
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json)
Hash identifier: 7GKKb2n6pUdVkXcvHZaVRI4/5+ijRXK6+KDsbuCNs+U=
Subject key identifier: 72:44:2F:1E:7A:5A:26:B9:15:63:29:48:2A:DE:9B:13:0B:AA:FF:49
Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2
Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2
Certificate serial: CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
Manifest number: CB
Signing time: Fri 17 Jul 2026 08:02:10 +0000
Manifest this update: Fri 17 Jul 2026 08:02:10 +0000
Manifest next update: Fri 24 Jul 2026 08:02:10 +0000
Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: /84czKlJY++agBb6AmbfJhJJvLG4e2Ajy9rp2IIoTFY=)
2: D28B7DD450E411F081600061C4F9AE02.roa (hash: oi0JC/Dg/qtN4Sq4ydksp3+2DNk0fSKtyYZSAHUSHgk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl
rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206 (0xce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2
Validity
Not Before: Jul 17 08:02:10 2026 GMT
Not After : Jul 24 08:02:10 2026 GMT
Subject: CN=6a59e182-768f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e8:17:14:6f:d9:a3:35:e9:9e:f5:32:f7:71:
74:21:9b:51:7b:77:d9:e2:1f:20:29:60:55:7f:78:
0a:be:cc:5d:1a:f1:27:64:d1:be:88:74:86:f7:5f:
ca:90:cb:df:e5:cb:1b:31:7f:e5:12:80:8e:eb:bf:
17:f1:b1:67:3a:14:37:1a:1a:be:27:06:49:6d:5a:
87:51:30:71:3f:42:bc:25:cb:3f:34:26:6d:94:d0:
8b:d2:b1:33:6f:75:f4:b7:8f:41:cd:08:0c:a6:0e:
c0:e0:06:4e:eb:e4:64:9c:0c:1d:ef:29:3b:1f:e2:
a3:85:9e:f4:6a:fa:7d:d2:80:e2:ff:05:0c:e5:22:
1d:d1:c9:89:57:d2:79:42:0e:53:05:1f:59:37:ab:
eb:03:f1:f6:ba:03:02:12:5d:65:99:6a:56:ad:20:
61:a9:70:2e:89:61:a0:c7:9c:e3:67:13:c6:16:fc:
0e:8c:9b:5f:e9:67:f1:f2:98:26:e8:89:fe:54:4a:
fa:22:c0:5d:ec:5c:86:99:5d:24:64:55:93:75:d3:
aa:07:90:bb:a2:32:2c:83:b2:22:15:98:94:90:af:
1c:a6:22:fc:ce:21:bf:4e:a5:ad:9a:bf:da:31:e6:
8f:26:37:8a:5f:95:3b:d4:bc:0d:9d:9e:98:4a:a3:
5c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:44:2F:1E:7A:5A:26:B9:15:63:29:48:2A:DE:9B:13:0B:AA:FF:49
X509v3 Authority Key Identifier:
keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
49:af:f7:7b:5d:e7:77:53:b0:dc:e8:f7:93:e9:ac:2e:e3:cf:
13:7b:3c:c6:b8:35:7e:dc:7d:ff:f7:b0:e8:55:44:18:51:09:
ab:a4:85:e6:1c:05:6d:de:24:54:06:a5:28:8f:ca:c2:ef:69:
47:1b:d8:f4:5b:0b:46:18:cd:e8:20:39:6c:9a:6f:10:6d:a9:
60:f6:70:9a:26:72:2d:7f:91:ef:3d:2e:7a:7c:37:45:df:25:
3e:02:75:f8:45:e9:93:cf:1d:44:02:e7:73:10:50:42:64:b6:
2b:ca:79:7c:68:c4:49:92:81:ce:0a:3e:c1:15:91:af:81:14:
93:55:29:27:ec:f8:ce:be:ea:ca:74:dd:05:a0:17:e7:c4:33:
c9:c6:5e:f2:f7:27:0d:c8:a5:31:52:fb:82:86:9c:d9:a0:4e:
1b:06:cb:75:12:f1:d5:a5:74:ba:36:ea:b6:00:31:fe:b4:74:
3a:27:1e:7f:e3:12:86:86:d6:e9:36:7b:42:f3:56:14:31:75:
b7:77:6a:63:06:1a:8d:ba:32:8b:6a:f9:4a:77:37:77:a6:3a:
4e:4b:fe:a8:72:09:02:86:50:21:73:74:9b:0a:16:e4:19:39:
6f:8e:c6:4f:45:70:7a:b0:1c:e8:cd:ff:5d:d4:e6:58:36:32:
f5:d4:a6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:24:11 2026 by rpki-client