
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json)
Hash identifier: FP1VCxaYSKmXRs+RDPA5Ri9L6X8ILe3/erquxIkH+ro=
Subject key identifier: 03:C0:73:87:E9:C7:48:4E:3F:FC:00:69:02:D8:71:10:57:8E:22:2F
Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73
Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773
Certificate serial: 0730
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
Manifest number: 0726
Signing time: Thu 16 Jul 2026 22:22:58 +0000
Manifest this update: Thu 16 Jul 2026 22:22:58 +0000
Manifest next update: Thu 23 Jul 2026 22:22:58 +0000
Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: kiHgctUXk+mfsLycfCWRHw4sbiWSEpVTFUjDma++EXo=)
2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: VgbeXAdf455JZk0LmbiShFevJbfj2qjooSF8sLvpt2k=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl
rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 22:22:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1840 (0x730)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773
Validity
Not Before: Jul 16 22:22:58 2026 GMT
Not After : Jul 23 22:22:58 2026 GMT
Subject: CN=6a5959c2-6e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1b:c5:4d:46:64:08:79:58:00:e1:3b:45:e0:
76:70:8d:09:fe:42:06:d0:fa:dd:99:62:e9:08:5b:
0a:57:cb:c2:07:7d:da:3b:a2:ad:81:09:17:53:10:
ca:ec:c1:68:f7:c2:a4:e9:4c:9a:98:2e:8c:7e:e7:
07:17:36:a9:f1:a7:e0:6e:e0:2e:18:3c:33:fd:ee:
c4:09:90:b2:65:19:b4:b7:08:da:60:2e:ad:57:a7:
ac:ec:16:ac:a8:f7:87:14:91:01:0f:9b:b9:6c:de:
fc:94:c0:ad:1c:2a:fd:bb:cb:f9:f8:e6:da:12:18:
7d:00:b7:99:3d:48:89:b9:e3:e8:27:78:7d:64:b0:
6b:94:84:8a:f9:d0:f0:74:3b:20:6c:b7:80:d7:be:
2a:31:d6:0f:7e:21:1c:66:90:47:85:1e:50:d2:b0:
9e:59:04:2d:53:ab:e8:36:78:e7:72:1c:af:b8:02:
ba:e9:c5:a7:1d:44:9a:c7:f7:70:e5:d8:c9:63:0b:
85:e1:52:56:34:92:6d:75:7a:59:2f:cf:60:81:04:
aa:e3:e5:c0:09:bb:26:b2:c2:07:ad:1d:8e:69:e2:
d0:ce:fc:32:36:8b:21:32:08:31:ac:05:99:81:ec:
c2:58:d2:a2:b7:85:82:a0:16:9e:7d:34:2b:5c:ef:
ed:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C0:73:87:E9:C7:48:4E:3F:FC:00:69:02:D8:71:10:57:8E:22:2F
X509v3 Authority Key Identifier:
keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:c4:fc:11:ae:2d:c7:b0:aa:7a:24:f1:d9:58:92:0a:e0:83:
d3:fb:7e:fe:53:01:d9:d1:c3:e9:ef:c1:80:65:d1:55:db:c6:
fb:a6:0d:38:2a:3d:79:87:36:7c:af:08:0e:8f:e3:d1:8f:93:
47:73:99:f5:ea:70:c8:62:c5:43:55:aa:44:2e:2b:9d:73:4a:
5b:1c:e1:1f:aa:69:bc:6d:e8:0c:ad:dc:6a:c8:f9:4c:37:d0:
b1:bf:21:9f:e5:a2:21:00:24:4c:ce:ca:32:11:1a:26:a9:34:
34:4e:00:c7:10:e7:08:f0:61:ae:42:ba:24:9f:9b:c3:ef:1a:
2f:01:bc:4c:0e:80:65:d8:20:a4:10:58:b0:c5:29:a0:a5:22:
a3:61:66:d4:a0:22:b3:e0:15:b5:ba:1c:60:f2:1e:6c:d6:3f:
bb:84:64:7b:69:41:31:b7:c5:db:4c:bc:c2:d3:aa:fc:fd:06:
7f:a3:31:51:5b:e9:29:c3:d0:e7:26:0f:0c:44:00:69:79:49:
87:c5:3f:98:6f:90:ef:dc:49:dc:2b:85:67:f9:c3:29:73:0a:
07:95:5b:ac:c8:e8:f1:35:84:d1:b4:c2:c3:4f:a0:ea:a5:c0:
d1:94:b7:37:53:44:96:1d:9c:4e:13:0a:f9:1f:87:c9:ff:1d:
cf:43:1b:44
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0
NkI3NzQ3NzMwHhcNMjYwNzE2MjIyMjU4WhcNMjYwNzIzMjIyMjU4WjAYMRYwFAYD
VQQDEw02YTU5NTljMi02ZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqBvFTUZkCHlYAOE7ReB2cI0J/kIG0PrdmWLpCFsKV8vCB33aO6KtgQkXUxDK
7MFo98Kk6UyamC6MfucHFzap8afgbuAuGDwz/e7ECZCyZRm0twjaYC6tV6es7Bas
qPeHFJEBD5u5bN78lMCtHCr9u8v5+ObaEhh9ALeZPUiJuePoJ3h9ZLBrlISK+dDw
dDsgbLeA174qMdYPfiEcZpBHhR5Q0rCeWQQtU6voNnjnchyvuAK66cWnHUSax/dw
5djJYwuF4VJWNJJtdXpZL89ggQSq4+XACbsmssIHrR2OaeLQzvwyNoshMggxrAWZ
gezCWNKit4WCoBaefTQrXO/t0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAPAc4fp
x0hOP/wAaQLYcRBXjiIvMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB
QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS
M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU
UVhQVlU5RnFvTEZHdDNSM00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAWcT8Ea4tx7CqeiTx2ViSCuCD0/t+/lMB2dHD6e/BgGXRVdvG+6YNOCo9eYc2
fK8IDo/j0Y+TR3OZ9epwyGLFQ1WqRC4rnXNKWxzhH6ppvG3oDK3casj5TDfQsb8h
n+WiIQAkTM7KMhEaJqk0NE4AxxDnCPBhrkK6JJ+bw+8aLwG8TA6AZdggpBBYsMUp
oKUio2Fm1KAis+AVtbocYPIebNY/u4Rke2lBMbfF20y8wtOq/P0Gf6MxUVvpKcPQ
5yYPDEQAaXlJh8U/mG+Q79xJ3CuFZ/nDKXMKB5VbrMjo8TWE0bTCw0+g6qXA0ZS3
N1NElh2cThMK+R+Hyf8dz0MbRA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:29 2026 by rpki-client