
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft
File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json)
Hash identifier: CaGsR1pmt31tll/xwvj6+2lO3aNWQ0j2O5/m27huLj8=
Subject key identifier: 9D:39:88:C1:DC:66:C2:A5:5D:A2:F3:BD:D6:13:FD:6E:97:71:12:25
Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D
Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D
Certificate serial: 0138
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft
Manifest number: 0133
Signing time: Fri 17 Jul 2026 06:47:34 +0000
Manifest this update: Fri 17 Jul 2026 06:47:34 +0000
Manifest next update: Fri 24 Jul 2026 06:47:34 +0000
Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: YmqxhDBkL8utHzDhZoww41REf907p4OrRgJYev6/2Dc=)
2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: nV38DqB6S2s+obaWtL39HR2W0RXsAZejFz8xEU6bYCg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl
rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:47:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312 (0x138)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D
Validity
Not Before: Jul 17 06:47:34 2026 GMT
Not After : Jul 24 06:47:34 2026 GMT
Subject: CN=6a59d006-7d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f0:8c:09:df:b6:1c:91:13:4e:8e:28:93:54:
79:22:4d:a2:ae:14:7b:22:33:b5:02:f9:65:1c:61:
87:b5:03:7d:9f:15:05:f7:7b:af:ad:f6:05:b9:3e:
83:cd:7e:a2:7d:ca:70:17:ab:75:e8:ea:77:12:0b:
f4:fd:f7:23:c3:ba:3f:16:e8:0b:b3:6c:70:35:85:
bc:66:9c:79:f4:f3:f5:0a:20:ec:d7:01:31:c3:e9:
2b:20:be:05:c9:2b:7a:48:89:50:35:1a:66:e8:f5:
99:ad:60:55:b3:3f:4e:b8:7e:f1:c6:06:a3:eb:a9:
3d:18:7b:6e:e7:c2:1d:9f:fd:22:ac:f4:e5:c3:8f:
db:cb:47:f6:57:dd:e2:8c:05:d3:43:ee:51:53:e3:
f9:b1:d8:43:06:ab:60:af:b2:c6:ed:67:4f:f4:d3:
b4:97:61:e3:4f:e0:da:13:0a:7a:08:60:5f:a6:27:
9c:2a:ad:75:73:71:6a:63:d2:30:8c:70:66:19:7a:
1b:05:e8:d3:4c:88:a9:88:71:6c:83:3a:55:85:6b:
61:8a:fa:45:dc:6d:dd:dd:0b:b0:e5:a5:5a:7f:b1:
f4:bb:1d:95:a5:84:11:3d:7b:27:ba:db:ce:d9:93:
01:6c:d3:a5:41:e9:cd:35:e1:7f:5e:7a:11:52:fe:
d2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:39:88:C1:DC:66:C2:A5:5D:A2:F3:BD:D6:13:FD:6E:97:71:12:25
X509v3 Authority Key Identifier:
keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
57:54:d9:a0:1a:c4:39:9b:17:b5:2b:b1:70:54:ad:b2:82:ae:
47:dd:01:99:b9:26:cb:34:9f:29:66:64:a8:90:90:20:12:1d:
d8:7b:63:76:3c:7f:c2:6a:44:0c:3d:e3:90:a4:ef:5d:74:43:
3c:00:b2:9b:67:a0:b1:d0:17:dd:44:5f:e9:34:99:d4:83:2a:
93:4f:dc:fa:d6:2e:ca:59:6e:fc:88:a5:d9:60:48:58:a1:c7:
6e:6b:ad:49:b4:58:bf:22:93:54:e9:53:8a:41:66:65:50:77:
d0:cd:8b:9c:af:d6:f5:8f:2e:e1:24:e3:c4:4c:b2:f5:0f:ee:
34:ba:18:bf:a6:7a:d5:9d:e2:d3:6b:9b:40:e2:fd:cb:56:b3:
ea:03:07:0a:c6:e4:e0:9e:a6:b4:bd:b6:10:a7:dd:a6:29:4d:
b0:90:04:85:a8:69:87:92:90:a7:ef:6f:ac:80:26:43:dd:ae:
e7:15:cd:3f:76:71:34:ff:5a:0d:24:0c:08:de:15:59:3e:1a:
7e:22:72:a3:5c:fd:63:4d:2a:bc:7d:80:8a:75:cd:6c:ad:72:
c0:35:d6:ef:e2:aa:e2:eb:20:1b:36:49:df:c8:bd:76:90:26:
24:b7:21:66:db:d5:cd:98:74:84:88:71:c8:9a:19:88:70:b8:
e1:ea:f3:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:58 2026 by rpki-client