
$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft
File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json)
Hash identifier: SAvJ+xqgvpLBljrbr0lWyP9OAAVxC/NwJ98y1wN60dw=
Subject key identifier: B0:82:67:ED:95:F8:6E:13:D9:41:16:BE:8E:B2:CE:1F:3E:8A:8B:D8
Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3
Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3
Certificate serial: 0155
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft
Manifest number: 014D
Signing time: Fri 17 Jul 2026 06:19:06 +0000
Manifest this update: Fri 17 Jul 2026 06:19:05 +0000
Manifest next update: Fri 24 Jul 2026 06:19:05 +0000
Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: hE5qKAR9SiRBYwhlHDA4W3+LUbhRGsvj+otFiK/QIOY=)
2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: Sej2V4OlsP7Ps6e9ZpabG+sOD+K5ClIDNHh6GA9v3Kg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl
rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 341 (0x155)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3
Validity
Not Before: Jul 17 06:19:05 2026 GMT
Not After : Jul 24 06:19:05 2026 GMT
Subject: CN=6a59c95a-e43c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:75:12:a7:07:67:2a:06:1a:62:0c:f5:fa:c0:
04:05:bc:13:b2:b3:92:ab:c4:b7:b2:cd:67:78:7a:
76:40:c3:02:0d:83:4d:b8:66:2d:03:de:90:3b:a4:
2e:3d:4f:2c:e6:ab:40:71:36:6c:43:64:c2:5c:01:
b0:16:a6:19:88:6b:44:65:ea:25:9c:8f:60:13:55:
cb:38:3e:81:e3:c3:ca:41:21:7a:2b:61:77:b9:ca:
fe:da:f9:a6:c6:66:67:4f:0c:1d:4d:f5:a6:a5:27:
21:23:53:31:c3:22:7e:9a:03:e0:e5:0c:57:bb:ac:
56:3e:f1:0b:d6:77:fe:6a:63:ab:88:eb:c9:c7:3b:
d8:1b:7e:97:c2:58:4b:f8:1c:36:4f:a2:2f:e1:a2:
4d:3c:08:ad:fd:52:b8:d3:5e:83:f2:2d:6b:8a:0e:
f2:2b:ff:59:49:1c:4f:51:54:26:a9:d4:4e:e0:a1:
1d:b1:d8:d3:0d:59:94:ba:0c:9e:7a:95:03:e5:3c:
75:67:88:7c:26:5d:62:75:bf:a3:e9:da:50:48:28:
31:c6:d7:ff:fd:54:f5:a0:5d:2b:9f:f8:39:f9:5f:
80:39:07:9c:74:ea:12:11:6a:2a:64:29:32:68:fa:
bc:2f:b3:8f:38:21:85:d5:4b:b7:2e:b6:5a:5a:ca:
e6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:82:67:ED:95:F8:6E:13:D9:41:16:BE:8E:B2:CE:1F:3E:8A:8B:D8
X509v3 Authority Key Identifier:
keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:c9:8e:2b:fa:e1:6c:0f:9c:ba:08:fb:0a:5b:98:6e:59:41:
1d:5c:ce:45:b3:8b:8b:60:13:6d:d4:1f:85:1b:91:c6:6c:08:
31:fa:d1:00:ea:dd:66:97:60:42:ba:2a:b9:7d:3e:4f:a2:94:
6f:b5:38:60:ec:1d:e6:73:24:02:18:8d:70:40:3a:3f:7b:c7:
4a:3d:54:7d:ce:cd:42:60:6c:ec:50:3c:e5:33:62:46:d3:88:
60:6a:49:ca:f5:5a:83:0a:7e:4a:d6:bc:ed:45:3e:3b:2e:b7:
db:94:31:e8:48:52:b2:75:5a:6a:3c:89:25:d4:25:dd:38:67:
e2:7c:09:58:c8:44:59:d6:a3:00:e3:ea:42:35:d5:57:b3:e8:
08:4e:d5:6b:0d:25:12:79:f2:4b:bd:e5:24:ac:b6:5f:3c:01:
45:11:d5:f5:b0:cf:1f:22:fe:56:39:ba:3e:5e:b6:20:61:f0:
44:5f:31:62:87:28:57:be:bc:a1:3f:a2:c1:24:81:97:8f:d1:
21:c5:d1:82:ba:c5:73:06:aa:2f:79:3d:88:a4:98:a4:5a:e3:
c6:45:8d:68:d4:23:3f:08:f3:74:1d:5a:61:bf:93:58:5e:d9:
44:54:92:75:86:97:93:82:aa:ca:f6:66:f5:41:19:47:97:1e:
ed:99:f9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:28:12 2026 by rpki-client