
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft
File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json)
Hash identifier: ONX/QtH+Xee3tcHDfLlbV5rY4X81khponLx2Z0vqCiM=
Subject key identifier: 1A:0B:EC:7B:4A:91:B6:B3:36:92:D0:35:6A:F2:F5:DD:E5:42:FF:B5
Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D
Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D
Certificate serial: 014A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft
Manifest number: 0142
Signing time: Fri 17 Jul 2026 06:28:57 +0000
Manifest this update: Fri 17 Jul 2026 06:28:56 +0000
Manifest next update: Fri 24 Jul 2026 06:28:56 +0000
Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: niC+V2dTjes8ivGLGJzEbF8CWDPXeEmN0Nlw1jXAkvs=)
2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: kw9fZbNGZZ3kdKJfF8SYCLZeUjioT1ZZ2tfUfZYgkvw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl
rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:28:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 330 (0x14a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D
Validity
Not Before: Jul 17 06:28:56 2026 GMT
Not After : Jul 24 06:28:56 2026 GMT
Subject: CN=6a59cba9-47b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9d:0c:b9:67:95:38:be:8d:61:a4:92:b9:cc:
d9:e2:ea:e1:70:39:a3:ee:89:44:8a:ca:51:8f:d9:
41:2a:07:3d:35:a9:6c:28:dc:bd:05:aa:c8:94:ac:
62:2b:16:a6:aa:92:a4:5a:3f:23:2a:31:60:a9:a0:
5d:ca:ee:04:75:b0:74:c1:38:a3:dd:e1:9d:fe:52:
ca:48:fd:8e:c3:04:f1:e1:fb:15:51:6b:d8:ab:5b:
ff:60:7f:fc:1b:0d:63:05:f5:88:40:d6:a7:00:30:
d0:17:28:a3:10:6c:bb:c2:12:b8:d6:f2:5f:50:93:
74:6f:95:9c:4d:95:d9:f1:ce:80:ee:b0:46:f5:3c:
1f:fb:d0:3a:1a:e9:db:d2:c9:1c:48:48:55:56:80:
53:8d:77:cd:54:6e:72:3c:c1:cf:92:29:90:9a:93:
7b:9f:1d:4c:ff:e8:4c:4b:35:df:62:2b:7b:9d:27:
e1:02:f5:72:f3:d4:90:a6:c8:7d:e0:34:b2:4d:2c:
3d:f1:b0:69:3f:b8:73:38:82:bc:d1:5b:59:f7:0b:
9e:48:3f:24:0c:0c:b6:eb:96:80:dd:5f:28:26:d3:
0a:14:4f:58:62:9e:cc:f6:29:f5:d6:bd:6c:a6:48:
d4:a1:50:20:b0:9f:09:65:05:7a:4f:ce:78:5b:0f:
ef:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0B:EC:7B:4A:91:B6:B3:36:92:D0:35:6A:F2:F5:DD:E5:42:FF:B5
X509v3 Authority Key Identifier:
keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6a:06:d5:70:d9:f4:39:d0:37:94:e9:02:70:4e:1f:29:a6:66:
0c:4f:bd:7a:f4:85:96:09:07:a8:9c:e8:a3:ce:64:e3:ec:5d:
f1:90:94:ff:fd:8a:de:fe:7b:d1:73:43:3c:71:d3:24:5d:6f:
88:bc:67:18:76:b3:b6:b8:ad:13:5e:55:9e:44:eb:ea:f7:93:
a3:85:c1:c5:03:bf:e6:fa:ac:e7:31:d4:6d:c5:44:c3:18:73:
44:b7:29:32:c3:f5:51:bf:c7:ad:98:1a:2c:8c:45:d4:99:c8:
97:0b:d6:d3:37:4f:57:c0:4e:9a:16:97:94:c5:59:76:62:dc:
f1:db:b2:cc:c1:fb:a9:3c:c9:66:54:54:6d:62:80:e2:9f:b7:
0c:46:73:b7:71:52:9e:e1:43:26:ef:b0:5e:72:8c:9e:9b:b5:
ec:d8:ea:75:be:d1:f9:e7:f7:2f:61:69:b8:f0:9e:3e:ca:e1:
b2:7b:bd:ae:1c:0c:2e:18:04:61:78:f2:79:bb:a1:4e:b4:a5:
c3:cc:4e:ab:4b:a3:cb:ef:87:48:bd:f4:90:83:c0:50:de:3c:
d6:54:92:50:6c:76:9a:c4:9b:6b:13:48:c0:42:17:ba:f1:1a:
9c:c0:f7:a3:ea:82:41:64:0e:17:78:c9:0d:53:16:09:79:aa:
90:74:fd:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:16:57 2026 by rpki-client