
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json)
Hash identifier: nILmsNjbzXQ5Wltry1WbHZIZ88RRIy6VmbUOxRS8toc=
Subject key identifier: 92:03:EA:E4:5C:51:4B:75:A7:37:AD:0F:B0:3A:EF:69:EC:0E:C9:AD
Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF
Certificate serial: 0268
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
Manifest number: 0261
Signing time: Fri 03 Jul 2026 02:46:49 +0000
Manifest this update: Fri 03 Jul 2026 02:46:49 +0000
Manifest next update: Fri 10 Jul 2026 02:46:49 +0000
Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: nJy2n1cEt8Fy3VIVigze3JMpZcvH6VZXFRbUjnLb8kg=)
2: C9D1E34E3E6511F18329E1A9CD833773.roa (hash: YlAauxy525S9XOXs7fFMSeSVZDB92cfvJ9ujaExNVJk=)
3: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: ZHpMs5xnHyrmGG6brYvpkf6EbiaHiV+pUJ+wJWuD338=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl
rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 02:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 616 (0x268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF
Validity
Not Before: Jul 3 02:46:49 2026 GMT
Not After : Jul 10 02:46:49 2026 GMT
Subject: CN=6a472299-62f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4f:71:90:08:d3:f3:a4:83:08:72:1d:12:ba:
f0:5b:c5:eb:7a:09:ad:6a:6b:d5:e7:7f:97:69:a9:
6e:4d:f0:2a:b7:5a:6c:f0:a5:d8:e0:b8:04:70:95:
21:62:31:bb:ea:a3:6b:62:5a:46:44:e4:c7:6f:49:
89:32:bd:c3:64:20:be:ca:6d:b8:0a:67:f5:0e:02:
95:2b:b3:38:61:30:58:17:2c:76:5a:29:0f:72:0d:
75:1b:c3:1c:ab:96:7a:fa:56:fa:14:a3:f1:0d:f1:
7f:6a:13:89:94:de:a9:7a:cb:f4:77:5c:5b:27:42:
25:4a:57:81:94:7a:cc:de:46:fe:e7:7b:c1:5b:6c:
dc:f7:80:40:8a:58:ce:4c:3a:31:42:2c:11:d9:e3:
27:21:4b:c6:29:25:52:c5:e6:69:af:fe:13:7d:53:
7e:ab:86:49:55:f5:d1:eb:b5:fb:01:a1:0d:32:cf:
29:d5:1d:fb:f0:01:9a:09:01:47:4c:46:e6:3a:c1:
19:46:ef:c5:a9:88:88:b9:d6:3a:0d:7f:cb:24:3f:
8e:cd:1b:dd:88:e2:aa:62:c7:b0:52:c9:23:4f:5d:
8b:82:93:54:1d:8a:86:bf:67:12:51:b6:73:e1:b6:
bd:24:ea:06:1d:2d:65:fa:28:4f:7b:83:47:92:46:
9b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:03:EA:E4:5C:51:4B:75:A7:37:AD:0F:B0:3A:EF:69:EC:0E:C9:AD
X509v3 Authority Key Identifier:
keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
98:c8:42:43:77:e9:e7:88:27:35:26:46:27:94:79:b7:30:52:
ca:44:8e:ec:55:ee:f0:6a:41:e9:86:10:7d:32:af:d2:9b:27:
cc:54:ce:30:42:ea:b0:c9:41:21:f1:9c:b4:5c:c5:4d:83:d7:
75:a8:fb:b5:f8:7f:00:22:5e:47:78:3d:c9:1e:23:5f:01:0e:
bd:ce:23:1d:a7:8b:98:6a:88:59:9d:89:bd:c8:e8:c9:09:f6:
b8:80:9c:60:93:77:af:9e:ad:b6:99:9a:51:92:d5:24:0d:b9:
99:58:95:ca:1e:9b:78:ce:97:fb:95:fa:7b:03:81:2f:31:a9:
31:1f:65:e2:7d:0d:cd:f2:5d:83:b6:38:46:05:19:bf:29:47:
5b:f4:68:c7:5f:7d:0d:c8:0c:3e:82:fd:0f:87:8a:13:59:62:
3a:b8:da:3d:1d:19:43:fd:b6:e8:64:32:cd:a5:3f:84:86:18:
ba:f6:1d:c7:1e:18:d7:fc:55:02:1a:59:7f:53:f5:0a:e1:13:
7c:5c:4b:4b:cb:d5:7b:55:11:c9:48:38:ab:fe:f3:c3:46:db:
d0:f2:b8:e8:4e:26:96:d4:57:be:5f:31:a2:d6:7b:e9:da:c4:
9c:bc:50:2d:e2:2f:bf:81:83:40:2a:6f:0a:69:3b:18:9a:ff:
1d:1e:0f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 16:08:58 2026 by rpki-client