
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft
File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json)
Hash identifier: YdthBTgeqW3Bw/eqrnJfdwZzKY7xaUzc/c9gyFXCiJI=
Subject key identifier: D5:F2:B3:DE:6B:43:07:AF:6B:A6:67:D2:E2:CC:3D:BF:EA:68:F0:0A
Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D
Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D
Certificate serial: 03D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft
Manifest number: 03CA
Signing time: Tue 07 Jul 2026 01:16:29 +0000
Manifest this update: Tue 07 Jul 2026 01:16:29 +0000
Manifest next update: Tue 14 Jul 2026 01:16:29 +0000
Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: /6lCHDet4/WjV+T9VM/2ro08C9fDlGXmGdLzGDxMOsA=)
2: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: DXFn9IbM02w7n1eFZzgRJrQaHr06yYFyVzCtJliHjPE=)
3: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: vmFsKgonT1sP7XlgpbWPmdbrw2z/dTAl1pk0bSYlcE0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl
rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 01:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981 (0x3d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A80D2, serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D
Validity
Not Before: Jul 7 01:16:29 2026 GMT
Not After : Jul 14 01:16:29 2026 GMT
Subject: CN=6a4c536d-ea41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bf:e2:25:a8:42:1b:e3:c4:b1:8b:3d:21:23:
78:46:ba:61:84:c1:a3:13:ea:f8:87:92:8d:5e:4e:
74:42:e0:c0:14:d7:56:b7:7f:4c:c4:e8:e5:04:7c:
01:eb:bc:f4:e8:8d:c5:da:7d:34:e8:53:bb:d0:5e:
d7:71:56:54:45:37:c8:2d:c7:e6:4a:1d:ec:57:57:
28:ff:ac:d9:53:7d:f3:1c:33:22:e3:12:52:ae:02:
c2:67:d4:90:74:1e:a9:ee:aa:4b:08:b6:c6:fc:74:
26:14:89:a8:aa:38:b5:98:55:e3:05:fe:ba:19:73:
ac:bc:06:ac:a9:a3:a4:82:55:90:6f:70:f1:2c:85:
af:b7:41:38:5e:5c:5d:98:60:26:0f:ab:a2:79:0e:
23:a9:a9:31:d6:fb:25:99:d9:dd:14:8a:bf:a8:e2:
04:44:4f:b5:3b:5e:a2:e2:2d:11:cd:85:05:b6:80:
7f:b7:2f:3f:2f:c3:b1:52:5a:b6:d5:00:1d:67:3e:
71:00:4d:55:b3:cb:46:0f:fe:29:57:2d:df:72:0b:
39:45:c3:3a:f5:48:08:af:77:9b:55:77:6f:86:0b:
92:95:ef:ec:69:69:c1:9e:e8:07:20:ef:43:d0:d0:
19:fa:34:6f:bf:47:27:ea:68:2b:4d:f7:57:ec:d0:
d5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F2:B3:DE:6B:43:07:AF:6B:A6:67:D2:E2:CC:3D:BF:EA:68:F0:0A
X509v3 Authority Key Identifier:
keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
52:43:ea:b4:82:f4:2a:d9:4f:52:ee:32:69:12:4f:44:d0:35:
f3:26:5a:a6:d3:a7:03:2f:da:c9:03:56:fd:14:a4:8e:92:6c:
10:60:5c:88:1d:b9:7c:2e:e2:c2:a3:8c:d3:b8:5c:13:50:8c:
31:41:2b:dc:6e:9e:69:14:98:c8:92:3a:b5:4e:6a:d4:93:e9:
e3:7a:dd:c6:53:44:76:18:23:25:51:ac:3a:90:5b:6e:4e:d2:
d4:00:03:92:ad:bc:e7:e4:1e:0a:47:04:c0:e2:00:a2:35:fb:
c3:ab:c1:56:69:f8:cd:3f:61:65:61:b9:95:5a:4f:57:68:fa:
ef:c4:a4:c5:ef:80:73:d5:3f:b2:9b:4f:cd:d9:e8:2f:3d:22:
95:bd:eb:b2:93:eb:e6:32:f3:97:2e:97:d6:7b:2c:04:77:d9:
cb:b7:ba:86:fd:ce:1b:d0:b2:f8:f6:f1:0c:00:05:78:4e:37:
1f:1a:c3:9d:b1:1a:2c:59:25:c2:1e:bc:84:52:98:1c:0e:a1:
13:c7:b5:8b:cd:91:8f:9f:02:c5:eb:a3:25:0b:62:c8:de:80:
2c:b3:33:82:ba:33:d6:47:23:b4:d0:08:b9:3b:d0:99:4a:97:
a7:66:33:29:c8:12:60:9b:e7:44:5f:a4:9c:e9:bb:7c:73:b8:
16:9b:7d:9a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC
MURERDg5OEQwHhcNMjYwNzA3MDExNjI5WhcNMjYwNzE0MDExNjI5WjAYMRYwFAYD
VQQDEw02YTRjNTM2ZC1lYTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApL/iJahCG+PEsYs9ISN4RrphhMGjE+r4h5KNXk50QuDAFNdWt39MxOjlBHwB
67z06I3F2n006FO70F7XcVZURTfILcfmSh3sV1co/6zZU33zHDMi4xJSrgLCZ9SQ
dB6p7qpLCLbG/HQmFImoqji1mFXjBf66GXOsvAasqaOkglWQb3DxLIWvt0E4Xlxd
mGAmD6uieQ4jqakx1vslmdndFIq/qOIERE+1O16i4i0RzYUFtoB/ty8/L8OxUlq2
1QAdZz5xAE1Vs8tGD/4pVy3fcgs5RcM69UgIr3ebVXdvhguSle/saWnBnugHIO9D
0NAZ+jRvv0cn6mgrTfdX7NDVtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXys95r
Qweva6Zn0uLMPb/qaPAKMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB
REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp
WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ
Yml4N3V5MklxNjJ4M2RpWTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAUkPqtIL0KtlPUu4yaRJPRNA18yZaptOnAy/ayQNW/RSkjpJsEGBciB25fC7i
wqOM07hcE1CMMUEr3G6eaRSYyJI6tU5q1JPp43rdxlNEdhgjJVGsOpBbbk7S1AAD
kq285+QeCkcEwOIAojX7w6vBVmn4zT9hZWG5lVpPV2j678Skxe+Ac9U/sptPzdno
Lz0ilb3rspPr5jLzly6X1nssBHfZy7e6hv3OG9Cy+PbxDAAFeE43HxrDnbEaLFkl
wh68hFKYHA6hE8e1i82Rj58CxeujJQtiyN6ALLMzgroz1kcjtNAIuTvQmUqXp2Yz
KcgSYJvnRF+knOm7fHO4Fpt9mg==
-----END CERTIFICATE-----
Generated at Wed Jul 8 18:31:32 2026 by rpki-client