
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json)
Hash identifier: nUC8O3MWhexiHZqdeEllNSOjEOBFaEo+27cHL0IacfE=
Subject key identifier: 2F:E0:6E:32:08:E3:85:8F:DF:E1:42:EC:E7:67:B0:ED:3B:8D:13:86
Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40
Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040
Certificate serial: 0264
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
Manifest number: 0257
Signing time: Thu 09 Jul 2026 03:44:51 +0000
Manifest this update: Thu 09 Jul 2026 03:44:50 +0000
Manifest next update: Thu 16 Jul 2026 03:44:50 +0000
Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: D54sRSv2HyyXijAvZuJa+t7CqTEM5A4LRzZY9hLezTk=)
2: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: IRQ+OR5t+v1uxAMW20q5TYiXjn6EFNEgE2VqHO9rI/w=)
3: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: QhSp+pceORKO5TeSj6aanaSrz92dgNngwmylNT95Bc4=)
4: 7BD32D1678F211F1985843FB5DA30FBC.roa (hash: y5JcZuVUbyUkHrroNxYLyYNDHkcGqagm4UKRx6C9gY0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl
rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 03:44:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 612 (0x264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040
Validity
Not Before: Jul 9 03:44:50 2026 GMT
Not After : Jul 16 03:44:50 2026 GMT
Subject: CN=6a4f1933-cf3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:48:35:66:e2:2b:04:84:9c:82:05:e3:c4:60:
12:06:eb:6d:e7:1c:b7:af:46:51:eb:90:32:a7:67:
ff:62:ac:ed:84:a8:c8:6f:1e:98:04:1b:0e:b6:a6:
ec:b7:86:17:38:be:84:50:64:23:86:95:fe:aa:6e:
d0:11:ef:a5:1a:c9:20:f4:96:e3:69:85:39:9d:5d:
18:09:98:f9:24:5d:dd:18:c7:0b:bd:aa:87:c7:1d:
9a:9c:07:1f:98:f9:2a:08:91:d4:c1:3f:7d:19:40:
65:88:58:75:b5:13:c3:9b:23:96:6d:9e:e6:7d:a2:
e2:68:7e:13:11:56:29:31:fc:12:a8:f6:98:4c:0b:
60:f7:db:2b:39:73:9a:8a:ea:d4:f4:3a:c4:59:1b:
12:97:4d:b7:69:8e:15:78:34:99:02:f3:7a:66:88:
21:f6:18:08:9c:c0:60:dd:39:14:78:42:1f:46:18:
c0:d0:51:38:49:f8:38:fa:47:4e:e3:ef:7a:46:71:
db:c2:e3:ef:6d:b1:91:14:ad:c7:9f:52:6e:51:d0:
91:51:c1:11:cd:f5:e4:c4:11:8b:7e:09:9f:1f:fa:
dc:1c:ac:ad:0c:8d:65:ba:07:c7:7c:32:0e:68:d1:
4e:27:bc:2f:08:48:94:07:e6:c3:cc:45:45:05:e7:
17:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E0:6E:32:08:E3:85:8F:DF:E1:42:EC:E7:67:B0:ED:3B:8D:13:86
X509v3 Authority Key Identifier:
keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:d2:ad:db:56:ff:20:a7:16:4f:7b:43:aa:41:52:02:4d:d5:
62:5d:1c:74:36:15:c6:c7:34:0b:14:2b:2c:a7:c7:fe:7f:b9:
e7:1a:be:92:e7:ea:1a:41:6a:a0:25:37:15:27:33:08:1e:57:
04:d4:dc:a1:d3:f8:68:54:62:70:be:d2:5b:c4:86:4c:76:d6:
b8:d0:38:fa:9f:cd:4c:ad:4b:5b:4d:a5:aa:3d:94:80:8d:be:
a4:53:db:7e:d6:24:47:b8:8c:a8:68:2c:0e:9d:10:dc:a5:b4:
d4:9d:57:93:73:7d:fd:58:14:4e:f1:14:d6:84:bf:a9:0f:70:
d0:44:9a:28:45:6d:2b:b9:23:e9:83:67:a6:52:32:f5:6a:24:
b1:4e:66:bc:c9:69:b8:41:67:7a:5a:a1:56:32:ff:89:d4:18:
d0:9e:ad:a2:85:94:ff:5f:8c:ee:a1:bc:b9:f8:8f:51:56:62:
15:bd:01:2f:55:ab:b6:40:66:0a:05:78:27:fa:97:37:87:07:
b8:33:f2:bf:18:8f:a2:3e:17:5a:28:74:23:c1:43:91:0a:ee:
dd:54:9c:f3:88:94:e8:4a:7d:97:d7:a8:a2:0f:11:8c:2f:a6:
7a:18:fd:a4:31:6f:b6:84:23:4d:a5:50:43:36:a6:0a:0d:78:
f2:b0:3a:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 11:07:29 2026 by rpki-client