
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft
File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json)
Hash identifier: lz+JHgQmvAHoEnDsMd+2D/ssy3+G7XC9Zlzq5OBh8ko=
Subject key identifier: 9F:62:E5:3D:01:7A:75:1C:E7:50:84:2E:3C:C0:78:63:76:7A:2B:57
Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF
Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF
Certificate serial: 01D1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft
Manifest number: 01BF
Signing time: Fri 17 Jul 2026 05:00:56 +0000
Manifest this update: Fri 17 Jul 2026 05:00:55 +0000
Manifest next update: Fri 24 Jul 2026 05:00:55 +0000
Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: rMClEAfioklZnYZr3rFgALuP47CjXxAA0STQ+j2wxGk=)
2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: Ih6CUVzbaPRdHejVQvZNcYEMy1tnq4yUXbGOoq+u3g0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl
rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465 (0x1d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF
Validity
Not Before: Jul 17 05:00:55 2026 GMT
Not After : Jul 24 05:00:55 2026 GMT
Subject: CN=6a59b708-3d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0d:97:71:2b:b7:3e:c9:7b:64:1b:6d:69:ed:
48:9d:0f:ab:2c:6e:53:06:a2:ec:1f:42:4c:18:42:
31:dd:83:19:98:26:56:6c:b3:48:76:53:0e:e5:66:
80:6d:19:86:da:85:3d:0f:f6:90:4e:f5:b6:a9:84:
c7:51:78:37:b5:e9:8d:2e:fa:3f:51:84:b0:04:a9:
15:02:ff:b1:2d:9c:92:69:c5:df:e9:a0:0d:8d:41:
61:08:69:c0:cf:7b:70:fe:ff:a9:cd:82:6e:57:92:
e9:69:a2:04:b4:69:3e:6f:48:23:aa:f1:a2:fb:4b:
28:bd:66:02:33:96:39:c1:0d:18:09:01:5a:c9:20:
84:5c:2e:d7:25:f6:08:8c:9f:3d:37:a8:bf:61:ab:
38:6f:7f:57:54:32:5f:f7:7c:a4:10:67:d1:90:22:
2b:0a:b8:d3:3d:d6:b9:24:76:92:31:02:6c:8b:a5:
1a:cc:97:03:2c:6f:ed:e9:13:a2:fa:7a:44:ed:12:
90:7b:c6:bc:cc:04:3f:00:ab:48:e4:1a:34:07:1f:
86:3e:98:76:d9:94:ef:1c:58:35:0b:7a:10:fa:0f:
d2:58:f5:ff:3f:86:47:27:1b:61:a1:8e:10:62:74:
cf:19:17:c8:f1:92:58:51:8a:68:35:70:62:bd:49:
74:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:62:E5:3D:01:7A:75:1C:E7:50:84:2E:3C:C0:78:63:76:7A:2B:57
X509v3 Authority Key Identifier:
keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3b:38:a2:dc:7f:81:4b:03:95:a5:7e:0b:cb:f5:02:59:c8:c8:
c0:04:8c:65:38:ea:9b:21:fa:88:68:7c:e6:92:d9:1f:fd:d2:
e3:62:e4:96:3f:4f:8f:86:68:d9:5d:53:17:6b:cf:38:e7:48:
20:cf:fc:b1:39:78:0f:f4:99:cd:8b:1c:7d:d6:65:d4:ae:29:
ec:59:a6:33:46:b0:ca:e5:19:e2:fc:66:fc:3f:49:1a:f2:ee:
e3:cf:69:44:7e:8e:d7:72:c8:ff:16:45:94:c0:8c:05:19:5f:
83:38:48:37:dd:8e:8a:f6:62:de:68:07:28:7e:c8:8b:17:f6:
e9:56:db:aa:da:97:a4:84:74:89:39:6e:50:0b:16:ab:e9:cc:
fe:f4:47:a1:b5:e3:5b:ca:f6:50:f6:e7:7c:ce:58:47:36:57:
e9:56:17:fc:f1:a5:b0:bd:02:48:1c:9d:69:f3:cd:b9:dd:f4:
0b:be:23:f3:8d:de:2c:cd:e4:9b:c4:be:fe:9a:8a:56:79:a6:
5b:7e:5b:7c:f2:f7:56:66:52:6e:93:f0:70:a7:8f:de:ff:f3:
66:c2:90:fa:f1:31:93:9c:63:d9:b0:ed:d1:70:4a:84:0a:2e:
ff:42:38:5c:21:40:0d:29:6b:e1:4a:c0:dd:6f:62:40:62:e3:
ab:57:70:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:23:52 2026 by rpki-client