
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json)
Hash identifier: FOFCDk6P1/lrTdu87nZVdFI5oeAllSV3IpDEfpg5uwg=
Subject key identifier: 10:47:11:EA:08:CF:75:DC:4B:2F:77:57:90:95:E9:D5:91:23:A9:9C
Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6
Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6
Certificate serial: 3554
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
Manifest number: 3554
Signing time: Sat 04 Jul 2026 15:16:13 +0000
Manifest this update: Sat 04 Jul 2026 15:16:12 +0000
Manifest next update: Sat 11 Jul 2026 15:16:12 +0000
Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: iazbWpCCqfRY1Z9737t049QNErrb/fw2hfGwt9LJo70=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl
rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 15:16:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13652 (0x3554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6
Validity
Not Before: Jul 4 15:16:12 2026 GMT
Not After : Jul 11 15:16:12 2026 GMT
Subject: CN=6a4923bc-be17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:e8:f6:19:c6:42:97:87:12:57:67:81:fd:
7d:d1:ae:a8:5a:0c:62:85:d5:27:8d:48:94:c8:4c:
4e:d5:e8:43:5f:a6:2c:4b:ea:d1:ed:e1:2e:45:35:
9c:4e:02:22:17:83:2e:f4:30:2a:43:63:97:4e:9f:
32:47:86:5e:c0:3b:a9:53:27:7b:8c:95:fe:cc:59:
97:12:fe:9b:40:cc:56:16:3a:1f:53:24:9a:74:07:
7a:6d:9b:d9:53:10:bc:55:67:98:70:a7:ad:6d:46:
c3:4c:da:f3:b8:97:17:df:ec:80:84:68:cd:d2:8d:
48:1a:05:99:71:a5:6c:cc:fa:18:d2:01:3f:57:ca:
3e:ef:85:c7:ae:6e:c0:1a:22:ac:06:df:cb:71:40:
6c:87:34:e3:69:1d:0b:21:1b:1a:d2:8f:bc:54:4d:
60:b5:4f:9d:41:3c:38:db:8b:3a:ac:b5:31:b5:d5:
3f:61:f7:66:52:4c:33:6c:af:b7:21:b3:07:41:d7:
96:d1:99:9c:7b:df:a7:d8:ec:bd:a1:73:a3:a8:99:
cb:36:c9:c4:4f:a8:0b:bb:b0:02:10:83:86:9a:75:
95:85:30:72:51:7a:0d:d1:99:d7:c1:14:86:de:af:
f6:c4:34:ba:a5:66:74:92:90:90:15:af:6a:67:c4:
c3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:47:11:EA:08:CF:75:DC:4B:2F:77:57:90:95:E9:D5:91:23:A9:9C
X509v3 Authority Key Identifier:
keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b1:b2:f6:45:d7:d1:8a:18:14:14:5d:6a:84:ab:3e:f4:b3:
2b:4e:39:62:41:d0:52:3e:db:ce:f2:7a:31:df:fd:df:54:b4:
73:cd:76:43:93:3b:a3:64:54:98:43:83:db:a8:d3:7e:49:e9:
d8:ab:11:01:04:a9:af:5c:2e:e0:89:ae:65:8e:df:78:17:f9:
31:11:92:39:6e:24:3a:71:ee:d8:e3:4b:23:a4:14:e0:b1:0c:
96:a0:28:7c:46:de:04:b6:0a:02:77:9f:d7:31:02:16:75:df:
ed:75:19:61:5f:93:ad:fd:9c:b8:6b:6c:7b:d5:ae:cf:f6:a0:
29:48:b0:85:80:cb:26:f6:4e:1a:30:6d:98:67:f2:e0:02:f0:
70:cd:bd:93:46:58:ec:d9:ef:6c:2c:ea:d7:23:72:d2:64:90:
a1:92:40:c5:05:8b:31:29:34:6b:6e:ba:b7:9f:0a:d1:f1:ca:
29:87:4b:27:58:1e:8c:b0:df:82:31:40:14:dc:46:6d:5d:22:
ea:06:1f:db:e9:06:b2:16:af:6b:ce:0b:41:72:f4:05:3b:f8:
6c:4d:7e:7f:37:b5:b8:04:17:dc:8b:fd:2e:c0:93:68:f3:bc:
83:5d:c5:78:b8:d1:fd:c6:5d:c6:3a:e4:7a:00:73:9c:a5:be:
db:da:65:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:28 2026 by rpki-client