAZ4gwb3BBw6pEsPIzNPipXU1O9Hpf00mC5fUPto/tJas64
QXCgm6it6Fsh+oOYB5hBK9NBjRR6jhVXCzJqcdy6ZR/RdylJMeQAcNPhwZ/cflo5
mkO0r0lJ9X1jasmnNYqyyILDbg==
-----END CERTIFICATE-----
Generated at Wed Jul 1 08:27:27 2026 by rpki-client