
$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json)
Hash identifier: +ASnOcKRUQjTos4bpx46K3k4Gq/M22BS0NdIRKKZrMg=
Subject key identifier: DC:93:37:2A:39:CF:77:8A:76:03:1A:45:5F:F2:88:5F:68:64:98:81
Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D
Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D
Certificate serial: C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
Manifest number: BF
Signing time: Fri 17 Jul 2026 08:10:41 +0000
Manifest this update: Fri 17 Jul 2026 08:10:41 +0000
Manifest next update: Fri 24 Jul 2026 08:10:41 +0000
Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: utnIV1BmHdN/uPCFbySJTqBaQw+twGjKbmYsTj8pkM0=)
2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 3eyoBtxWZnVo9d8QTWGg5n0zVCETmWq673Im+Ia8NGk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl
rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:10:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199 (0xc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D
Validity
Not Before: Jul 17 08:10:41 2026 GMT
Not After : Jul 24 08:10:41 2026 GMT
Subject: CN=6a59e381-f93f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:db:6f:27:1b:90:8c:e1:bf:66:a3:63:bc:
07:2c:d5:16:53:2e:13:29:a4:7f:b8:27:94:ba:c7:
e2:66:9e:fe:4f:2d:d8:c6:a0:07:2e:d4:ae:e0:2a:
78:68:29:ef:b3:f3:b3:e1:4e:fd:4e:17:d8:5b:b0:
d9:96:1b:47:99:f7:07:c0:65:20:09:a5:cd:fa:13:
3a:35:1a:41:84:52:a3:32:ce:71:dc:89:58:c4:6f:
b7:72:d9:82:ee:bd:fb:8e:fd:75:b3:4f:2b:34:7c:
2e:87:1f:17:23:d0:fb:90:6d:40:46:b8:f5:08:7c:
9f:c8:03:37:fe:8a:57:b2:78:c5:ee:64:24:23:a3:
33:52:ca:0b:27:17:5f:71:6d:01:e8:58:21:35:a8:
8c:63:6e:92:7d:f8:4a:00:9a:4f:5e:e3:da:40:ee:
3d:63:79:98:5d:1e:10:d8:fa:e1:74:0b:d0:b0:15:
c8:32:87:ea:43:9d:5b:bf:da:20:96:4a:91:29:72:
b6:3a:94:b6:ca:15:41:c9:4d:16:37:5a:f3:57:0a:
72:d6:a3:95:78:e5:55:1f:e7:7c:3c:5b:4b:56:ba:
69:7f:be:c6:ce:7d:6e:15:e9:ae:60:76:cc:8a:37:
31:93:f0:cd:f1:6f:23:50:b3:61:c2:1c:e3:80:49:
28:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:93:37:2A:39:CF:77:8A:76:03:1A:45:5F:F2:88:5F:68:64:98:81
X509v3 Authority Key Identifier:
keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0c:6b:49:6d:84:e2:db:61:22:60:10:f8:4a:2d:8c:1e:73:4a:
12:d7:ad:47:82:a3:25:11:a0:27:97:98:05:92:23:50:0d:1c:
67:c9:72:71:e8:d7:db:ec:53:e2:29:30:4b:72:01:55:18:8c:
ec:40:be:72:4b:cc:42:a0:59:3f:7b:be:b4:6b:19:a8:4e:52:
53:86:7b:03:b4:e0:e9:57:63:00:f8:55:0a:2e:43:94:82:69:
90:32:f6:6e:eb:f3:c7:3e:2a:71:be:c9:99:de:ab:b3:8b:3f:
cd:8a:f2:0c:43:85:f9:34:b2:18:9a:ee:c8:2b:52:3f:af:db:
09:b7:19:23:49:ce:0d:61:e6:7c:81:4c:51:91:b4:9a:29:28:
95:02:6f:e4:7c:a8:fb:13:bb:a3:d5:48:1f:48:5c:32:68:06:
42:d7:00:f1:e4:6c:41:91:85:b3:f3:5a:8d:6b:91:bd:49:46:
a2:61:e8:61:87:b4:ec:58:37:88:34:4a:76:50:5a:29:1e:2c:
3d:56:68:bc:61:11:ff:89:61:d7:c6:7e:e0:1a:03:53:0f:38:
54:59:5d:3f:e7:90:6c:ca:40:37:da:61:b0:ec:d5:df:a2:ee:
93:14:29:af:ad:cf:ce:32:51:c7:9d:97:84:e7:87:4d:f1:7f:
20:f1:4c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:54 2026 by rpki-client