
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft
File: yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft (raw, json)
Hash identifier: f4t5lydJ8rIb5CKQjTxKGU8AMgSHTUWyPLcEpg6ysyE=
Subject key identifier: 21:93:7E:90:E8:AE:F8:29:34:89:C8:AD:65:13:23:BB:86:92:08:2C
Authority key identifier: C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54
Certificate issuer: /CN=A91B49F2/serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54
Certificate serial: 0F23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft
Manifest number: 0F09
Signing time: Sat 04 Jul 2026 17:41:51 +0000
Manifest this update: Sat 04 Jul 2026 17:41:50 +0000
Manifest next update: Sat 11 Jul 2026 17:41:50 +0000
Files and hashes: 1: yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl (hash: AY3pR6ZM5EJCzHVjqkLTAzb4DBDDP04Nour11QmRbpw=)
2: BB0AA59C0A3D11EB82ECEA4BC4F9AE02.roa (hash: JURe/kWLxWBBPujRNutDT5hH/C63Ar6PS7XUiquehOE=)
3: 79395BE68EB311EF9A8DFC3CC4F9AE02.roa (hash: 9PzmGNvK7SqmPlPyXHrhBcEPkqCMbrFtsm/C/q55ytk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl
rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 17:41:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3875 (0xf23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B49F2, serialNumber=C873BB610B913C3ECDC708A265A74B1141A76F54
Validity
Not Before: Jul 4 17:41:50 2026 GMT
Not After : Jul 11 17:41:50 2026 GMT
Subject: CN=6a4945df-ea34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3d:78:e4:91:7e:04:d6:8d:de:de:e5:54:1f:
48:5e:4f:6c:84:ac:e4:84:ed:d3:2d:6f:9c:3b:06:
36:2a:85:44:29:ba:48:3d:81:07:2a:1d:5e:af:2e:
b8:81:8e:75:22:96:56:d8:81:1e:7c:5a:64:e7:fd:
60:a6:01:9b:0a:0f:44:5c:a9:b9:59:d3:5f:53:3a:
f0:46:e8:30:95:1c:3c:e5:fc:08:fb:1a:d2:55:8a:
9d:86:df:6a:4c:17:c7:ec:cb:6e:35:c1:72:0f:c1:
cf:97:c7:2f:77:64:2f:c9:65:45:1d:e4:93:20:3a:
9e:dc:dc:3e:19:c0:ad:eb:9a:c6:50:29:bd:6d:fa:
29:4a:7b:61:a1:44:dc:9e:7a:63:fc:f3:b7:0c:b3:
a8:33:94:f1:9c:7d:57:eb:fb:50:b2:9b:da:b4:1a:
34:d8:ca:2f:dc:cb:f1:f9:5c:4d:fe:ca:0a:cc:4f:
e6:87:03:c4:b3:b5:ca:85:39:f1:f8:37:8f:65:0d:
b5:d2:9a:96:3a:f7:65:e7:ae:53:56:cf:89:12:e8:
8c:d0:bc:f2:9e:aa:c9:0e:41:d1:e1:5b:45:e3:57:
95:4b:02:cb:98:4d:f2:e5:03:6a:95:29:0a:35:15:
bd:19:a1:48:68:a0:c3:38:87:54:3f:81:60:17:23:
39:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:93:7E:90:E8:AE:F8:29:34:89:C8:AD:65:13:23:BB:86:92:08:2C
X509v3 Authority Key Identifier:
keyid:C8:73:BB:61:0B:91:3C:3E:CD:C7:08:A2:65:A7:4B:11:41:A7:6F:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHO7YQuRPD7NxwiiZadLEUGnb1Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/82E4C2A0A6EE11E985F3B011C4F9AE02/yHO7YQuRPD7NxwiiZadLEUGnb1Q.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9c:2e:9e:c8:20:42:45:dd:30:48:bb:b7:f1:86:84:3c:2b:df:
17:0e:5b:72:3d:76:ed:76:af:5a:ea:b0:94:da:14:c9:47:06:
f8:f6:dc:e5:43:c8:2d:9d:ba:6d:99:38:ad:3a:69:39:f8:c2:
98:e7:5b:ae:c9:9c:02:ca:f1:fe:32:34:52:fe:bf:cc:f0:33:
65:29:28:c1:2d:2b:17:4f:00:34:60:50:76:93:08:07:a6:a3:
ca:40:c7:b3:a3:a3:66:25:46:1c:0c:3a:80:40:66:22:72:7f:
47:fe:33:ea:8a:07:d9:94:06:c7:c4:d0:de:ac:da:a0:4e:8e:
a1:85:bd:32:87:cf:b5:b9:e1:f1:ca:91:32:5a:56:50:59:fe:
c0:41:62:07:95:d7:4f:0c:98:7c:eb:f2:e0:40:97:c0:d6:56:
65:d7:48:81:c6:0b:ed:0c:3d:ec:48:a2:42:a4:5e:53:c2:ed:
01:12:c7:98:bf:ae:77:3d:ef:b9:f9:d3:6c:9c:7e:12:29:38:
0f:03:df:d6:de:d1:22:4c:58:9d:33:e9:b0:8f:52:91:a7:0f:
95:ae:a2:a9:93:a9:90:a1:93:a0:58:5b:2b:27:a6:ca:2f:27:
8b:55:f3:c4:4f:fe:7b:ec:59:7e:6d:c9:8a:33:c8:9c:71:c5:
11:86:f5:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:53:10 2026 by rpki-client