
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft
File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json)
Hash identifier: iM9d0oiOT4v4zJocsesGTQVzOEBWVOC9ASWTvHFv7Yc=
Subject key identifier: A9:5F:B6:F7:06:DB:06:6A:C0:2B:E2:DF:D3:82:43:6F:8F:AC:17:6A
Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D
Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D
Certificate serial: 3566
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft
Manifest number: 355D
Signing time: Sat 04 Jul 2026 14:57:56 +0000
Manifest this update: Sat 04 Jul 2026 14:57:55 +0000
Manifest next update: Sat 11 Jul 2026 14:57:55 +0000
Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: Lj+g8Dd/kmFLuOBWRlxS4P3UvKlwlxTtfXBHkjJP988=)
2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: OrYwlHpiSmZNjD507c7+5SVsF6TOXtHT7d2m6BJQ+nQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl
rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 14:57:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13670 (0x3566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D
Validity
Not Before: Jul 4 14:57:55 2026 GMT
Not After : Jul 11 14:57:55 2026 GMT
Subject: CN=6a491f74-619e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3a:94:a4:9a:df:e9:10:a0:08:a1:3c:32:0b:
bd:77:c2:b5:67:a2:7c:b3:8a:a6:75:62:a3:70:28:
37:3b:9a:db:2d:66:e3:65:34:40:a7:c8:3f:18:c5:
4d:c8:f2:8c:7f:a6:6c:e0:38:59:42:e3:64:be:33:
bf:b8:04:89:c7:fa:a7:95:dd:11:0e:f2:eb:9f:c6:
9b:e2:d3:ca:20:59:df:62:4c:85:4a:cf:9c:4a:36:
89:c5:1e:3c:ea:4a:49:a4:62:23:a7:81:09:86:07:
c2:1f:ff:5c:d4:d8:14:b3:61:83:0d:e0:38:29:16:
62:38:c3:bf:c1:e4:02:70:46:a1:1a:b0:92:0f:85:
bc:1e:63:7d:ff:9b:ec:96:ff:f8:fa:a6:6f:9c:82:
21:ec:29:7a:59:b9:04:25:6a:3f:9c:75:d8:5f:39:
18:e3:f8:3f:bf:70:3b:4f:b6:5a:3c:5d:f3:ba:59:
2b:83:9b:dc:a4:7f:80:fc:62:71:65:83:9e:50:f7:
dd:cb:ed:f5:20:44:cf:30:c4:2d:7e:88:c3:42:80:
d0:d8:13:76:fb:11:6d:ed:0f:9a:f2:bb:aa:33:f2:
0c:40:28:34:e7:a2:17:be:3a:01:09:04:73:07:56:
bf:93:73:63:08:a7:d2:88:4c:94:00:e7:87:9e:0c:
cf:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5F:B6:F7:06:DB:06:6A:C0:2B:E2:DF:D3:82:43:6F:8F:AC:17:6A
X509v3 Authority Key Identifier:
keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a1:12:a4:c4:74:39:a7:fe:0d:f5:ea:fb:b1:c8:52:ce:a9:d3:
17:a0:fa:c4:62:44:e5:b4:5a:08:ea:0a:eb:36:0c:76:e1:56:
ba:0d:53:c6:49:79:dc:a4:27:03:c3:6c:0a:1e:a7:55:a0:4c:
d4:19:56:15:d9:e4:90:dc:3d:52:22:d2:3c:9d:ae:80:a6:25:
97:01:60:03:77:58:56:ae:99:5c:09:50:f3:22:f0:82:0d:bc:
73:53:d9:55:66:bc:76:f4:ef:b6:44:4c:32:7e:ad:9e:53:53:
29:a6:b1:32:7f:2b:d6:db:fc:5b:83:64:71:fc:54:8a:99:49:
82:7a:ca:4a:2a:06:92:e8:68:ff:78:a3:35:8c:50:2f:bd:09:
20:4a:af:04:84:52:06:93:46:a2:2a:f7:5d:96:6b:eb:15:f4:
98:1f:2a:1d:34:3a:c4:4b:0f:04:89:5d:0b:1e:62:0f:45:6b:
58:48:e3:d0:ff:81:e3:33:fd:ff:25:0b:9b:35:ec:61:9c:96:
ce:70:cd:b0:b2:b4:f7:b0:8e:e2:ce:64:72:1d:61:43:63:2e:
c2:b0:19:11:06:40:9c:83:35:8d:f7:75:03:72:13:69:96:8d:
b3:b1:38:94:ff:f9:fe:ff:9b:57:95:3d:80:00:9a:20:e8:e8:
0e:d8:28:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:53:51 2026 by rpki-client