
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json)
Hash identifier: YcO0YU6i0LNNaerMD/N0HKxu2Pik48SyyfUn+xq62A4=
Subject key identifier: 1A:2E:34:A3:57:C3:CB:B6:A0:74:77:D3:42:DB:FB:39:4F:A2:2D:05
Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13
Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613
Certificate serial: 015F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
Manifest number: 0157
Signing time: Thu 09 Jul 2026 06:51:47 +0000
Manifest this update: Thu 09 Jul 2026 06:51:46 +0000
Manifest next update: Thu 16 Jul 2026 06:51:46 +0000
Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: irH7OaxkcDtneOXpKYwpWXtSwSgYGIlsX2Ot/VNzqTg=)
2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: 1cWKe61JXoqpcmn6lNJya/Zcn9d/497NYBSEDuJwXJY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl
rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 06:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351 (0x15f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613
Validity
Not Before: Jul 9 06:51:46 2026 GMT
Not After : Jul 16 06:51:46 2026 GMT
Subject: CN=6a4f4503-1696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:8b:9c:18:f1:7a:88:a0:82:c7:89:de:d7:
81:e4:31:81:00:7f:f0:99:a1:76:2d:a0:3a:9e:c8:
05:de:4d:9a:fe:4f:d8:64:d9:6a:c8:1e:dc:9d:d3:
45:23:81:f6:c9:a1:52:27:ee:aa:c0:d6:73:09:65:
b3:d6:27:9d:7b:65:cb:01:e6:a9:32:e7:70:86:0f:
eb:f6:47:0f:b0:e7:a2:05:7f:33:f6:31:74:e5:23:
69:ed:ec:db:b5:37:b4:1d:08:f1:29:5a:3a:6b:60:
77:66:75:bd:da:73:71:61:49:67:67:0a:68:80:7e:
d0:06:74:31:3a:08:f8:f2:8c:b6:a3:14:e7:d4:4b:
db:ad:e1:c2:8b:b8:24:14:34:5d:90:0c:77:d9:6e:
74:b6:50:39:96:ea:d4:5a:3f:a9:79:8c:98:38:62:
9b:8d:92:ec:98:7f:76:cf:a5:c0:2e:3e:24:b6:7c:
f5:89:d1:cc:88:2d:aa:11:bd:e2:a6:8d:a7:d8:cc:
77:85:d5:07:63:00:aa:8c:50:77:da:30:63:ba:6a:
09:24:80:d2:c0:cf:5e:74:29:e5:30:09:e5:b9:7d:
3b:54:bf:40:95:3e:30:0f:c2:f3:53:5e:dd:b5:11:
b7:c9:df:2e:a9:e6:1c:36:ea:70:68:84:91:01:59:
8b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:2E:34:A3:57:C3:CB:B6:A0:74:77:D3:42:DB:FB:39:4F:A2:2D:05
X509v3 Authority Key Identifier:
keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
ae:9a:78:44:32:18:c3:d5:11:04:ef:3e:30:f6:ed:14:69:22:
95:8f:c2:a6:83:14:03:f8:45:59:94:94:3e:78:96:84:46:da:
bf:48:d1:85:cd:fa:4a:72:15:9f:9f:23:c6:80:40:d1:27:3f:
b1:92:a7:a5:18:32:5e:59:a2:7e:5a:05:d1:85:07:e5:f0:6d:
e9:6d:fe:62:89:bd:76:61:7c:1e:d9:2a:ea:97:bc:0f:bd:77:
57:bf:b4:d4:ad:f6:e4:dd:25:f5:fb:2a:a4:d3:5c:af:d1:7c:
42:d3:72:53:3b:f4:20:61:d7:81:96:22:9e:13:f8:8c:d5:4a:
7f:1a:3f:05:68:06:24:ea:a8:a2:43:85:b8:2a:c7:68:23:bf:
a5:2b:bd:3e:66:72:d2:8f:bf:a8:fc:5f:c5:24:70:15:f5:d8:
d7:49:3c:eb:ab:c2:8e:1d:a6:20:18:64:5a:77:2b:18:3d:47:
10:54:c8:db:52:90:a2:78:c9:46:43:31:a6:01:1e:d9:f1:3c:
a9:9c:eb:a3:cb:41:c8:d2:4f:5b:b3:63:f9:30:9f:f9:cd:7e:
02:50:62:d7:7b:8c:66:d8:e6:cc:07:ed:31:5f:60:cb:cb:03:
b4:cd:39:29:73:b0:27:36:bd:03:2f:82:b2:fb:dd:1a:21:42:
10:45:7a:e0
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz
QkVCNTY2MTMwHhcNMjYwNzA5MDY1MTQ2WhcNMjYwNzE2MDY1MTQ2WjAYMRYwFAYD
VQQDEw02YTRmNDUwMy0xNjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAru6LnBjxeoiggseJ3teB5DGBAH/wmaF2LaA6nsgF3k2a/k/YZNlqyB7cndNF
I4H2yaFSJ+6qwNZzCWWz1iede2XLAeapMudwhg/r9kcPsOeiBX8z9jF05SNp7ezb
tTe0HQjxKVo6a2B3ZnW92nNxYUlnZwpogH7QBnQxOgj48oy2oxTn1EvbreHCi7gk
FDRdkAx32W50tlA5lurUWj+peYyYOGKbjZLsmH92z6XALj4ktnz1idHMiC2qEb3i
po2n2Mx3hdUHYwCqjFB32jBjumoJJIDSwM9edCnlMAnluX07VL9AlT4wD8LzU17d
tRG3yd8uqeYcNupwaISRAVmLOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBouNKNX
w8u2oHR300Lb+zlPoi0FMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF
ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa
aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz
dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEArpp4RDIYw9URBO8+MPbtFGkilY/CpoMUA/hFWZSUPniWhEbav0jRhc36SnIV
n58jxoBA0Sc/sZKnpRgyXlmifloF0YUH5fBt6W3+Yom9dmF8Htkq6pe8D713V7+0
1K325N0l9fsqpNNcr9F8QtNyUzv0IGHXgZYinhP4jNVKfxo/BWgGJOqookOFuCrH
aCO/pSu9PmZy0o+/qPxfxSRwFfXY10k866vCjh2mIBhkWncrGD1HEFTI21KQonjJ
RkMxpgEe2fE8qZzro8tByNJPW7Nj+TCf+c1+AlBi13uMZtjmzAftMV9gy8sDtM05
KXOwJza9Ay+CsvvdGiFCEEV64A==
-----END CERTIFICATE-----
Generated at Fri Jul 10 16:37:19 2026 by rpki-client