
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json)
Hash identifier: Oacdl4V7Jqt4T3Do+mpxhXNc+KVv4baoo6IyRgONgHM=
Subject key identifier: B4:EC:1C:0A:E8:69:36:F0:9B:F3:78:7B:0B:39:3A:28:79:DE:94:F7
Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D
Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D
Certificate serial: 01A0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
Manifest number: 0195
Signing time: Fri 17 Jul 2026 05:24:28 +0000
Manifest this update: Fri 17 Jul 2026 05:24:27 +0000
Manifest next update: Fri 24 Jul 2026 05:24:27 +0000
Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: HgiysKhwcKJMOVsTDk53pfj/wZwVrBeoUDZhJ/kdFrc=)
2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: bs1Xgw6z8UHVdG8cs/XzlMBqu7GicIxeKJC8ZxwnNXc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl
rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:24:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416 (0x1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D
Validity
Not Before: Jul 17 05:24:27 2026 GMT
Not After : Jul 24 05:24:27 2026 GMT
Subject: CN=6a59bc8b-baf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c7:ef:a2:5a:2f:16:6c:e7:c6:25:c5:f5:95:
b5:d0:85:10:65:0a:52:d2:93:29:30:4a:bd:9b:76:
2b:af:fd:52:20:25:4f:04:0a:94:6d:93:ab:c2:de:
fa:71:b5:ea:46:86:27:ad:2b:d3:77:73:99:d1:5e:
2b:37:58:91:b2:59:48:3f:49:24:84:1c:ed:97:5f:
59:8e:74:f4:9f:df:b5:93:69:67:1b:a4:3e:52:69:
e7:77:3a:2d:b7:d3:cd:56:22:07:3b:1c:38:c3:c0:
cb:5d:d0:58:09:90:3a:d3:1d:d8:68:5d:57:40:5c:
67:fe:9f:78:ad:e8:32:b4:92:35:67:90:6e:5f:04:
dd:ff:fe:46:91:9e:9f:db:92:42:9d:56:7d:a1:fc:
04:5b:ed:e9:b7:7f:de:07:4f:1d:44:ce:94:fc:ef:
cf:83:81:39:80:91:e1:45:71:15:f8:6a:60:91:f5:
81:00:52:bd:dd:54:21:b6:dc:fd:cf:51:6f:88:84:
41:b0:e6:96:ab:17:46:80:d8:e3:be:2b:63:3e:df:
f4:27:34:1b:46:82:3d:1f:21:e6:3f:69:c0:ed:98:
ee:d8:f8:98:ff:7f:16:d1:57:8d:b1:6f:79:98:ff:
8c:2d:49:21:c2:42:e4:88:10:b2:99:f9:99:7a:21:
59:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EC:1C:0A:E8:69:36:F0:9B:F3:78:7B:0B:39:3A:28:79:DE:94:F7
X509v3 Authority Key Identifier:
keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
75:fe:4e:37:20:b2:89:98:2f:27:ee:f5:39:26:89:45:a3:e2:
3e:1c:2a:48:c8:c8:2e:84:98:a4:6c:b7:a1:69:cf:75:d5:57:
a0:9c:b1:f9:c6:f2:53:17:c7:51:48:2f:85:88:c5:5b:fb:62:
7e:63:cd:12:34:c0:19:02:1e:18:6e:40:d3:11:36:ff:9e:31:
3d:50:da:6e:4e:25:ea:ef:9b:c6:62:00:b5:17:4a:62:dd:8e:
00:28:61:48:58:95:c5:3d:18:9d:7c:32:f5:f8:51:c6:c6:6a:
d7:4f:e6:7e:50:d7:b0:bb:2a:47:de:b3:7c:09:b3:64:46:4a:
fa:dc:25:ff:79:20:22:20:5e:03:4e:1c:88:80:86:19:7d:6d:
ec:6d:d5:cf:3b:b0:c0:5a:e6:c1:fe:a2:ca:e2:e1:07:08:16:
3c:87:3e:41:e0:4f:aa:8d:47:4d:80:d7:68:ce:d5:56:ec:1d:
4e:9c:ae:f2:0a:79:12:50:a5:5d:d5:f8:de:f3:2c:ee:d7:2f:
68:ad:6d:0d:f6:b2:a9:fc:cb:95:47:54:8d:12:28:cf:bd:c4:
45:a3:94:d5:05:34:ff:d3:69:df:89:4e:4d:51:ab:33:85:33:
bf:bf:1f:98:d9:21:31:05:9a:dd:55:99:4d:cb:ef:2b:71:96:
89:3f:8b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:24 2026 by rpki-client