
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft
File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json)
Hash identifier: d6HopJl0UNp/YetPFh1O2Rnpgq+hWmuIAZzD1/0DqTo=
Subject key identifier: 7D:7E:3D:69:45:F7:C7:BC:64:87:92:DE:B4:85:94:4A:E0:9B:C9:AD
Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD
Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD
Certificate serial: 076E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft
Manifest number: 0754
Signing time: Wed 08 Jul 2026 22:38:08 +0000
Manifest this update: Wed 08 Jul 2026 22:38:07 +0000
Manifest next update: Wed 15 Jul 2026 22:38:07 +0000
Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: pzpFpUZPa9EO/jzJW+7v/gLN9+8jHZhDCmFsVVgwPpM=)
2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: W7HbZgiurIous/dkOII7Zs+KL83NW7eUE5Qjtxcpxno=)
3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: QKYaxLpX/SQs5/c2F5OMS0OrA2VZBlIsKBf0LDbK85o=)
4: A0A96F80AD8511F08B0A1857C4F9AE02.roa (hash: E4mvIp0TY49n7Ku16oPaGsPeRK5kr/jdVq6qAjBUp9s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl
rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 22:38:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1902 (0x76e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD
Validity
Not Before: Jul 8 22:38:07 2026 GMT
Not After : Jul 15 22:38:07 2026 GMT
Subject: CN=6a4ed150-5e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d4:cf:5b:28:ca:6b:08:4e:75:bf:44:3c:93:
0c:6f:fa:81:1a:57:06:31:3e:51:91:1f:2b:21:27:
2d:93:15:7d:07:0f:e5:aa:33:68:74:fd:3b:b3:0e:
02:8a:5f:82:b3:f0:10:bd:0b:38:11:72:58:5b:25:
71:77:b5:1a:8f:7c:49:7e:f7:63:fb:b9:fb:7c:8d:
e3:90:f1:79:9f:15:76:2b:bd:48:a6:f0:c7:ac:d9:
c0:d4:d3:2d:82:7d:39:e6:17:63:4f:5f:8b:26:b1:
e0:0b:76:0e:7a:76:17:a5:b0:4f:89:07:f8:2a:02:
2a:f4:a3:36:f1:69:2c:37:fb:c9:e3:74:31:e3:de:
64:1a:a0:de:e8:ea:79:8c:dc:e3:dc:c2:0d:da:f1:
b5:2a:5d:23:fc:d1:16:64:24:d9:56:65:a0:71:94:
10:50:d2:a4:72:ce:60:57:ba:2f:a6:2b:8c:56:5f:
9c:24:fb:bd:f8:7b:67:a2:8f:c5:fd:2c:ad:6a:4b:
ad:43:ee:0f:e8:7f:c6:9d:55:71:3d:94:15:20:9c:
6c:82:4c:c1:63:c3:0a:d7:0f:58:17:27:85:e9:01:
3e:0e:55:4d:9d:66:99:f1:ae:db:75:5f:f5:f6:2b:
b3:06:11:e5:ca:79:ab:d7:c6:43:1b:db:80:e0:aa:
e5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7E:3D:69:45:F7:C7:BC:64:87:92:DE:B4:85:94:4A:E0:9B:C9:AD
X509v3 Authority Key Identifier:
keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
99:04:15:94:46:30:e2:28:f5:d3:0c:1d:62:33:c3:7a:db:08:
dd:75:04:aa:df:00:a3:6c:a7:fb:a3:f0:65:57:c8:9e:84:31:
f8:f4:95:8c:23:da:dd:94:a7:f6:13:bb:1a:69:e1:1a:80:25:
08:f3:35:7a:c9:ac:e9:93:64:ce:5e:39:c6:97:f1:e3:b3:78:
8a:bf:15:e9:a6:e8:0b:dc:65:8f:f6:f9:c6:c5:ff:9e:9d:3c:
30:49:c6:15:00:8b:5f:4d:c0:c4:f2:6e:f9:7e:39:17:ed:35:
b1:42:a4:f7:df:92:c5:49:c7:3d:c2:af:e2:3f:8c:8c:14:7a:
c5:90:21:96:21:21:30:1a:13:c8:06:57:55:f7:7c:8e:88:66:
91:87:c6:a4:ea:a2:1e:20:2a:21:ab:f9:c1:83:eb:5f:e8:df:
23:12:4d:7e:b1:e7:d9:11:54:60:2d:6c:2e:d5:1d:83:a6:78:
51:19:8f:a8:b7:73:70:6a:c8:27:64:08:bb:66:52:61:24:34:
43:30:c7:b5:9f:2d:1f:df:56:45:ea:8e:26:d5:30:cc:3b:91:
d7:08:fa:91:0d:ef:f5:d8:f9:85:f9:de:6c:20:5d:9a:43:ed:
a4:fa:c2:14:3b:6a:88:e3:5f:c5:26:8c:0d:5c:80:b2:a9:84:
ed:a9:b5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 17:05:32 2026 by rpki-client