
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft
File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json)
Hash identifier: M/rY7cFl9NZxcZ5OXMVdb+Qg1D1FzInGEuYcOFRC61U=
Subject key identifier: 96:8D:53:DD:AC:0F:6D:30:98:34:ED:A5:30:6E:90:07:08:F1:6B:26
Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02
Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302
Certificate serial: 0934
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft
Manifest number: 0914
Signing time: Thu 02 Jul 2026 20:30:15 +0000
Manifest this update: Thu 02 Jul 2026 20:30:15 +0000
Manifest next update: Thu 09 Jul 2026 20:30:15 +0000
Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: Fai7TztDmuKToE72EaW+32NGiMhE1dVd/bTDi3Z8q8E=)
2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: gl38JCfINuQj5r+ArpGOl2htLCM9Mgwqo9xw/lh130Q=)
3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: 30DNpUpUJwy2It5xAnDm6pl6G00ZZjWgrPOcvF+5H9w=)
4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Vl3ljhabWGTlG6GqBHRNZlqYXeuSFP4BoWLikf0UCmo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl
rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 20:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2356 (0x934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302
Validity
Not Before: Jul 2 20:30:15 2026 GMT
Not After : Jul 9 20:30:15 2026 GMT
Subject: CN=6a46ca57-b14c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:07:a1:c7:12:fb:43:8c:52:da:3d:17:22:ea:
4e:9b:5e:a6:d4:63:06:81:42:55:a4:62:83:8f:1b:
c3:33:e4:94:f5:7e:dd:ee:d1:41:6c:f3:31:84:71:
bb:8b:1c:ea:e3:b9:67:04:c2:89:b1:1b:17:3b:c5:
b8:9a:6c:08:42:64:1d:28:47:0f:af:4d:09:f4:17:
89:47:8a:62:0c:7c:13:61:ab:4d:47:46:d9:cb:19:
93:6b:e3:7a:83:59:66:ea:5f:20:ee:dc:aa:67:4a:
11:ae:34:30:71:96:4c:a8:46:e6:e0:85:6f:3e:9d:
22:da:b1:80:f1:8e:60:91:2c:ba:a0:01:3c:9e:6b:
6c:4c:a9:f9:0b:49:f9:e4:80:03:b4:d7:3c:52:58:
46:fe:2f:81:60:d8:ff:9e:e6:61:2f:8b:f4:4e:ea:
71:2a:ab:05:10:b6:03:05:b5:d8:b5:bb:51:77:05:
7b:cb:32:12:22:c7:33:8f:af:f3:f1:d9:6f:82:13:
ae:68:20:ee:60:94:99:24:04:a2:35:09:2c:4e:71:
f3:a9:8d:1c:c9:82:49:6d:69:dc:7e:ca:47:1f:f5:
cb:f2:87:5b:13:d0:87:0a:67:a3:33:a2:2e:bc:f5:
2c:87:bf:9e:5a:3d:85:65:f4:ba:82:98:61:24:5a:
00:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8D:53:DD:AC:0F:6D:30:98:34:ED:A5:30:6E:90:07:08:F1:6B:26
X509v3 Authority Key Identifier:
keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
06:92:ea:df:82:c4:c8:39:d9:0d:ef:b6:e6:ff:46:34:41:43:
54:68:44:9b:57:6b:0a:f0:7c:02:58:5d:e3:93:20:d8:46:9b:
21:f1:86:77:fa:3d:ec:b3:60:47:d8:36:2e:27:35:70:e3:b2:
1a:ea:23:6e:d4:5f:c1:a7:74:76:8f:a0:f9:1e:5d:9a:8c:4f:
3b:5a:1b:29:79:de:a4:1d:a1:6a:f6:b8:db:f7:9a:1c:50:d7:
13:5b:e7:86:ef:0e:0c:27:3c:1c:81:71:85:09:18:2c:24:fc:
40:e6:4c:9d:1e:e2:92:14:e6:6b:08:fc:86:08:67:e0:fb:7d:
ab:61:6e:d7:76:95:8a:4e:cc:ec:fe:a9:f3:88:10:6b:b1:f0:
f3:d2:18:d7:b4:e3:b8:3c:e1:a6:f4:e1:a6:ae:84:40:38:f7:
a3:1b:e1:7f:23:7b:2d:c3:6d:4f:08:1b:1b:4d:b9:8f:cc:0a:
80:42:f5:14:a9:b4:c8:12:ee:c4:f0:b1:87:fb:3a:39:af:f3:
6f:68:a4:c2:c7:a3:37:73:4d:b1:6d:3b:bb:29:41:cf:53:1b:
4f:49:e8:68:28:63:a7:20:de:20:1c:81:22:aa:f2:01:cc:20:
f4:6d:aa:7b:0d:6c:f5:18:37:ac:f4:c5:d5:72:d8:e4:c9:45:
a7:1e:46:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:22:56 2026 by rpki-client