
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft
File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json)
Hash identifier: nGiYGo97gjptkJcrHqazsmQKg8gUSQZ5P8i5i4XbbKQ=
Subject key identifier: EC:5A:A5:DC:5B:86:38:95:20:FF:08:6B:74:3C:57:FB:C2:AB:F6:4A
Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1
Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1
Certificate serial: 06F0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft
Manifest number: 06E9
Signing time: Thu 16 Jul 2026 22:41:19 +0000
Manifest this update: Thu 16 Jul 2026 22:41:18 +0000
Manifest next update: Thu 23 Jul 2026 22:41:18 +0000
Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: /ZWypYeA49E+ApyxP2WtLdiocF6cNw11vCijA6p2OhY=)
2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: u5ce3mhL9MTgfMANLqmHFxu4YGZmlzL+s2cu4dHRCdc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl
rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:41:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1776 (0x6f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1
Validity
Not Before: Jul 16 22:41:18 2026 GMT
Not After : Jul 23 22:41:18 2026 GMT
Subject: CN=6a595e0f-a0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3c:b6:e3:30:14:9d:fa:7a:17:b9:78:b4:2b:
51:dc:f3:e7:5d:e7:08:de:7f:a6:b2:3c:68:a2:49:
c2:40:87:de:8f:e7:13:e2:3b:82:9e:48:40:f0:55:
82:8a:a2:6d:37:8a:c7:df:ba:02:cf:01:30:95:35:
a2:eb:5f:d1:77:d9:7d:e3:40:97:aa:32:6e:69:39:
0d:c9:6b:46:0e:c4:40:c8:ce:db:25:eb:f9:84:bd:
e8:42:73:27:38:d6:9f:f6:34:1f:bd:c2:c1:0c:8f:
8d:4a:61:07:5c:22:db:a0:33:a1:86:2a:a3:23:6a:
74:78:0f:84:95:79:7f:9a:a2:a2:61:93:76:4e:df:
57:b1:cc:ca:70:3b:93:9e:98:45:75:0d:7f:33:41:
fd:7b:1f:95:d4:80:4b:f6:03:70:a2:15:6f:6f:4b:
16:fc:7c:ec:ce:0d:5b:99:6f:74:f0:b1:18:0c:e5:
05:8e:39:d9:73:5b:e5:f9:68:11:ee:59:0c:68:d7:
2b:62:a2:ad:0f:36:57:ff:c8:d2:6f:fe:5b:09:04:
39:b1:20:56:e5:49:7b:d0:82:20:cf:8a:c4:5c:1c:
27:60:5d:74:c4:41:7c:62:1c:bb:08:74:9f:22:ae:
42:72:a9:1d:aa:4b:a9:0a:a6:b6:e3:cc:7a:fc:3c:
54:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5A:A5:DC:5B:86:38:95:20:FF:08:6B:74:3C:57:FB:C2:AB:F6:4A
X509v3 Authority Key Identifier:
keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:e6:33:79:97:c4:a5:4f:16:1e:0d:41:b8:76:93:d6:52:3e:
c6:85:9d:b8:cc:ab:61:0b:10:65:10:7c:be:45:ba:f6:1a:11:
a0:f8:f1:97:f5:f0:f6:7f:fa:d2:7f:46:23:ae:99:a6:01:c2:
7e:53:20:e2:2d:0c:51:5d:44:73:fd:a6:86:bc:2a:80:02:ef:
86:33:ba:9d:93:0f:02:de:6f:25:cb:47:d2:0d:ad:a3:56:32:
aa:d9:27:5a:fa:f3:97:47:99:3f:e4:4d:45:6d:d5:a0:43:98:
06:90:02:9a:f6:7d:cd:4b:5f:12:af:c0:3c:8f:ea:40:95:63:
ce:ad:1e:8d:43:0c:bb:bb:83:dd:33:c2:97:fb:b2:f8:e6:7d:
5f:2c:19:8d:5b:c0:d1:95:c2:68:1d:a9:09:73:ad:f3:fc:a0:
34:0e:b5:7b:3a:1e:14:c7:60:e7:74:7a:2a:93:03:72:f2:d5:
bc:48:17:05:95:1e:37:57:0b:80:33:a7:7f:d5:13:44:73:89:
1e:b7:94:c3:0b:20:3f:79:b8:32:35:dd:a8:80:51:03:58:cf:
93:64:87:80:f2:6f:5e:32:07:ee:e9:4f:93:c1:5f:39:33:bb:
55:05:80:5f:63:12:b1:7f:d3:53:8e:8e:41:69:0a:77:e1:45:
70:56:ee:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:21:35 2026 by rpki-client