
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json)
Hash identifier: hqFNLicAyz+HlyvVVQTB/OhqtejPv4BKsAQAoFEXt3I=
Subject key identifier: AD:82:6C:12:5E:A8:E6:F3:CC:F6:D1:3E:A4:03:BC:5A:3D:11:FD:42
Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
Certificate serial: 35D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
Manifest number: 3591
Signing time: Fri 10 Jul 2026 14:45:11 +0000
Manifest this update: Fri 10 Jul 2026 14:45:11 +0000
Manifest next update: Fri 17 Jul 2026 14:45:11 +0000
Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: XF9XojupPS1Iy3aj84WO7nq6fZ4PE34yfQFRhoK91ls=)
2: Gef3-y01ougrkgnzTDd6dMBmUgQ.asa (hash: 6WpkcsnBJ6zbhhGgpNTrfNrPBsQzeRP9S9HEivN2bvw=)
3: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: DG9csTjYXt2owT4jULXXaVRko/sw17eGl0Moy3hQJ9M=)
4: A90BA98C74D011F19600C7755BA30FBC.roa (hash: 5g7W5ahRCXrfAoDmqnCGQYfrzLhobtl8/QoaS07b9B4=)
5: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: RvDR+CwV5r8nXBYVtiJ4seGZbUdvtwvjuoEWjfxE9n4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl
rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 14:45:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13779 (0x35d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
Validity
Not Before: Jul 10 14:45:11 2026 GMT
Not After : Jul 17 14:45:11 2026 GMT
Subject: CN=6a510577-385a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6e:b3:c8:15:35:e2:9b:96:59:ae:15:5f:79:
97:b7:c9:84:04:c4:65:95:e4:17:37:32:3a:99:9e:
df:3f:2b:b4:41:d8:1c:7f:cb:86:bb:b2:2c:c8:70:
0d:a5:2d:7b:ab:6b:bf:a4:2b:68:50:95:2f:a0:01:
e8:6d:1f:42:18:ab:b2:d5:4c:4a:e8:6d:95:e1:ed:
d8:47:ff:13:7d:5a:8a:c4:00:07:66:ef:d4:67:b3:
25:de:c2:5e:15:57:1b:ae:fc:f8:63:28:63:05:67:
83:a7:bb:6f:24:57:de:d4:8b:d0:4b:67:2d:20:94:
67:a6:90:a5:9b:58:89:5b:3c:ae:27:57:97:7e:3c:
5c:cc:9e:fb:12:83:c5:54:17:d2:b2:a5:d4:9d:51:
2a:6a:d9:b5:5b:08:8d:28:94:ed:a1:ee:53:fb:05:
8c:7d:23:9a:0a:e4:4a:13:2c:ad:79:aa:91:ef:c5:
bb:09:66:81:05:97:72:4e:c4:b6:67:91:92:ed:b2:
4e:cf:71:2f:60:dd:3e:e4:0f:84:23:fb:e1:73:fe:
af:c5:32:e6:be:d0:95:86:25:96:ac:8c:9c:c6:92:
51:a7:a5:8e:f1:ce:c1:cb:02:0b:ca:67:b5:28:7f:
30:a6:40:2b:fa:13:71:02:e2:40:4f:b4:0f:e2:ef:
b8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:82:6C:12:5E:A8:E6:F3:CC:F6:D1:3E:A4:03:BC:5A:3D:11:FD:42
X509v3 Authority Key Identifier:
keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5b:ed:a5:33:20:4b:b3:8f:60:a0:fe:20:88:7c:77:35:aa:c6:
82:ba:04:bf:2d:66:f7:d6:60:1c:71:44:ef:6f:cc:b6:f7:6c:
5e:78:78:34:b1:4c:4d:3e:a2:1b:29:93:e3:96:6a:c7:2d:65:
aa:88:cc:5c:29:66:37:9e:20:92:1f:a5:50:e9:2b:f3:55:95:
99:ef:3c:08:3f:08:60:e8:fd:fc:17:57:2b:47:45:6d:a5:d5:
1e:36:fd:98:81:12:b6:de:54:15:c2:99:e4:9c:c0:95:76:d4:
ff:92:37:67:17:d4:51:0d:ef:c8:fb:0f:59:78:24:ed:7e:ed:
66:c4:ab:6b:17:0a:80:84:1a:38:a2:3f:e2:2f:ae:31:70:61:
14:c7:da:06:88:a6:0e:77:b3:18:6d:28:3a:2f:6a:10:29:b7:
ce:ff:f2:a3:e5:50:ee:52:30:97:75:2d:d9:5d:05:f3:76:72:
83:01:4a:bb:32:ee:15:0b:55:8f:11:e7:f4:9e:40:7c:5b:62:
ab:7a:d5:6e:6f:cc:7b:d6:f8:38:76:b1:94:fd:f3:71:36:97:
ca:41:39:f3:c7:f4:f5:1a:71:97:89:68:df:ea:e2:96:52:62:
86:2e:52:a7:4d:e3:f2:6c:88:df:6b:6f:ae:20:f9:f4:4b:9f:
29:6d:36:56
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICNdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw
MDM4MERERTMwHhcNMjYwNzEwMTQ0NTExWhcNMjYwNzE3MTQ0NTExWjAYMRYwFAYD
VQQDEw02YTUxMDU3Ny0zODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6W6zyBU14puWWa4VX3mXt8mEBMRlleQXNzI6mZ7fPyu0Qdgcf8uGu7IsyHAN
pS17q2u/pCtoUJUvoAHobR9CGKuy1UxK6G2V4e3YR/8TfVqKxAAHZu/UZ7Ml3sJe
FVcbrvz4YyhjBWeDp7tvJFfe1IvQS2ctIJRnppClm1iJWzyuJ1eXfjxczJ77EoPF
VBfSsqXUnVEqatm1WwiNKJTtoe5T+wWMfSOaCuRKEyyteaqR78W7CWaBBZdyTsS2
Z5GS7bJOz3EvYN0+5A+EI/vhc/6vxTLmvtCVhiWWrIycxpJRp6WO8c7BywILyme1
KH8wpkAr+hNxAuJAT7QP4u+4GQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK2CbBJe
qObzzPbRPqQDvFo9Ef1CMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE
OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez
ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U
OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAW+2lMyBLs49goP4giHx3NarGgroEvy1m99ZgHHFE72/MtvdsXnh4NLFMTT6i
GymT45Zqxy1lqojMXClmN54gkh+lUOkr81WVme88CD8IYOj9/BdXK0dFbaXVHjb9
mIEStt5UFcKZ5JzAlXbU/5I3ZxfUUQ3vyPsPWXgk7X7tZsSraxcKgIQaOKI/4i+u
MXBhFMfaBoimDnezGG0oOi9qECm3zv/yo+VQ7lIwl3Ut2V0F83ZygwFKuzLuFQtV
jxHn9J5AfFtiq3rVbm/Me9b4OHaxlP3zcTaXykE588f09Rpxl4lo3+rillJihi5S
p03j8myI32tvriD59EufKW02Vg==
-----END CERTIFICATE-----
Generated at Sat Jul 11 03:19:28 2026 by rpki-client