
$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json)
Hash identifier: D5i2Xf/TXPVj4EcBP9DxXTV4gsjhIqybx/XfCd+1cHc=
Subject key identifier: 53:CA:F1:4A:FD:C5:D7:4B:BF:0D:EE:45:4F:ED:C4:8D:92:A6:9E:40
Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A
Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A
Certificate serial: 0270
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
Manifest number: 026A
Signing time: Fri 17 Jul 2026 02:57:12 +0000
Manifest this update: Fri 17 Jul 2026 02:57:11 +0000
Manifest next update: Fri 24 Jul 2026 02:57:11 +0000
Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: qiK4r48t5TL+p5yua6qgF/OqKXGS9XaIBWu6o1WBwBQ=)
2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: XRam2F4FC1VRB1bzeJbTRlXhvSOCTuW1Ti0TuLeUucE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl
rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:57:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 624 (0x270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A
Validity
Not Before: Jul 17 02:57:11 2026 GMT
Not After : Jul 24 02:57:11 2026 GMT
Subject: CN=6a599a08-299e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9f:43:72:71:93:33:2c:bb:c6:13:a7:ed:3c:
01:8f:ae:9f:85:b9:9a:17:13:ab:c0:f6:5b:b7:f3:
56:6e:e7:7c:42:ec:70:6a:43:8a:5b:a9:ff:24:8b:
5d:80:76:0b:a0:97:67:38:62:7d:da:f3:cd:bd:71:
7b:2a:15:7d:45:e9:6f:6c:36:4d:23:86:a2:16:f4:
e3:94:88:04:f7:93:99:6e:58:0e:d0:56:cb:29:6e:
dc:4f:a8:54:6d:3a:ac:45:c9:7f:08:dc:fc:63:8f:
8c:e6:39:7d:81:e4:54:c5:8c:6f:24:ec:e6:29:4d:
19:ca:f7:27:12:3f:57:8a:b9:ff:6f:c3:ce:9c:cd:
f5:62:d4:3a:a7:e8:fd:b4:fd:54:a0:b8:d3:c9:88:
74:16:64:fa:de:55:e9:e6:41:d0:5b:b2:ea:ca:fd:
f8:37:c7:2a:93:c1:02:2c:ea:7f:dc:81:04:e2:0d:
dc:7d:80:e9:fd:dd:63:41:b6:79:3a:ab:b4:07:a7:
63:0d:58:3c:55:b7:ba:6f:21:b6:c3:e2:c1:3b:f4:
f8:8e:30:31:d2:fc:f5:08:7d:24:b3:ac:f5:c3:c4:
66:83:aa:8c:57:dc:cb:f4:6f:09:82:cc:7d:30:51:
fd:e2:82:88:11:68:3b:b4:b9:c5:45:54:9f:7f:1c:
bc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CA:F1:4A:FD:C5:D7:4B:BF:0D:EE:45:4F:ED:C4:8D:92:A6:9E:40
X509v3 Authority Key Identifier:
keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
29:a2:f9:be:bb:d7:cf:1f:f8:77:e4:ce:bf:34:68:09:65:4c:
21:0b:15:f8:58:6a:93:d7:3c:64:33:84:46:35:e3:03:33:3e:
f9:31:d6:3f:22:c4:41:7f:7a:d5:8a:f1:ee:d0:2e:09:7e:a5:
f1:11:7c:d9:e7:77:cd:76:7a:0e:d8:07:f0:31:db:e9:30:cc:
c3:5a:32:10:7d:ae:84:46:6c:3f:38:e3:0c:bc:fb:a1:ba:fc:
91:7d:0d:47:07:88:c3:68:7a:af:f3:96:fc:32:98:85:2a:2a:
15:64:e3:6b:73:95:aa:cc:88:4e:11:b7:b9:e5:9c:bb:52:9b:
9f:3b:b7:6d:19:32:60:59:d7:99:ce:78:23:d6:b1:56:ed:28:
3c:08:bc:23:56:30:42:81:4f:b1:3c:4b:dc:c2:e7:1f:e8:e8:
05:1d:7f:db:40:98:5c:f0:69:e2:f2:86:39:f4:41:6a:1d:de:
6c:af:1c:1e:d7:28:eb:ad:23:83:61:22:4a:fd:7c:58:11:0b:
97:1f:06:7f:ed:b9:46:8d:79:e3:31:6c:41:d4:37:4f:5e:58:
9d:f6:15:01:36:ed:17:89:43:33:8a:c3:5a:fc:24:97:0f:c5:
58:70:70:dd:a3:0f:21:47:68:95:6d:43:b9:df:33:2f:ac:44:
a4:f4:88:41
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2
OTNGNjM0M0EwHhcNMjYwNzE3MDI1NzExWhcNMjYwNzI0MDI1NzExWjAYMRYwFAYD
VQQDEw02YTU5OWEwOC0yOTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr59DcnGTMyy7xhOn7TwBj66fhbmaFxOrwPZbt/NWbud8QuxwakOKW6n/JItd
gHYLoJdnOGJ92vPNvXF7KhV9RelvbDZNI4aiFvTjlIgE95OZblgO0FbLKW7cT6hU
bTqsRcl/CNz8Y4+M5jl9geRUxYxvJOzmKU0ZyvcnEj9Xirn/b8POnM31YtQ6p+j9
tP1UoLjTyYh0FmT63lXp5kHQW7Lqyv34N8cqk8ECLOp/3IEE4g3cfYDp/d1jQbZ5
Oqu0B6djDVg8Vbe6byG2w+LBO/T4jjAx0vz1CH0ks6z1w8Rmg6qMV9zL9G8Jgsx9
MFH94oKIEWg7tLnFRVSffxy8BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFPK8Ur9
xddLvw3uRU/txI2Spp5AMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy
OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO
RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm
VHRxRHp3dEdJN2RwUDJORG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAKaL5vrvXzx/4d+TOvzRoCWVMIQsV+Fhqk9c8ZDOERjXjAzM++THWPyLEQX96
1Yrx7tAuCX6l8RF82ed3zXZ6DtgH8DHb6TDMw1oyEH2uhEZsPzjjDLz7obr8kX0N
RweIw2h6r/OW/DKYhSoqFWTja3OVqsyIThG3ueWcu1Kbnzu3bRkyYFnXmc54I9ax
Vu0oPAi8I1YwQoFPsTxL3MLnH+joBR1/20CYXPBp4vKGOfRBah3ebK8cHtco660j
g2EiSv18WBELlx8Gf+25Ro154zFsQdQ3T15YnfYVATbtF4lDM4rDWvwklw/FWHBw
3aMPIUdolW1Dud8zL6xEpPSIQQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:21:19 2026 by rpki-client