
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft
File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json)
Hash identifier: 0iR3CQIrCdmWgPLB7oXKg5wDWXatiup+09i58CgV6e4=
Subject key identifier: 0B:36:55:0F:12:67:11:4C:18:4E:D0:28:A7:A3:BF:B3:19:E3:52:7B
Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65
Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65
Certificate serial: 017C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft
Manifest number: 0165
Signing time: Mon 13 Jul 2026 05:22:12 +0000
Manifest this update: Mon 13 Jul 2026 05:22:12 +0000
Manifest next update: Mon 20 Jul 2026 05:22:12 +0000
Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: 9CjReLn8zEaFGcaEAskP56tgzydplIq8eGsEVd0QPwM=)
2: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: YSZYviBTPxtzDHVeHnT8ow3/nXxU9t04H0K+ZmSVj7U=)
3: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: /Mfb+/GCj01R9lifsGJinmVrLBP5+B8J3/UWQZMFbAU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl
rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 05:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380 (0x17c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65
Validity
Not Before: Jul 13 05:22:12 2026 GMT
Not After : Jul 20 05:22:12 2026 GMT
Subject: CN=6a547604-2b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:4d:7a:5d:ae:34:ae:b3:79:e6:61:a1:c7:
50:4a:bc:74:fa:c9:cd:c4:ac:59:a7:7f:bf:dd:4a:
87:18:10:a3:7a:74:ff:d8:47:ab:78:df:51:dc:4a:
49:0a:77:e4:14:c1:37:8c:f6:57:ce:8d:1b:d6:54:
0b:54:58:ca:c6:39:ad:66:33:b1:3e:ef:f4:ca:e3:
3f:5b:3a:80:f8:95:a9:8c:36:22:b8:6c:4d:76:ea:
fd:09:5b:57:3c:f9:cf:3f:a9:d5:bf:c8:f2:44:c6:
a4:7b:0e:29:85:80:e4:0c:5a:82:1b:8d:ea:e9:82:
40:a1:4f:8e:fa:3c:32:8e:1c:cf:4b:5d:ac:2c:b1:
86:4f:f8:78:08:70:65:f4:7c:34:89:bf:24:02:e9:
e2:8c:75:44:d8:02:9c:94:c8:a2:88:22:9e:fa:9c:
b5:29:28:2a:13:dd:86:50:67:01:a3:e5:6b:60:f7:
a9:d2:53:3f:b3:2e:44:df:08:89:45:ac:7c:03:6a:
95:e4:be:27:f5:cf:6c:57:50:89:94:d6:6b:15:d4:
4c:7a:db:1b:93:98:f7:3d:49:96:01:3d:13:a7:bc:
b6:99:40:46:77:cc:1a:4b:62:e2:a7:4b:d5:86:13:
c1:3d:fe:01:75:21:01:c4:90:95:29:59:02:d7:51:
22:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:36:55:0F:12:67:11:4C:18:4E:D0:28:A7:A3:BF:B3:19:E3:52:7B
X509v3 Authority Key Identifier:
keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:e0:96:7f:fe:6d:7e:0b:e5:b5:3c:48:4e:e8:f7:25:17:a8:
77:21:57:79:c7:a8:f2:6e:2e:aa:22:9e:23:0a:14:76:f6:27:
b0:a6:eb:d0:64:e5:1a:3b:72:43:32:4e:fc:be:6e:e4:99:26:
ca:9c:ad:36:d6:a1:8e:ad:40:00:09:ca:7a:5a:36:22:9f:3a:
c0:ac:7b:93:53:8d:e9:8b:33:61:2c:0f:0c:49:ec:97:c7:fa:
ba:90:4a:9d:b2:b9:dc:6a:9a:0e:89:33:06:18:8e:e3:1f:5e:
4d:af:d3:10:55:7a:f4:85:a7:2b:80:83:e4:a5:8e:6f:af:27:
40:71:6a:53:5f:78:c8:94:0f:c6:e7:ad:43:b0:a6:0a:12:92:
84:42:14:9d:7f:4d:0e:48:30:49:d8:af:bc:94:79:c7:25:5a:
e3:e2:49:1e:bb:b5:ad:a1:b7:23:05:9b:b0:4b:41:37:2e:47:
ab:d1:01:b9:c1:cd:35:00:5e:17:d7:c2:6d:1a:98:4a:65:d5:
d8:2d:a8:ba:20:46:e4:5e:fd:70:a3:4b:39:e3:79:a5:6b:34:
53:c3:fd:c8:8a:33:f8:3e:cb:f9:a5:b8:5f:b5:af:9a:7f:79:
e6:ee:cd:62:89:b6:df:23:06:87:f8:9c:07:7a:cf:c2:14:9c:
b2:17:4f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 00:10:46 2026 by rpki-client