
$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft
File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json)
Hash identifier: 5y09WJSuBpO0wTPEzsf09/rDeG1s7aHfp4TOmeKuNPA=
Subject key identifier: F7:DA:C3:E5:C5:40:55:71:6A:57:95:BC:9B:49:0E:EB:8F:4B:E7:B6
Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E
Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E
Certificate serial: 0172
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft
Manifest number: 0166
Signing time: Fri 17 Jul 2026 06:01:22 +0000
Manifest this update: Fri 17 Jul 2026 06:01:22 +0000
Manifest next update: Fri 24 Jul 2026 06:01:22 +0000
Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: u5hbbRvVKPDRwHH30HyTd8/aE1zT1d5tuABwMItJ4uU=)
2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: Oees07yYoqgn5PrN7dD6R0kAM+w8GIQPtiPs4eqC920=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl
rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370 (0x172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E
Validity
Not Before: Jul 17 06:01:22 2026 GMT
Not After : Jul 24 06:01:22 2026 GMT
Subject: CN=6a59c532-8d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bb:64:2a:3d:b6:b3:c9:18:6d:4e:51:b5:34:
31:ac:b7:b2:60:fd:e8:6c:03:4c:9d:38:c6:fb:32:
d5:8a:53:e5:88:c3:5f:e8:4d:f1:24:9a:f4:b9:b3:
0e:60:fb:dc:09:3c:28:18:c8:d8:c9:47:16:33:72:
55:81:7f:00:96:76:c0:74:ee:ec:80:f8:4b:4e:d9:
bf:d7:b7:39:cc:ae:4e:c7:84:fc:84:b1:ef:30:e9:
77:9d:b3:ac:27:45:59:be:6f:db:3c:6f:ff:39:4a:
3e:25:5a:85:8c:45:b4:e0:1b:21:b2:ff:23:67:df:
fe:63:97:b7:4d:11:57:2e:7c:3b:6c:43:d5:7f:5c:
e6:db:53:9e:bb:f0:bd:f5:39:fa:f8:85:8c:3c:0e:
fb:d7:01:98:48:98:60:57:ff:6d:bb:f4:2a:ca:e5:
ef:4c:06:72:ed:cd:a7:25:d2:15:f0:bb:1c:a5:e1:
57:bb:51:e0:16:d0:f9:45:43:1c:3a:d3:33:fe:08:
73:77:a7:20:40:dc:8b:73:06:68:3a:fc:d6:5f:4a:
56:ab:ba:a9:18:72:65:49:e4:5c:cc:2a:c4:f2:06:
e4:09:f9:2c:51:f2:fc:b5:f6:39:d2:ef:4f:0d:ab:
1d:5c:46:f5:72:0a:dd:6a:ea:8a:02:f2:e1:68:c8:
d1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DA:C3:E5:C5:40:55:71:6A:57:95:BC:9B:49:0E:EB:8F:4B:E7:B6
X509v3 Authority Key Identifier:
keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
87:fb:bb:1a:46:db:47:1e:df:e2:7e:07:ee:59:bc:87:d7:64:
ff:d2:95:00:da:90:77:60:a6:f1:9a:f5:c4:7a:7c:bc:4c:e8:
89:60:1d:1f:4c:d8:46:8b:57:1f:2c:41:c0:8f:a6:45:9b:17:
6c:4e:97:ed:af:3b:bd:1e:44:41:14:12:64:ee:d7:48:d1:74:
17:b8:1c:f0:e6:83:7e:12:b5:38:24:13:8b:c9:16:de:6a:86:
61:e0:a9:c0:38:11:dd:08:33:12:35:30:1a:8c:99:fb:26:a7:
21:c1:32:a2:30:01:13:9e:b7:cf:9c:b8:00:12:42:fb:ad:22:
f7:2f:06:54:9d:25:a4:b0:2b:bf:c9:fd:0c:fb:42:0d:72:a3:
e2:d1:ff:1a:04:04:79:b5:b5:a5:48:af:52:16:67:15:1e:35:
43:0d:0b:ba:44:e2:e1:1f:66:d3:36:d7:77:ea:b3:57:c9:70:
ce:de:14:50:9c:7c:f1:bb:79:81:cc:89:29:1c:e3:fa:d1:81:
fd:d8:a4:94:4f:e7:6e:f5:f7:10:17:9c:30:43:df:34:cf:42:
ba:af:55:af:97:4a:6e:69:bb:c5:50:2d:3b:a9:6c:df:0f:c9:
9b:8a:3a:44:04:9c:41:39:bf:9c:6a:03:c0:1c:94:1b:63:43:
59:cc:b8:c8
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC
RDM0MTgzNEUwHhcNMjYwNzE3MDYwMTIyWhcNMjYwNzI0MDYwMTIyWjAYMRYwFAYD
VQQDEw02YTU5YzUzMi04ZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAn7tkKj22s8kYbU5RtTQxrLeyYP3obANMnTjG+zLVilPliMNf6E3xJJr0ubMO
YPvcCTwoGMjYyUcWM3JVgX8AlnbAdO7sgPhLTtm/17c5zK5Ox4T8hLHvMOl3nbOs
J0VZvm/bPG//OUo+JVqFjEW04Bshsv8jZ9/+Y5e3TRFXLnw7bEPVf1zm21Oeu/C9
9Tn6+IWMPA771wGYSJhgV/9tu/QqyuXvTAZy7c2nJdIV8LscpeFXu1HgFtD5RUMc
OtMz/ghzd6cgQNyLcwZoOvzWX0pWq7qpGHJlSeRczCrE8gbkCfksUfL8tfY50u9P
DasdXEb1cgrdauqKAvLhaMjR+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPfaw+XF
QFVxaleVvJtJDuuPS+e2MB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0
MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn
MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5
TFlYelJHNzlSMEM5TkJnMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAh/u7GkbbRx7f4n4H7lm8h9dk/9KVANqQd2Cm8Zr1xHp8vEzoiWAdH0zYRotX
HyxBwI+mRZsXbE6X7a87vR5EQRQSZO7XSNF0F7gc8OaDfhK1OCQTi8kW3mqGYeCp
wDgR3QgzEjUwGoyZ+yanIcEyojABE563z5y4ABJC+60i9y8GVJ0lpLArv8n9DPtC
DXKj4tH/GgQEebW1pUivUhZnFR41Qw0LukTi4R9m0zbXd+qzV8lwzt4UUJx88bt5
gcyJKRzj+tGB/diklE/nbvX3EBecMEPfNM9Cuq9Vr5dKbmm7xVAtO6ls3w/Jm4o6
RAScQTm/nGoDwByUG2NDWcy4yA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:13 2026 by rpki-client