
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft
File: yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft (raw, json)
Hash identifier: xgfjJY5ND/YmpBibCYA/5mfWOQKQ8EhGOifWf4Jc0fs=
Subject key identifier: 24:61:CD:2D:B7:F5:43:09:7D:99:87:B4:9B:84:D9:36:96:FA:EE:B1
Authority key identifier: C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A
Certificate issuer: /CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A
Certificate serial: 114A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft
Manifest number: 112F
Signing time: Mon 06 Jul 2026 17:30:53 +0000
Manifest this update: Mon 06 Jul 2026 17:30:53 +0000
Manifest next update: Mon 13 Jul 2026 17:30:53 +0000
Files and hashes: 1: yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl (hash: 8ZbdX4wC7+A6lH5BbbsTpgj7NU5jELbtgPxl3Rs5Ffg=)
2: BAE1D7A8716711EFBF91272AC4F9AE02.roa (hash: aScypq58ma32Blk4gXAn5hRCMA++RlRKUglRyBdAIIU=)
3: 9305EF46716511EFAA44E47BC4F9AE02.roa (hash: MInSGZWk/+V+/O784VPQkOPEvkikcYw1hh5xAfaMy+Y=)
4: B9E0D3EA716711EFBF91272AC4F9AE02.roa (hash: QNd+7yoJE7XGdb3l9stbVIXGPJdYrSjK5lDsTdFfmX0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl
rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 17:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4426 (0x114a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B3558, serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A
Validity
Not Before: Jul 6 17:30:53 2026 GMT
Not After : Jul 13 17:30:53 2026 GMT
Subject: CN=6a4be64d-4d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e8:0e:b0:9f:89:56:82:c3:d8:6a:66:af:ca:
6a:39:0d:98:c2:8d:36:cd:b3:ad:0c:14:92:cb:c3:
d1:f3:57:b9:4d:c7:c6:b0:62:a5:10:78:f4:63:79:
af:72:2d:7f:f7:01:64:d6:7e:7a:59:65:72:dc:6b:
5e:e5:c5:09:1b:d1:84:67:16:7d:db:5d:21:f9:f7:
1a:2c:54:7e:6e:97:d6:45:62:57:25:19:75:28:84:
b9:92:11:c1:87:a4:76:3a:13:ed:92:b4:a8:da:54:
5f:c7:a3:60:00:25:5f:ed:38:78:17:84:62:6a:d8:
51:1e:67:64:e7:1f:a0:a9:6f:d4:d4:5e:8a:df:6f:
de:07:4f:fe:02:1f:a4:0e:e4:d3:4c:c5:8e:f6:d0:
6f:e2:ea:1c:4b:3f:be:ec:73:57:39:ba:bc:3f:ba:
c9:1d:b5:7d:fb:49:99:06:13:4a:36:26:c1:51:0e:
af:7d:cd:06:13:5c:ce:ae:a7:96:ca:7b:f4:f2:9e:
74:86:00:4c:13:5f:26:70:c6:34:a1:f7:28:8c:17:
4e:f4:f0:80:fe:a4:93:b7:a4:56:b8:ea:d1:5f:67:
8c:d2:1c:2e:b6:b5:44:77:f8:f6:cd:16:b9:eb:82:
66:1e:dc:9f:35:60:fa:c8:7f:54:3d:12:cd:57:03:
5e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:61:CD:2D:B7:F5:43:09:7D:99:87:B4:9B:84:D9:36:96:FA:EE:B1
X509v3 Authority Key Identifier:
keyid:C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
03:61:c2:30:d4:28:6e:82:33:58:b0:72:dd:f2:aa:40:0c:82:
0b:5b:13:c2:a0:6f:c9:9a:8c:bb:71:73:9b:ae:c7:44:7b:11:
44:b2:fd:2d:59:d7:7b:f1:9d:1e:35:4e:0a:85:14:f5:e1:f1:
c7:20:91:67:76:8a:dc:33:6e:24:f5:ac:6c:27:89:42:d8:6f:
1e:a6:19:c0:f0:f0:d8:fa:6f:6f:12:a2:2f:57:31:b7:d0:ca:
b6:3b:8f:b1:e3:a7:8a:b2:be:35:35:4d:67:81:d0:83:ce:04:
80:1f:4c:cc:d3:09:d4:f3:df:bc:b2:90:f6:c3:c4:d6:1f:90:
59:9f:48:11:57:f2:5f:60:79:fd:06:eb:f4:d9:4a:45:40:8a:
63:e4:ef:03:b6:8b:f2:f9:7b:74:fe:07:7a:98:dd:06:65:2f:
1c:c6:eb:f4:22:f1:49:21:2b:85:bb:4f:ab:f9:31:de:99:08:
82:6d:d6:ff:1b:90:9f:9d:49:fb:41:ff:02:2e:4e:01:fd:5e:
8d:4e:24:56:3a:5e:ad:c4:7f:06:da:77:2e:75:7b:ce:2d:bc:
2f:a0:f3:7d:d9:1e:d8:0c:69:8b:73:0f:8d:f3:80:2c:fd:e3:
87:7b:5d:ce:6e:5a:2d:79:10:cf:f7:86:fa:86:21:bb:9c:14:
d0:8f:ce:fd
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICEUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjM1NTgxMTAvBgNVBAUTKEM4OTA5MjU0RjY5NjY2RDU4NUUzMTBBQ0Q4REZGMkIx
RkI5QTVGMkEwHhcNMjYwNzA2MTczMDUzWhcNMjYwNzEzMTczMDUzWjAYMRYwFAYD
VQQDEw02YTRiZTY0ZC00ZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAiOgOsJ+JVoLD2Gpmr8pqOQ2Ywo02zbOtDBSSy8PR81e5TcfGsGKlEHj0Y3mv
ci1/9wFk1n56WWVy3Gte5cUJG9GEZxZ9210h+fcaLFR+bpfWRWJXJRl1KIS5khHB
h6R2OhPtkrSo2lRfx6NgACVf7Th4F4RiathRHmdk5x+gqW/U1F6K32/eB0/+Ah+k
DuTTTMWO9tBv4uocSz++7HNXObq8P7rJHbV9+0mZBhNKNibBUQ6vfc0GE1zOrqeW
ynv08p50hgBME18mcMY0ofcojBdO9PCA/qSTt6RWuOrRX2eM0hwutrVEd/j2zRa5
64JmHtyfNWD6yH9UPRLNVwNe/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCRhzS23
9UMJfZmHtJuE2TaW+u6xMB8GA1UdIwQYMBaAFMiQklT2lmbVheMQrNjf8rH7ml8q
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzU1OC8wRjIxMjE0RTM5
MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0V0Y0eENzMk5feXNmdWFY
eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3lKQ1NWUGFXWnRXRjR4Q3MyTl95c2Z1YVh5by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
MzU1OC8wRjIxMjE0RTM5MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0
V0Y0eENzMk5feXNmdWFYeW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAA2HCMNQoboIzWLBy3fKqQAyCC1sTwqBvyZqMu3Fzm67HRHsRRLL9LVnXe/Gd
HjVOCoUU9eHxxyCRZ3aK3DNuJPWsbCeJQthvHqYZwPDw2PpvbxKiL1cxt9DKtjuP
seOnirK+NTVNZ4HQg84EgB9MzNMJ1PPfvLKQ9sPE1h+QWZ9IEVfyX2B5/Qbr9NlK
RUCKY+TvA7aL8vl7dP4HepjdBmUvHMbr9CLxSSErhbtPq/kx3pkIgm3W/xuQn51J
+0H/Ai5OAf1ejU4kVjpercR/Btp3LnV7zi28L6Dzfdke2Axpi3MPjfOALP3jh3td
zm5aLXkQz/eG+oYhu5wU0I/O/Q==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:32:20 2026 by rpki-client