
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json)
Hash identifier: fK7jlS9mOvFN8IGwMz0ELZ/Dhl9VjyXK896osXxvKxQ=
Subject key identifier: 2B:2D:7A:F2:13:A8:D7:F6:04:62:6E:4B:6D:7F:DA:84:2D:9A:A5:64
Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Certificate serial: 02A8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
Manifest number: 029F
Signing time: Wed 01 Jul 2026 02:51:07 +0000
Manifest this update: Wed 01 Jul 2026 02:51:06 +0000
Manifest next update: Wed 08 Jul 2026 02:51:06 +0000
Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: v1T35KSHo9xk1Vn6011t3ieWLoZeJt1Ttka083sKfQs=)
2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 02:51:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680 (0x2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Validity
Not Before: Jul 1 02:51:06 2026 GMT
Not After : Jul 8 02:51:06 2026 GMT
Subject: CN=6a44809a-90b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:71:62:4d:e9:b7:84:f9:a4:3e:81:5b:0c:67:
2d:2e:8f:c9:a1:b3:5b:46:a0:73:40:c1:b9:98:32:
f8:e6:a9:e5:bc:ad:91:79:49:01:2c:60:8c:ac:12:
ed:4f:fb:e6:82:44:dc:54:82:e6:ea:78:3f:17:fc:
49:8b:bd:6b:f4:45:5d:44:9e:18:c3:e1:5e:3e:cd:
20:12:61:04:6b:06:4f:4a:ec:b7:73:49:49:21:0a:
04:93:0b:7c:b0:ad:2f:cb:e1:55:54:17:7f:e7:33:
a1:11:51:05:c4:4a:7b:c1:a4:90:0b:fc:20:d2:4d:
2c:75:4d:61:4b:45:9f:68:28:0e:ef:2a:c2:48:5d:
f7:bc:2c:b3:8e:a7:5d:01:12:bf:cf:4b:19:ad:37:
ae:66:fd:f0:4f:85:b1:76:ff:b8:c3:ad:7c:c9:a2:
77:d4:b4:fe:ad:0a:25:16:23:87:b4:5c:70:00:c4:
cd:c1:b5:bf:1d:39:1b:a7:eb:8f:62:b6:35:c2:6c:
8b:65:94:5f:93:0b:b1:ce:ba:36:fb:a9:65:5d:db:
e0:01:a4:ed:e8:45:c7:37:a2:2f:64:e5:6c:29:f8:
9b:f5:95:c5:4d:65:a4:0c:34:68:db:81:05:1e:ca:
13:a8:5d:6c:b8:52:df:b8:3f:0b:51:97:ca:9b:a5:
85:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2D:7A:F2:13:A8:D7:F6:04:62:6E:4B:6D:7F:DA:84:2D:9A:A5:64
X509v3 Authority Key Identifier:
keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:94:4d:be:b1:6e:41:f1:ac:ce:23:b0:1e:21:6c:07:dc:4c:
cc:38:5d:4c:17:7d:43:4a:d7:bd:c8:6a:5d:35:59:84:89:17:
4e:ff:4e:dc:17:64:48:68:1e:8e:31:5a:b3:e3:0a:89:a4:63:
0f:66:64:fe:fa:68:32:2c:55:6a:c3:4b:3c:c8:61:27:cb:bf:
2d:11:36:56:6c:c4:10:ec:9b:82:49:ed:21:b4:32:34:cd:c9:
14:bc:dc:b7:6f:69:73:e4:02:48:94:3f:66:b1:35:6b:f1:e1:
5a:96:3b:13:3b:2f:85:a1:32:41:64:e9:d8:00:91:34:35:dc:
75:dc:fc:49:d2:8d:c3:ba:81:a7:85:49:03:15:6a:fa:83:12:
b3:c8:ba:54:ef:48:96:84:c1:d2:39:82:2c:7a:70:bd:25:ee:
ab:e7:f3:ca:1f:ba:a1:b4:11:d8:9c:38:38:0a:56:42:54:8f:
af:c9:c9:1f:6f:1f:56:e1:b6:c2:a5:e8:83:20:07:95:f6:30:
36:11:f0:79:38:ce:ca:67:e0:14:c8:08:9a:95:59:5e:80:04:
f9:1a:94:db:76:9d:cc:68:76:1d:32:c0:38:72:0c:f2:41:5d:
8c:15:cf:ad:60:bc:ea:28:b2:af:54:f7:fb:42:82:b0:5f:67:
f9:ea:88:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 21:55:55 2026 by rpki-client