
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
File: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft (raw, json)
Hash identifier: xmwoyufRnjQqSTM8q+YnSAv7McThhfLlzAQLrxDRd5o=
Subject key identifier: E1:70:3B:9C:65:FC:66:C8:3C:EE:AE:E8:F2:DF:17:97:87:01:AE:0A
Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A
Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A
Certificate serial: 010B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
Manifest number: 0102
Signing time: Fri 17 Jul 2026 07:25:10 +0000
Manifest this update: Fri 17 Jul 2026 07:25:09 +0000
Manifest next update: Fri 24 Jul 2026 07:25:09 +0000
Files and hashes: 1: Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl (hash: qT2E2tdSCgTr5dFuVu/VFxynu/fiU9OlbBItT2KcHxo=)
2: 992A7358004211F0AC90656CC4F9AE02.roa (hash: p1iNzs7m8iHrfQ8AnJhFGKvDY9F4t1QWaHIUzSsJTWE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl
rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:25:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267 (0x10b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C146D, serialNumber=664E59A000B91E72F803E6D86841154C8056B88A
Validity
Not Before: Jul 17 07:25:09 2026 GMT
Not After : Jul 24 07:25:09 2026 GMT
Subject: CN=6a59d8d6-52a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:29:11:a6:b1:1b:a5:25:f1:23:c2:e3:88:65:
f7:fd:67:8f:ae:22:1f:b9:73:75:43:0c:0f:39:9a:
57:19:30:31:a1:b2:be:00:f4:a6:3c:14:f2:5d:f1:
68:ad:6d:40:39:e9:fc:e8:0d:9c:3b:fe:5e:43:7e:
fe:9c:c6:73:04:e5:40:b9:98:44:5c:0a:7f:d9:3f:
14:11:a6:ff:5c:eb:89:0f:25:92:dd:79:b4:63:79:
4f:d0:b5:7e:8d:b8:40:cf:29:47:90:34:9e:b5:26:
c6:7e:5e:56:15:6c:ec:11:fa:18:25:8c:d3:d5:ce:
b4:26:c9:36:90:7a:0f:40:17:49:66:3c:42:0b:5c:
11:a8:cc:42:bd:37:83:3f:34:56:f7:fe:dc:b0:7f:
e3:32:52:f8:76:ba:eb:07:49:29:75:63:bb:69:86:
16:84:14:46:b4:74:e2:8b:34:c5:77:44:34:11:4e:
3c:62:ac:b7:71:8c:e4:6c:af:37:0d:74:6f:8a:f6:
8b:75:8f:1b:78:c9:db:df:1d:d2:2b:4e:8a:a5:6a:
5c:96:7e:87:d9:2f:f6:f3:e7:96:ca:e6:1b:38:6d:
de:a6:31:16:11:7b:a8:52:35:e8:c7:3c:2f:31:0f:
00:cf:7e:05:57:41:bd:8e:17:98:1f:c5:ac:e6:01:
f9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:70:3B:9C:65:FC:66:C8:3C:EE:AE:E8:F2:DF:17:97:87:01:AE:0A
X509v3 Authority Key Identifier:
keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1b:96:27:c3:3e:d9:07:f2:b6:40:13:5a:b2:df:2a:09:67:93:
15:a8:74:c2:15:42:84:0f:f6:09:bb:86:e9:89:14:59:2c:a1:
e0:c7:7b:6e:45:21:33:56:02:28:44:95:54:de:de:40:d8:29:
7a:a5:f0:33:c9:6c:ce:8c:31:5d:ac:31:60:c3:72:70:23:c0:
f2:86:c1:25:c8:b1:6b:84:f9:5a:1a:82:4a:8a:b7:70:a4:ee:
c4:7a:69:55:e6:8c:c4:f3:2f:a8:9d:f1:34:59:94:be:40:88:
40:b0:e6:e6:d2:73:12:f5:37:46:14:a6:af:1b:df:9c:60:b1:
21:30:ff:c9:3a:a1:fd:c5:7f:1c:3f:71:76:e0:34:7a:7c:4c:
0e:45:e0:55:ec:cc:d2:09:30:cf:aa:7d:0f:0a:01:10:74:f7:
64:a9:dc:5e:83:71:70:fd:cb:d1:f9:de:2f:ed:bc:d2:f1:5b:
b9:f0:cf:ef:da:f9:68:d7:d0:97:7e:56:ad:08:94:f6:2c:db:
6d:7a:8c:d4:48:a4:a9:e6:90:a2:00:5e:58:62:e9:8b:6a:82:
a0:d1:01:42:d0:b3:e3:ef:4f:c9:71:de:2e:93:ea:52:98:56:
51:52:66:4d:cb:c1:59:80:32:6f:c2:7c:26:7c:43:72:0d:56:
c2:e0:c8:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:09 2026 by rpki-client