
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json)
Hash identifier: 3m8hItTjk+RAGarORU/5fB/wt0QkXUZjm30MuDGTMRc=
Subject key identifier: 41:8D:22:A3:55:3E:7F:C8:BB:70:58:6F:14:D2:DA:87:DF:B9:6A:95
Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89
Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
Certificate serial: 0140
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
Manifest number: 012F
Signing time: Fri 17 Jul 2026 06:53:14 +0000
Manifest this update: Fri 17 Jul 2026 06:53:14 +0000
Manifest next update: Fri 24 Jul 2026 06:53:14 +0000
Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: 7QjCIR9mJ5TeHFlVaSNSxfN5rOjZDRpbXVczbQ3JuVU=)
2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: /AunwFrvROT949ER300con7tMv9t6hnrAMstakDSUnc=)
3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: wpQZ9n5tOzLHw2Dp8uE1s9PaRxpgXwgFNni9J4wuW/Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl
rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:53:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320 (0x140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189
Validity
Not Before: Jul 17 06:53:14 2026 GMT
Not After : Jul 24 06:53:14 2026 GMT
Subject: CN=6a59d15a-0b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7f:80:99:8b:43:c4:a3:35:73:e4:d3:e8:83:
a3:30:bd:b5:bf:c2:ba:9b:86:70:2a:44:b0:d7:f1:
24:ad:f1:69:44:29:c0:f9:5f:45:35:20:d3:75:54:
0d:51:d0:e4:e8:14:b8:ba:84:3d:d7:fd:21:39:1a:
f1:5f:4c:72:75:6c:d6:21:67:01:42:6a:9e:c8:77:
7c:0b:46:e6:5d:2d:3c:82:eb:5e:72:6a:fb:9c:42:
f7:eb:d2:45:b0:88:49:ff:26:da:5a:4d:d0:d1:6e:
79:d8:15:29:c2:36:95:18:d2:7a:e9:cf:ea:3d:24:
96:c4:e7:fa:a8:08:fe:40:b1:05:4a:7e:75:de:25:
7b:2b:f0:0a:87:a9:b4:12:67:96:60:59:a4:33:69:
25:2e:00:2b:7d:19:19:ec:48:ce:8d:27:9b:a1:97:
07:d0:40:4e:5a:5a:4a:99:78:63:7d:78:7d:18:b0:
0b:8b:05:bf:3d:5b:27:42:be:f4:d0:9a:09:fb:30:
8c:25:83:e1:94:37:cc:f9:64:34:4c:0a:f4:d0:b7:
9a:19:30:53:a4:65:25:3f:94:eb:37:e8:79:71:4f:
31:5e:92:18:af:2b:82:bd:b9:60:32:8f:53:54:bb:
d5:60:61:de:c7:af:26:0e:74:19:48:51:93:9f:11:
c7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8D:22:A3:55:3E:7F:C8:BB:70:58:6F:14:D2:DA:87:DF:B9:6A:95
X509v3 Authority Key Identifier:
keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
14:de:e0:5f:8b:ff:7b:da:1e:c4:09:2d:ff:9a:a3:ce:ea:13:
3a:5a:55:7d:5f:6b:1f:23:92:b3:17:67:99:85:23:b0:2c:e0:
d9:46:66:56:a5:55:8a:6f:f4:94:30:25:c0:38:15:38:e6:7a:
cf:ea:86:96:82:67:7f:1f:17:3c:17:03:f5:7c:25:d3:a3:52:
5f:6c:de:77:52:b7:18:9f:05:2e:05:43:35:41:ca:25:25:68:
61:22:d3:ca:ed:48:14:0f:13:b9:5d:1c:18:94:c7:4d:96:d9:
9a:6c:3d:61:ab:4c:86:f4:99:f5:04:80:a4:9b:5e:e7:1f:5b:
35:a1:07:9e:0f:0e:c4:87:8d:b5:65:c7:d9:f9:c4:8a:d2:13:
cf:cb:e0:0b:86:fa:67:31:b7:6e:dd:63:44:5a:c0:e8:ab:4c:
a0:ea:9e:39:3e:3f:e3:39:91:15:85:6d:21:e4:6c:0f:4c:a6:
26:95:26:12:f9:c3:0f:84:6a:95:1a:9f:63:b3:bb:ee:a5:7e:
02:6d:e2:7e:fa:15:18:52:6b:57:c9:5b:64:7a:4a:a6:2a:d3:
08:0b:f9:36:17:c0:6a:f7:65:ad:21:76:d8:ef:51:98:16:29:
65:97:10:fa:77:90:cf:dd:97:f0:08:76:ff:e0:59:fb:29:2b:
2a:b8:5f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:14 2026 by rpki-client