
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft
File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json)
Hash identifier: EncCE/Y+4Gyf8T7IHR2SHC75d/WfIZ+VAVrWtOp+kJ4=
Subject key identifier: 42:D8:1C:9E:B3:51:3A:C7:47:7A:AB:12:E2:90:F0:60:ED:49:A6:D4
Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD
Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD
Certificate serial: 020B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft
Manifest number: 01FF
Signing time: Sun 05 Jul 2026 03:44:28 +0000
Manifest this update: Sun 05 Jul 2026 03:44:28 +0000
Manifest next update: Sun 12 Jul 2026 03:44:28 +0000
Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: fuMkphSA5jUbSpA85LJGVbr1An4pPeMJkCLo5rcO4Iw=)
2: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: 8AGxFivuKAnKFN4TwTWYk8MHWZYUWT4PtexoYNpYMj4=)
3: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: V3KGZPnIaGHG9fDhQyXWDDAGsT4VUgLiBOpTb4Gj+iY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl
rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 03:44:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523 (0x20b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD
Validity
Not Before: Jul 5 03:44:28 2026 GMT
Not After : Jul 12 03:44:28 2026 GMT
Subject: CN=6a49d31c-a14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bd:29:d9:4f:08:0f:4f:6c:4c:7e:e3:eb:b4:
98:53:c6:b7:3f:2b:94:ac:df:e6:f5:ac:d5:40:89:
71:b1:13:7b:9d:e1:1b:c0:dc:b4:e0:27:fd:01:0d:
e1:b6:07:9d:22:33:25:f0:21:e0:8c:93:3e:bf:99:
f2:bd:8f:be:f5:1c:62:87:e7:f8:ec:2a:70:1c:07:
65:4e:ac:47:5d:e6:e3:9b:6c:b0:51:be:61:be:2f:
92:bb:8b:e9:9f:68:0d:5f:e4:46:6f:a4:bd:a1:96:
ed:0e:0b:bb:c5:5a:00:de:10:ea:0e:9c:8d:b5:3d:
8b:34:d8:01:b6:2c:ec:3c:8b:31:3b:77:e6:34:c3:
ea:8c:ee:a8:ce:96:e8:67:08:3f:49:4a:76:13:74:
ce:a2:91:0f:9a:47:82:f6:8a:2c:54:30:e5:e6:ed:
b1:0b:7f:67:4a:52:e1:8a:70:e5:61:75:98:ab:c6:
82:72:db:ca:94:22:57:d7:bc:b0:bf:4a:16:94:37:
af:53:94:3a:57:0c:a4:bd:89:0f:db:d8:06:0e:04:
9c:fa:96:31:a8:ca:09:e4:f5:0e:cc:9d:c7:52:8a:
f9:24:8d:9d:77:52:f9:5d:ec:36:0f:65:ce:41:15:
f5:02:6a:df:fc:ac:b5:61:ec:37:e3:66:84:72:77:
bd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D8:1C:9E:B3:51:3A:C7:47:7A:AB:12:E2:90:F0:60:ED:49:A6:D4
X509v3 Authority Key Identifier:
keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
23:8b:ef:08:5e:4d:04:a3:47:0f:9b:a2:c9:eb:d8:e1:d9:8f:
e8:a0:39:12:5a:51:d9:f8:9e:0d:dd:58:90:50:90:9c:f1:87:
1c:5e:9a:d3:29:48:ad:1c:d6:f3:06:7c:d1:93:71:09:ac:e0:
91:d9:f7:28:c5:b5:4c:76:c8:99:58:a9:72:0f:20:bb:b5:92:
e1:87:68:cb:4d:e5:ae:28:9f:00:d1:f2:73:71:7f:39:34:c3:
41:f6:aa:73:ca:2c:b1:02:dc:9f:e6:30:95:e0:66:75:38:ef:
a2:21:44:84:4d:35:8d:49:60:c0:1a:97:5d:2e:de:b5:b7:5c:
69:6e:83:19:88:9d:0a:5e:62:6d:9f:b6:ba:ae:32:b4:fa:90:
aa:90:fa:42:92:c6:c4:ac:c9:c0:66:ce:53:df:29:45:ae:66:
da:65:74:0a:48:f4:58:70:a1:75:07:d5:d3:8c:58:8a:60:61:
cc:6e:e5:85:4b:5e:62:69:af:7e:f6:22:51:b2:2c:e8:ce:5c:
a3:ed:1e:36:3a:14:ad:5b:57:b7:76:ad:18:1a:49:1d:2c:4a:
ff:45:31:30:40:19:c4:52:9f:0b:45:4f:72:34:c4:27:47:03:
d0:24:a0:55:c2:70:8b:1b:3a:c0:56:0e:3b:6f:df:52:43:2e:
91:27:07:b3
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw
RDQ5MTJFREQwHhcNMjYwNzA1MDM0NDI4WhcNMjYwNzEyMDM0NDI4WjAYMRYwFAYD
VQQDEw02YTQ5ZDMxYy1hMTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxr0p2U8ID09sTH7j67SYU8a3PyuUrN/m9azVQIlxsRN7neEbwNy04Cf9AQ3h
tgedIjMl8CHgjJM+v5nyvY++9Rxih+f47CpwHAdlTqxHXebjm2ywUb5hvi+Su4vp
n2gNX+RGb6S9oZbtDgu7xVoA3hDqDpyNtT2LNNgBtizsPIsxO3fmNMPqjO6ozpbo
Zwg/SUp2E3TOopEPmkeC9oosVDDl5u2xC39nSlLhinDlYXWYq8aCctvKlCJX17yw
v0oWlDevU5Q6VwykvYkP29gGDgSc+pYxqMoJ5PUOzJ3HUor5JI2dd1L5Xew2D2XO
QRX1Amrf/Ky1Yew342aEcne91wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFELYHJ6z
UTrHR3qrEuKQ8GDtSabUMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE
ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM
dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx
Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAI4vvCF5NBKNHD5uiyevY4dmP6KA5ElpR2fieDd1YkFCQnPGHHF6a0ylIrRzW
8wZ80ZNxCazgkdn3KMW1THbImVipcg8gu7WS4Ydoy03lriifANHyc3F/OTTDQfaq
c8ossQLcn+YwleBmdTjvoiFEhE01jUlgwBqXXS7etbdcaW6DGYidCl5ibZ+2uq4y
tPqQqpD6QpLGxKzJwGbOU98pRa5m2mV0Ckj0WHChdQfV04xYimBhzG7lhUteYmmv
fvYiUbIs6M5co+0eNjoUrVtXt3atGBpJHSxK/0UxMEAZxFKfC0VPcjTEJ0cD0CSg
VcJwixs6wFYOO2/fUkMukScHsw==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:16:01 2026 by rpki-client