
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft
File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json)
Hash identifier: MXl653NuBEjgfMTRDIGWEpUX8ygxAdhOk6u4XrWVbg0=
Subject key identifier: 7D:BE:A3:9D:0A:DD:1A:5A:03:40:07:2C:67:D7:B6:D8:B9:2A:4E:76
Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B
Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B
Certificate serial: 0174
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft
Manifest number: 016C
Signing time: Fri 17 Jul 2026 05:51:13 +0000
Manifest this update: Fri 17 Jul 2026 05:51:13 +0000
Manifest next update: Fri 24 Jul 2026 05:51:13 +0000
Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: qPIJns2/W8cO2NYNGqVTEIKe8wZPjyWOzKIblccoQq8=)
2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: shtxP/SBAQ2iT3UezvldJfibekIWgVIPJ+ZajU+8AuA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl
rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:51:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372 (0x174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A5A57, serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B
Validity
Not Before: Jul 17 05:51:13 2026 GMT
Not After : Jul 24 05:51:13 2026 GMT
Subject: CN=6a59c2d1-8938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e3:77:31:0c:25:25:3f:98:95:87:e7:b8:2f:
e6:34:3f:4f:4b:0f:26:45:bc:4e:e5:72:c9:22:53:
3f:42:f2:08:30:ee:f5:e3:b9:3e:80:cb:39:8e:c5:
7c:57:ea:d5:40:8f:2c:3c:1b:f2:ec:66:96:f0:72:
33:d6:ec:5d:4d:72:b5:de:0e:e3:4f:5d:8a:9d:3f:
60:00:c6:c8:c1:6c:3f:30:7a:71:31:bf:b8:cf:1f:
78:0e:28:72:e4:21:89:0b:77:a6:04:9b:16:68:44:
2e:60:bb:b1:8a:24:9e:1d:ed:56:1b:6a:d5:4c:94:
06:c9:1c:7a:c8:86:51:d3:12:e6:c8:e9:83:77:18:
d7:70:50:f0:4b:1c:3b:80:c5:63:fb:56:43:26:e0:
e3:e6:2b:42:94:68:9d:ea:c1:3c:a1:e8:98:5c:58:
ec:37:6c:bd:7c:07:2c:d4:2b:de:66:ab:64:0a:ba:
69:e3:c1:c7:10:ce:ef:56:c3:fb:ce:f7:95:5d:9f:
95:b3:d5:4f:76:ce:57:8d:87:9e:9d:3b:5f:4b:72:
ae:4c:0a:6e:3a:1e:a6:22:14:ac:51:9f:29:c0:17:
b7:c6:69:82:fa:18:cf:c0:1a:43:e7:08:32:2b:b5:
7a:6d:89:81:d1:98:b1:68:dc:22:12:40:56:85:af:
2a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BE:A3:9D:0A:DD:1A:5A:03:40:07:2C:67:D7:B6:D8:B9:2A:4E:76
X509v3 Authority Key Identifier:
keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
83:03:1a:20:6f:12:60:1b:b8:a0:ee:9f:9d:1f:3a:48:61:65:
9f:78:19:39:ce:3e:e6:44:2d:ea:23:c9:a5:d7:9f:b1:36:07:
3e:31:7e:6a:07:1d:ac:9e:c0:56:0f:ec:e7:20:d4:98:c4:4e:
04:36:08:41:af:07:0b:33:46:8a:62:5a:c0:1a:bf:86:20:62:
16:fa:c3:71:34:e5:ad:17:6c:89:f6:80:5e:4f:ec:7c:6d:50:
6f:1a:1a:6f:3e:b9:36:0e:98:51:cd:c1:c9:24:86:58:d2:cc:
fc:a8:7d:58:17:03:65:21:73:aa:f6:e2:f3:4a:67:77:75:f0:
5c:74:0d:95:61:58:ae:6f:23:56:5e:d1:e1:7d:7c:51:9f:d0:
14:c7:3e:71:52:bb:ec:8f:3a:dd:da:69:f0:b5:2a:eb:d4:72:
e1:b0:30:0f:e8:3d:64:13:dc:59:60:19:31:c3:28:48:89:ca:
2a:62:38:ba:68:01:53:91:24:8f:b4:82:85:18:5d:80:b4:f3:
98:4c:4b:05:bb:8d:7a:da:68:44:80:3d:0e:99:b9:ef:63:4c:
f4:84:d8:5a:38:c3:f0:de:77:1b:e7:85:ca:7f:88:f2:f0:5d:
a1:7e:1d:10:22:ba:1c:1e:15:bf:34:4a:69:6d:28:a2:3c:18:
bf:e3:d0:32
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTVBNTcxMTAvBgNVBAUTKEQ5QzVEODJBQkQzMEZERDIwRkE5Q0FGM0QxRUQ4NjdE
QjA3Njk1NkIwHhcNMjYwNzE3MDU1MTEzWhcNMjYwNzI0MDU1MTEzWjAYMRYwFAYD
VQQDEw02YTU5YzJkMS04OTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4+N3MQwlJT+YlYfnuC/mND9PSw8mRbxO5XLJIlM/QvIIMO7147k+gMs5jsV8
V+rVQI8sPBvy7GaW8HIz1uxdTXK13g7jT12KnT9gAMbIwWw/MHpxMb+4zx94Dihy
5CGJC3emBJsWaEQuYLuxiiSeHe1WG2rVTJQGyRx6yIZR0xLmyOmDdxjXcFDwSxw7
gMVj+1ZDJuDj5itClGid6sE8oeiYXFjsN2y9fAcs1CveZqtkCrpp48HHEM7vVsP7
zveVXZ+Vs9VPds5XjYeenTtfS3KuTApuOh6mIhSsUZ8pwBe3xmmC+hjPwBpD5wgy
K7V6bYmB0ZixaNwiEkBWha8qDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH2+o50K
3RpaA0AHLGfXtti5Kk52MB8GA1UdIwQYMBaAFNnF2Cq9MP3SD6nK89Hthn2wdpVr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny82RTc0ODMxMDU2
RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19kSVBxY3J6MGUyR2ZiQjJs
V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxXcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
NUE1Ny82RTc0ODMxMDU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19k
SVBxY3J6MGUyR2ZiQjJsV3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAgwMaIG8SYBu4oO6fnR86SGFln3gZOc4+5kQt6iPJpdefsTYHPjF+agcdrJ7A
Vg/s5yDUmMROBDYIQa8HCzNGimJawBq/hiBiFvrDcTTlrRdsifaAXk/sfG1Qbxoa
bz65Ng6YUc3BySSGWNLM/Kh9WBcDZSFzqvbi80pnd3XwXHQNlWFYrm8jVl7R4X18
UZ/QFMc+cVK77I863dpp8LUq69Ry4bAwD+g9ZBPcWWAZMcMoSInKKmI4umgBU5Ek
j7SChRhdgLTzmExLBbuNetpoRIA9Dpm572NM9ITYWjjD8N53G+eFyn+I8vBdoX4d
ECK6HB4VvzRKaW0oojwYv+PQMg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:46 2026 by rpki-client