
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft
File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json)
Hash identifier: sFXzMA06pSBnoQ3uGfBWNz7JzDn6J80At/4EERk3zWw=
Subject key identifier: 18:69:4E:E0:98:5A:78:27:45:C4:D7:0E:5E:8D:E2:AA:FA:AE:53:02
Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D
Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D
Certificate serial: B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft
Manifest number: B9
Signing time: Fri 03 Jul 2026 07:50:55 +0000
Manifest this update: Fri 03 Jul 2026 07:50:54 +0000
Manifest next update: Fri 10 Jul 2026 07:50:54 +0000
Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: azJM+ai/NTaQt5IWv+pmbVEg52pCiUd8gq9THiLq+QY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl
rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 07:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185 (0xb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D
Validity
Not Before: Jul 3 07:50:54 2026 GMT
Not After : Jul 10 07:50:54 2026 GMT
Subject: CN=6a4769df-e716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:50:8e:ac:b2:3c:c4:95:f4:df:94:15:f0:4d:
43:83:9e:7d:b8:c1:1e:8b:84:0e:21:08:95:7e:32:
95:e5:87:81:46:5f:97:fb:d9:4c:54:d6:06:99:01:
ca:8f:08:55:97:d9:1d:8e:c2:a1:a0:f0:0f:08:c2:
9c:3a:8c:e2:84:e9:1b:62:ad:97:ec:da:81:2f:3c:
ef:59:45:f5:47:09:c3:f0:5e:1d:b1:52:87:02:9b:
68:7d:af:7e:9a:c1:c3:e0:fa:4a:93:a7:1b:d6:f0:
be:7b:9b:fa:ff:65:9f:39:58:95:f5:9e:30:80:b5:
89:05:dc:0b:71:fc:6f:ed:8c:c6:a6:4c:f4:6a:56:
0a:a8:54:96:00:37:ff:ba:9a:35:11:83:02:09:0d:
0f:c3:19:a9:65:80:2f:4d:d8:fe:39:4a:1a:3f:0c:
c8:71:c3:0b:fb:b0:52:15:3a:4b:bf:94:b5:3b:75:
b6:9d:8f:07:57:c8:45:e6:78:48:10:cf:c6:9f:ca:
03:c5:c5:b3:f2:02:e8:98:39:fc:9d:d8:dc:12:09:
fe:a4:8a:96:f7:f5:4a:f7:e5:5f:cf:4d:12:19:6a:
06:b6:d0:c4:c2:4f:ae:31:7e:92:d3:01:c4:02:19:
f3:82:51:5c:a4:53:6d:c5:ef:1a:4c:d6:98:5d:a1:
d9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:69:4E:E0:98:5A:78:27:45:C4:D7:0E:5E:8D:E2:AA:FA:AE:53:02
X509v3 Authority Key Identifier:
keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
86:31:e7:0c:a3:21:99:a3:9c:ea:19:86:16:15:87:34:55:59:
c8:4b:9b:9d:cd:3e:67:e1:d6:4b:17:68:fb:6b:d3:33:d4:96:
0b:9c:96:87:24:96:ec:c5:1b:71:b3:85:4b:ed:cd:04:81:45:
59:9d:2c:be:1e:74:48:95:9c:08:db:3f:2a:03:70:e9:9b:43:
63:6c:53:a1:da:55:98:4d:01:37:0e:8f:1e:72:99:4d:86:a7:
54:07:c7:b8:b6:1a:fe:d1:60:01:ea:22:79:89:d2:c2:a9:4d:
53:f1:98:f3:fa:6e:83:7d:aa:a1:b9:55:fc:24:12:c9:b0:dc:
d5:da:71:ff:f9:0a:51:3b:c2:06:39:fc:c1:0e:dc:4e:a6:54:
97:ca:2e:23:e9:eb:e4:81:c9:aa:7d:77:21:74:76:8f:d0:1f:
55:98:5b:d2:9a:d8:2d:a8:3a:73:f0:8e:4c:21:be:0b:86:51:
9b:c6:3a:5c:50:83:24:1e:40:f6:01:15:8d:73:93:4b:3d:b4:
c7:be:a3:4c:29:a1:51:0c:a5:fb:12:24:5e:2a:6e:9b:92:fe:
9e:8d:ea:b0:e2:a3:2c:3c:79:d8:f8:28:95:25:23:d2:dd:1a:
77:df:11:96:0e:62:8e:a4:fa:02:8d:7c:33:f9:b9:fa:cb:55:
14:b3:da:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:41:05 2026 by rpki-client