
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
File: 2zxJsbLapmnoFyU5XfcR6D-K09E.mft (raw, json)
Hash identifier: IUjmth71Z+Md0vmNnnVsJiM1b1bbMjEH6STWTta49Ww=
Subject key identifier: BA:80:B4:C7:B6:BA:48:B9:58:43:46:0B:61:D1:52:A0:BE:AB:3F:C0
Authority key identifier: DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1
Certificate issuer: /CN=A91B1833/serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1
Certificate serial: 049D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
Manifest number: 048D
Signing time: Sun 05 Jul 2026 00:23:45 +0000
Manifest this update: Sun 05 Jul 2026 00:23:45 +0000
Manifest next update: Sun 12 Jul 2026 00:23:45 +0000
Files and hashes: 1: 2zxJsbLapmnoFyU5XfcR6D-K09E.crl (hash: XwvmRTvxSp+PE/ahk9XKQ9nL5U9vlRnPH4fqG9mRyYI=)
2: 93CBDF448EE111EC9D298C83C4F9AE02.roa (hash: lRK5hM0+Ajz1Iu+TnpLxwj4NeRvEETgFEYDFPhqxkGM=)
3: 48ECA4C48EE411EC9936A210C4F9AE02.roa (hash: SzKheHkyXGhCU9L9E9bj5O9UK/QqaZCVghpUUMIvziw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl
rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:23:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1181 (0x49d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B1833, serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1
Validity
Not Before: Jul 5 00:23:45 2026 GMT
Not After : Jul 12 00:23:45 2026 GMT
Subject: CN=6a49a411-4f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6e:b9:68:a2:30:88:df:5b:8e:d8:a3:9e:31:
59:8b:59:f7:e4:36:a9:e8:82:4b:3d:1b:55:51:af:
ca:c9:26:7b:bd:95:fb:6c:10:8b:fa:02:bf:95:cd:
d9:fe:a0:47:57:86:3a:a7:2e:a3:57:75:30:8f:6a:
54:fa:a2:b2:f3:d0:7d:07:30:8f:9d:20:18:cb:24:
6e:7c:21:6f:93:9c:de:48:09:53:21:84:01:03:16:
65:52:56:d1:02:a5:a2:70:e1:6a:f9:32:87:93:18:
93:d4:70:95:59:85:a3:49:a4:6b:44:ee:ff:5f:01:
a1:d9:b4:aa:11:21:37:68:9e:38:1b:8c:77:68:28:
6c:da:7d:bc:5b:56:98:6c:ce:08:c9:e2:d2:09:b0:
81:d8:4f:f9:8c:6e:51:4c:e9:7d:80:ce:ee:c6:5e:
96:a7:b2:74:54:66:a1:f3:d8:5a:a6:2a:4e:e1:c6:
53:b0:d4:cf:bf:19:2b:cd:86:2b:32:3e:52:eb:1d:
65:7a:a3:27:35:9c:ec:db:68:aa:d3:1b:ea:ba:95:
86:5b:ba:9c:4f:f2:5e:0c:68:91:69:a7:7f:b1:d3:
84:57:ad:6d:07:e2:f1:87:2e:49:f4:c6:93:7d:83:
61:15:95:96:95:54:71:b2:d2:a6:7a:1e:1c:a5:f8:
77:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:80:B4:C7:B6:BA:48:B9:58:43:46:0B:61:D1:52:A0:BE:AB:3F:C0
X509v3 Authority Key Identifier:
keyid:DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
03:10:01:ad:a0:4f:f5:97:c5:42:e7:a0:91:33:d0:13:f7:59:
d4:99:94:12:9f:ae:ad:50:9e:09:95:df:01:ce:1e:0d:f0:a5:
31:b6:74:5d:85:dc:42:42:fd:6e:6b:19:38:f6:38:0d:f0:60:
1e:a0:60:fc:2e:06:2a:e7:a2:d8:c5:24:80:f9:e0:1f:7a:f3:
bb:fe:31:5a:b9:0e:f8:d6:2b:00:fc:27:19:8a:a6:52:2b:63:
26:b9:ab:6d:61:ef:c8:b1:2f:b9:c4:b5:02:81:66:42:7d:31:
39:1b:ab:59:50:dd:19:5a:9f:d8:88:02:b8:52:87:d3:50:e3:
23:14:a4:43:c9:af:15:a9:8b:ff:04:f7:41:0b:9a:58:f6:80:
c8:cd:4e:25:63:38:5e:51:4c:0f:ad:26:91:11:7e:fe:fc:8e:
55:3d:fe:bd:b7:4e:2f:5a:89:6a:cd:95:a1:9e:3f:b2:9c:76:
b9:ab:3c:1e:62:97:3e:a7:ef:1c:33:eb:1a:0f:12:25:fd:9e:
05:e9:1a:e6:34:ca:45:39:8e:08:e9:b1:01:be:84:51:5f:0e:
8c:a9:87:37:f2:98:3f:39:9f:10:b7:66:c3:bf:c5:60:a4:0b:
20:83:d9:d4:4a:e1:36:26:2b:7b:53:fd:2f:3e:0c:d3:bd:37:
ba:28:60:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 20:13:00 2026 by rpki-client