
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft
File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json)
Hash identifier: W7CUMvQWan2GPFidrLsC75X2i3pmuMEsif8aEC66nSY=
Subject key identifier: DC:68:5C:11:52:A5:3B:39:7B:C2:CC:81:D7:54:45:A7:F5:57:B3:EA
Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40
Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040
Certificate serial: 01AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft
Manifest number: 01A3
Signing time: Sun 05 Jul 2026 04:45:46 +0000
Manifest this update: Sun 05 Jul 2026 04:45:46 +0000
Manifest next update: Sun 12 Jul 2026 04:45:46 +0000
Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: 49teoMpv3Atz/NQyxKciPNMZ9lGBqk9iUTKK9Uab/ks=)
2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: AJJ92VGVLucsvsIdaZU0nKfuQXZ8cJi9IfizP5I2ais=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl
rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 04:45:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428 (0x1ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040
Validity
Not Before: Jul 5 04:45:46 2026 GMT
Not After : Jul 12 04:45:46 2026 GMT
Subject: CN=6a49e17a-1f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:a7:e5:fa:1d:64:21:26:c9:d3:03:41:06:
df:ac:a3:a5:0c:83:af:91:01:94:3e:cc:3b:0e:00:
70:af:8c:0c:f2:12:55:d4:da:4c:43:42:0e:91:96:
cf:ac:1f:82:55:1b:8d:46:b8:cb:e8:5c:e8:65:14:
30:99:a7:09:70:66:90:48:78:df:be:88:be:77:dd:
d1:75:6b:fa:d7:d2:92:9f:97:94:d6:c7:ee:31:0a:
fb:82:ac:d1:10:d1:17:13:62:5f:38:4e:87:74:ae:
b4:49:3c:02:65:e1:10:99:6a:61:4c:e3:c2:cd:03:
c0:9d:fe:49:b1:3f:55:bd:06:fd:39:ec:7b:42:03:
a6:b7:12:df:0c:2f:21:4b:a6:8b:80:e1:23:aa:91:
26:f6:1a:f2:4a:4f:df:a9:83:c3:56:3b:e4:bb:2c:
bf:f4:69:b2:33:f1:df:8b:fc:d6:a1:91:9e:51:cf:
0d:09:a8:5f:4a:a7:2a:fc:f2:6b:ad:c6:ff:90:0d:
f2:2c:79:40:56:e2:fa:0f:0e:11:b2:89:d8:c5:e8:
33:8f:7d:16:50:34:7d:8e:a5:15:09:65:42:a7:b0:
cd:44:ea:dc:60:bb:71:f2:cc:37:f4:18:0d:c9:21:
d9:a2:85:e0:d6:ac:31:77:6d:73:66:fd:4f:c8:3d:
58:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:68:5C:11:52:A5:3B:39:7B:C2:CC:81:D7:54:45:A7:F5:57:B3:EA
X509v3 Authority Key Identifier:
keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
db:0c:2d:0e:85:82:bc:8a:3c:8b:70:7c:71:68:f6:75:c3:aa:
7e:0a:c9:33:ca:bc:5c:43:5d:c7:3f:5d:7c:8b:f7:56:4a:a7:
07:1f:38:ab:f4:78:bc:8f:1c:13:1e:56:39:f6:ac:87:76:86:
a1:89:b2:2d:09:c0:33:0a:32:46:bb:35:54:c0:68:34:21:1f:
40:d6:dc:e8:79:c0:36:35:54:af:ea:42:fa:2b:8b:02:9b:d0:
38:4c:27:f1:bc:62:2d:3f:e4:34:74:2a:2e:89:45:d1:7b:2e:
e5:2b:06:20:38:83:01:dd:65:16:77:9c:6c:30:7a:ae:8e:c1:
7f:90:d3:62:4c:e7:03:de:f7:fb:de:8a:99:6a:e1:b4:c1:16:
bf:f1:ce:39:b2:2c:f8:82:42:9d:dd:5b:23:7a:06:fc:98:57:
36:44:a9:f2:a0:bf:85:39:1a:69:e6:17:0f:6e:52:5d:0a:aa:
5e:84:31:55:43:cf:13:27:f6:84:2c:c1:da:f2:dc:e7:fa:38:
9d:3b:cf:99:c0:ef:83:81:ae:e1:54:35:10:54:1c:75:34:86:
d1:56:45:43:8a:42:1b:94:f2:f1:01:48:f2:99:83:95:ed:5f:
e2:e9:19:8c:ca:03:e7:72:2f:07:57:9e:08:70:18:99:0f:16:
74:1a:b0:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:50 2026 by rpki-client