
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft
File: T0h-_rfHeWiBVy2X1iVPot21qHw.mft (raw, json)
Hash identifier: AzklqSF54FN/YC6jCWislfVrHeDxo/hD5quWi4NhheM=
Subject key identifier: 96:79:2C:B1:B9:9F:D4:F4:33:8F:F4:82:39:2F:2D:4D:CC:AC:89:DF
Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C
Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C
Certificate serial: 53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft
Manifest number: 51
Signing time: Sun 05 Jul 2026 09:00:01 +0000
Manifest this update: Sun 05 Jul 2026 09:00:01 +0000
Manifest next update: Sun 12 Jul 2026 09:00:01 +0000
Files and hashes: 1: T0h-_rfHeWiBVy2X1iVPot21qHw.crl (hash: JWRiuSS+HyeR2gZ1UIRzkyxp8vBjEQtHw6otdXI9a8I=)
2: 9DD3FFC6001111F18C67D2A9406F56BC.roa (hash: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl
rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 09:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83 (0x53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C
Validity
Not Before: Jul 5 09:00:01 2026 GMT
Not After : Jul 12 09:00:01 2026 GMT
Subject: CN=6a4a1d11-3bd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9a:b5:c0:df:60:57:72:a8:84:98:ed:48:76:
f2:c3:25:8a:4d:17:f3:71:8a:93:7c:35:61:bd:bf:
63:01:44:d4:86:4e:2a:79:29:fc:80:86:1c:07:f7:
0c:00:12:29:cc:d5:88:c1:9f:c3:5c:1a:32:c8:3b:
fb:80:ae:ba:20:30:ca:62:d4:43:ce:ed:ad:ee:26:
fd:6d:e9:56:0e:40:4f:db:4d:ce:60:67:cf:86:49:
68:b8:5a:ba:83:d3:a5:fd:4e:c8:c1:a6:5f:ff:70:
c8:e0:4c:8d:34:66:4b:88:b6:9c:4c:c9:23:b9:de:
89:bf:b2:87:15:cf:fd:9a:e8:04:41:f0:1b:25:c8:
3f:86:74:a2:77:ea:11:77:49:f3:93:31:b2:b4:66:
d9:bd:57:6e:0b:ac:42:05:d1:a4:40:d0:c6:88:b7:
ac:9c:0d:46:fb:4f:32:f5:4a:d5:32:5d:9d:67:2e:
a9:af:2c:f4:c9:0b:fd:84:4d:13:aa:16:e6:d9:cc:
39:32:91:04:94:52:60:01:eb:a0:32:27:1c:29:c5:
26:f9:a3:13:2c:b5:48:32:9c:eb:ed:52:96:35:af:
45:6b:3a:79:78:d4:bb:bf:8e:4b:fd:53:99:14:76:
54:fa:78:37:6c:ef:e0:37:35:ea:e2:23:60:e3:1f:
dd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:79:2C:B1:B9:9F:D4:F4:33:8F:F4:82:39:2F:2D:4D:CC:AC:89:DF
X509v3 Authority Key Identifier:
keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
71:e6:5a:db:e1:c7:15:b9:8f:fd:49:bd:ee:48:ee:5b:b5:c8:
15:16:49:0f:6c:74:ad:a2:25:1b:1d:8c:97:9b:22:d9:bb:8b:
b4:f9:34:83:60:10:42:c4:23:84:16:d8:62:da:03:49:7d:6f:
2c:07:6e:cb:62:7c:15:e2:e7:64:ee:5d:61:ba:fb:23:e2:4e:
b2:0c:59:f9:35:87:a4:a1:b3:4d:a5:00:fb:80:22:66:dd:26:
7e:c0:94:86:43:e7:c6:eb:08:9f:5e:74:f7:47:e9:8f:a0:70:
32:58:49:37:a4:a5:94:83:f6:4a:8f:85:30:cd:46:c5:2e:1b:
d2:e9:b7:f6:9b:66:9f:a5:16:4d:11:df:50:7c:92:37:2c:35:
58:c8:eb:5f:d4:5c:16:bf:54:6f:5e:ff:9a:c6:d0:b9:c4:2e:
8a:06:56:7d:68:ad:37:6e:ed:73:a1:90:ba:a9:ee:ce:e4:5d:
20:79:d1:06:78:e0:41:ed:d4:ba:71:74:e7:6a:ed:7a:cb:c3:
54:d0:dd:2c:4f:bf:cc:1f:67:db:a8:84:d7:e5:ae:91:84:35:
a2:5f:d7:3a:08:f9:81:e3:d3:4d:e5:e6:7b:0d:cf:25:c8:31:
c1:11:c0:3a:72:52:4f:fc:eb:e6:0a:98:e5:ec:e8:88:d1:08:
6c:0d:94:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:35:47 2026 by rpki-client