
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
File: iPsdIcuIPJfCmst31NaIhLOnpgg.mft (raw, json)
Hash identifier: 6R7iyuvPQ8I2nbXnyDXL1xuYGLSKpDuBAtFzgRCs9Hk=
Subject key identifier: E4:A1:E7:BA:DD:BF:2A:84:CA:C0:C1:E0:11:9F:25:9E:3C:CB:AF:B7
Authority key identifier: 88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08
Certificate issuer: /CN=A91B6A04/serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608
Certificate serial: 7F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
Manifest number: 7C
Signing time: Fri 17 Jul 2026 09:00:07 +0000
Manifest this update: Fri 17 Jul 2026 09:00:06 +0000
Manifest next update: Fri 24 Jul 2026 09:00:06 +0000
Files and hashes: 1: iPsdIcuIPJfCmst31NaIhLOnpgg.crl (hash: bEqDAHjGaN2JaM/a/2JwgneRNuRpxW3x5BGawmbaPBM=)
2: 74C3FC2413B911F1B7CEB625083D8C67.roa (hash: P4H5FeCoBASYrayJLn/hEkJQo4s7Z0+nN2dTkoyBEgM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl
rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 09:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127 (0x7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B6A04, serialNumber=88FB1D21CB883C97C29ACB77D4D68884B3A7A608
Validity
Not Before: Jul 17 09:00:06 2026 GMT
Not After : Jul 24 09:00:06 2026 GMT
Subject: CN=6a59ef17-218c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:05:87:64:88:8b:07:1b:e7:d7:93:7d:d7:f6:
98:d3:35:9d:b5:3f:9a:33:e7:a3:d1:80:0f:8d:be:
7a:74:5c:e5:3e:2e:e0:55:d3:3e:be:f4:52:8a:3a:
82:27:a8:f8:0e:c9:dd:38:b8:51:a5:63:1c:f0:50:
a9:2d:68:88:69:bd:bd:b7:3c:69:76:69:ef:93:ce:
41:06:0c:cd:c6:a3:0f:22:a2:21:1a:4a:6a:3d:28:
d7:a9:89:cb:46:79:3c:4d:b9:5b:02:50:61:b7:6a:
95:84:93:cf:da:3f:86:ac:55:ec:dc:9e:f7:ab:db:
9c:a8:f1:46:bd:c3:8c:77:06:b2:a8:1d:2b:da:0d:
02:cb:54:81:97:3a:7e:35:41:48:5b:cb:91:fd:ad:
52:44:f5:9f:38:bf:47:fa:af:d2:a7:ad:76:b1:1a:
86:91:de:d0:2f:50:b7:ed:c4:e4:a4:f6:b2:20:56:
71:2f:d9:7a:21:c4:2c:e8:d9:70:bd:81:ee:ef:78:
fb:de:d7:e2:43:56:1f:21:36:3d:35:cb:53:b1:79:
0e:93:42:21:f7:39:81:73:65:94:e9:a6:4c:9c:46:
3a:61:72:b4:3f:d7:91:11:5c:1a:bf:d7:1a:b3:1c:
04:dd:b0:91:c5:77:55:6b:45:71:de:a3:64:ab:d3:
65:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A1:E7:BA:DD:BF:2A:84:CA:C0:C1:E0:11:9F:25:9E:3C:CB:AF:B7
X509v3 Authority Key Identifier:
keyid:88:FB:1D:21:CB:88:3C:97:C2:9A:CB:77:D4:D6:88:84:B3:A7:A6:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iPsdIcuIPJfCmst31NaIhLOnpgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6A04/25C5277EC9AE11F098E92745C4F9AE02/iPsdIcuIPJfCmst31NaIhLOnpgg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
61:26:68:fd:e5:1c:06:94:01:ff:c7:5b:e0:6a:0a:61:35:74:
cd:4d:41:83:e9:17:38:35:d6:e8:44:7a:a0:60:86:9c:15:6c:
b5:15:c3:26:f7:e6:13:f3:84:ff:ed:ed:1d:34:1a:e4:c8:68:
76:2b:48:c9:71:fd:a5:88:a7:64:f5:ff:c5:7c:c9:27:2d:09:
36:10:61:a3:85:1d:4e:79:7b:60:72:6f:ed:a1:d0:71:24:43:
76:3b:3f:9c:10:3e:73:10:fe:89:e2:ba:20:a9:79:0e:a8:07:
1e:5a:cb:20:b6:00:9f:00:b2:a4:f4:d6:d9:8a:47:19:1a:a3:
b7:0a:c4:7d:88:16:30:6a:96:b4:dc:84:3f:bd:5c:f8:d2:3b:
9e:08:a6:41:15:a6:0f:17:68:7c:f7:cc:77:a6:da:a8:1b:ee:
92:1e:27:cf:12:b9:a7:bc:80:d1:fb:c4:01:9e:e0:68:d9:df:
af:87:37:55:76:c1:c9:f7:4a:e0:87:59:6d:ca:a2:de:d4:89:
07:83:d8:4e:92:d0:06:6b:d9:36:59:ca:e3:74:0f:53:2d:c6:
bf:eb:7c:32:99:7a:82:24:d5:10:dd:2d:f2:de:70:0d:ae:ad:
dd:44:26:01:01:2a:82:5a:65:87:fd:69:41:4b:2f:80:05:8b:
27:77:36:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:23:27 2026 by rpki-client