
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json)
Hash identifier: Eheg/ze06C6STYutcuq3owr4Emw0yN4xmWt5VNbxVTI=
Subject key identifier: 2C:7D:6D:61:13:10:4A:17:10:F9:15:54:27:34:8A:0B:9B:87:5C:EA
Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8
Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8
Certificate serial: 0D16
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
Manifest number: 0D02
Signing time: Thu 16 Jul 2026 18:27:23 +0000
Manifest this update: Thu 16 Jul 2026 18:27:22 +0000
Manifest next update: Thu 23 Jul 2026 18:27:22 +0000
Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: AnsbjmgaQlRDNoc4X0nuKZ4hvf5s89LiimXuF0gGlwU=)
2: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: OtV6b8befwkPsOuYarHGh5SRZOjkzLz1qANk490i9b8=)
3: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: PLVzOLnz/S3yAyLEYTQXk6jeemE0Coa5Zb4ZLWaW+pE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl
rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3350 (0xd16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8
Validity
Not Before: Jul 16 18:27:22 2026 GMT
Not After : Jul 23 18:27:22 2026 GMT
Subject: CN=6a59228b-6464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6b:55:b1:f5:25:f5:11:19:a2:c0:12:3d:64:
3d:e2:7f:f4:3f:7e:a7:de:59:03:f1:01:09:fd:78:
de:33:fe:0e:1d:1f:39:2b:e3:db:31:20:4b:c6:5a:
c1:5f:9a:77:56:bb:ff:6f:c3:b8:a1:03:dd:b2:57:
5b:f3:66:ec:67:52:25:e2:23:82:79:d6:74:dd:90:
20:8c:28:83:c6:f9:8a:b1:ee:17:0f:87:2a:2d:d7:
5c:10:cb:ce:4e:a9:df:60:c6:0b:77:f3:05:4c:c8:
eb:a2:d8:92:08:3e:10:ee:17:30:e8:bc:e7:35:7c:
1f:d3:69:4f:f3:d6:2b:c7:17:98:49:79:4f:05:75:
db:d9:7a:2f:54:47:c8:95:88:71:f8:ae:91:5d:48:
91:96:00:5a:f5:0b:f7:f0:05:81:0b:99:5d:ba:d0:
47:8f:fa:d0:76:82:3b:2d:e3:84:b8:5e:6b:68:2d:
a9:2b:39:d6:78:b2:88:69:7e:c3:c0:cb:ae:f2:2f:
3c:eb:33:62:a1:c3:2f:ce:86:d4:79:c6:b0:72:57:
80:34:c1:0c:0c:12:10:be:44:ef:ee:b8:19:9d:37:
2b:13:c4:ff:e9:81:f0:8b:dd:95:22:20:48:fb:48:
8c:5c:2a:93:46:37:55:a5:df:0a:29:3c:2e:c1:88:
86:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7D:6D:61:13:10:4A:17:10:F9:15:54:27:34:8A:0B:9B:87:5C:EA
X509v3 Authority Key Identifier:
keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:bb:83:4d:09:fa:69:6b:f6:91:c2:4b:a5:5f:fd:1c:50:a6:
20:12:a4:85:39:d9:82:a9:68:e7:e9:b7:22:55:43:d6:fa:ac:
6c:64:5e:1d:6c:bd:b3:95:36:bb:7e:a1:47:83:1c:7b:b4:07:
40:9e:14:2c:04:e9:7f:27:fc:38:cd:37:4d:d4:63:aa:c0:1e:
61:63:44:19:d3:9c:b6:5a:42:82:2b:9f:73:99:3c:49:8a:1a:
1f:56:c7:24:9c:38:6d:4a:d8:61:de:81:7e:21:19:a0:8a:a7:
0f:db:db:d3:79:43:85:28:3c:e7:02:a2:5b:9e:4f:f3:75:dd:
a1:20:c6:e6:22:94:b5:17:3e:cf:a0:de:cb:1c:90:10:46:76:
6d:77:55:f0:74:83:42:8e:06:91:09:7a:6c:ce:16:15:68:d0:
0d:b4:8f:0f:9b:6f:58:cc:13:47:e0:ae:d1:c5:bb:90:86:4b:
e4:9e:17:b1:9e:bf:75:72:1a:22:e9:de:60:b8:8b:46:0e:46:
39:e5:06:c3:06:e5:2d:78:7d:a7:cf:c2:4f:2f:c6:80:43:da:
13:53:dd:6b:e9:11:7c:c0:b0:9f:86:be:31:70:a9:2e:c0:d6:
99:35:b3:01:c6:17:e5:e1:f9:36:9e:e0:9f:a9:04:46:30:7c:
86:42:33:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:15:44 2026 by rpki-client