
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json)
Hash identifier: fQX5cBKTZQMEe66aN1zrQYQ1RGmMQp78YqaWIWOLj6w=
Subject key identifier: 47:BE:DE:F0:AC:35:8C:C4:EA:A9:F9:89:3C:BC:81:E4:CA:0A:BD:6A
Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Certificate serial: 02AA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
Manifest number: 02A1
Signing time: Sun 05 Jul 2026 02:10:34 +0000
Manifest this update: Sun 05 Jul 2026 02:10:33 +0000
Manifest next update: Sun 12 Jul 2026 02:10:33 +0000
Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: jihELdvc+G42lOsRjotq4Mg+Jb9nORbde4pgEIbIfBU=)
2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 02:10:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 682 (0x2aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Validity
Not Before: Jul 5 02:10:33 2026 GMT
Not After : Jul 12 02:10:33 2026 GMT
Subject: CN=6a49bd19-4a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:75:c2:45:0f:89:93:28:ae:67:1d:fd:37:7d:
a9:a1:e3:67:c9:68:52:12:c7:74:e5:f6:c8:49:ed:
59:af:20:d2:55:62:6e:1e:d1:13:0a:78:4f:62:cb:
40:9a:f6:d4:67:5e:cc:d1:d7:e1:ea:f9:fe:b2:1b:
c0:2f:ba:26:bc:d1:71:66:f9:4c:9a:b3:86:f5:7a:
93:41:84:82:06:77:ef:3d:75:e6:4c:bc:8f:3c:78:
f0:da:cc:c4:b8:66:71:e2:21:c1:17:b3:9b:de:4e:
9e:e0:56:47:88:ca:25:22:5d:29:6e:e6:07:30:dd:
84:10:86:e4:5f:e9:a3:19:fa:a1:e8:0b:4a:91:6c:
ff:fc:53:5d:f8:8c:b7:bc:7e:6e:a0:24:b2:65:b0:
65:b9:20:a4:06:c0:d1:66:57:9f:fe:ca:0c:f5:4a:
e9:35:e5:20:93:20:43:18:c8:b3:fd:4d:af:2a:e0:
7a:00:e4:e6:2e:07:98:ff:4c:eb:be:d4:56:a3:d3:
1c:f5:c7:b8:a1:e6:4b:c1:c7:84:93:b5:6f:57:a3:
53:43:31:38:1e:0d:34:86:f0:9d:3c:eb:6a:75:44:
58:00:57:8c:71:9e:f6:99:73:d0:a6:d1:82:a7:87:
31:61:ac:b4:c3:96:ac:ad:8f:39:41:1f:ab:3a:11:
f1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BE:DE:F0:AC:35:8C:C4:EA:A9:F9:89:3C:BC:81:E4:CA:0A:BD:6A
X509v3 Authority Key Identifier:
keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
65:d6:51:34:7b:6b:84:b0:93:b6:78:b9:8f:f9:33:d1:51:fd:
8d:fc:5b:f0:bd:c3:91:91:a7:2c:7c:33:cf:98:cd:b1:57:91:
37:42:d6:e9:1a:a5:f9:7b:bf:79:f0:fb:5a:88:33:48:11:ba:
10:0f:85:3e:69:41:08:e8:89:3a:c4:26:02:f1:c0:37:41:1e:
69:2c:6b:b1:9c:55:85:1b:b9:58:9e:20:9c:d7:56:61:80:ea:
8c:1f:01:74:9a:2b:47:d9:d9:1d:99:3d:76:dc:53:62:fd:3b:
f1:af:c6:63:71:18:ee:a7:9d:e5:53:7b:14:3f:e0:a9:15:97:
62:16:10:bd:17:d8:d6:0e:97:f0:9f:ee:70:e5:6a:6b:aa:ca:
da:60:12:01:66:e7:60:98:ef:f2:c7:76:a1:a0:03:f2:99:43:
b3:41:83:81:23:89:05:36:e3:2a:ac:76:61:c3:ab:4c:6f:72:
74:9f:bf:18:46:a3:22:e8:a8:4d:29:1f:d6:27:fc:51:7b:fb:
20:ca:f7:3c:89:b1:8f:8d:fc:0a:14:86:4a:c0:fa:b4:6f:8d:
85:11:e5:d0:7e:ac:3a:51:c9:24:47:00:ad:28:f5:85:0c:cf:
7d:e0:81:bc:1e:dd:54:73:b5:a0:75:31:11:3a:5e:05:cc:d7:
20:56:0a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 23:52:51 2026 by rpki-client