
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json)
Hash identifier: SibcxYxIili9YFJecH85FjPFJWQ8Zj1pv0wi+WWE818=
Subject key identifier: F1:A9:16:FF:5C:5D:37:6C:7C:63:48:FC:45:B6:A8:08:C3:92:8B:54
Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F
Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F
Certificate serial: 036B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
Manifest number: 035B
Signing time: Fri 17 Jul 2026 01:36:11 +0000
Manifest this update: Fri 17 Jul 2026 01:36:11 +0000
Manifest next update: Fri 24 Jul 2026 01:36:11 +0000
Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: E4z/yqXIw7/LhEyCYNMgif37E0JX7yGjJLZb4W53+Ss=)
2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: O3Ls+9YBYFMKkyDDzAoAnYOjitWoJ58mnyLKpWOVBLM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl
rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 875 (0x36b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F
Validity
Not Before: Jul 17 01:36:11 2026 GMT
Not After : Jul 24 01:36:11 2026 GMT
Subject: CN=6a59870b-34c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fc:86:02:a8:b1:51:5d:4e:54:51:bf:71:d3:
26:63:8b:1c:c3:c9:dd:a1:37:7d:72:77:db:c1:8f:
e3:07:18:d4:89:82:a8:66:84:89:31:11:6d:02:c9:
7c:94:c0:62:46:e9:a4:db:5d:75:da:ad:1c:7b:d4:
69:a8:df:a5:72:ab:df:d8:1a:49:a7:ae:42:1c:c9:
48:22:0b:22:0f:a4:41:80:79:a3:45:2a:3a:b1:e8:
fb:ad:ad:79:32:e0:af:9e:f4:d6:b2:a0:c2:c3:01:
dc:78:b5:28:60:73:ea:46:5d:82:47:0b:7a:50:8c:
40:ed:78:88:65:11:b8:48:f1:22:0e:16:4e:2c:48:
26:7a:8b:8d:0d:69:13:f0:08:9b:33:7f:97:73:b7:
cb:43:26:22:33:b0:7b:c7:75:bc:4b:0c:3d:f0:b5:
71:f9:e4:fc:37:c7:2e:1a:3a:d6:a6:7c:1a:7b:38:
81:c8:9f:7e:b5:f7:e5:f6:02:03:97:af:32:8e:bc:
1a:3b:ac:d6:97:ca:0e:9b:e7:43:69:f1:4d:2f:e1:
7f:73:98:98:c4:2b:20:d5:4c:ac:98:35:5d:d2:89:
3d:23:d1:85:d5:e8:ab:50:78:37:ed:fe:d5:6a:d8:
77:80:f0:e4:94:85:62:54:7d:23:ae:6c:cf:2b:5a:
9c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A9:16:FF:5C:5D:37:6C:7C:63:48:FC:45:B6:A8:08:C3:92:8B:54
X509v3 Authority Key Identifier:
keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
54:61:15:93:b8:46:78:7a:d4:34:82:73:37:14:c8:ee:70:d0:
c4:f6:c9:72:b1:36:ae:25:d3:e4:65:0c:d8:45:78:7f:49:94:
01:fa:0c:90:95:b9:e5:99:78:32:d9:a6:97:51:5e:02:1e:88:
f7:c4:52:e6:c1:3d:97:d4:03:e6:eb:4d:83:e3:3c:5e:28:47:
58:8e:4c:a9:55:41:f1:8c:61:f1:f3:36:1b:39:02:98:1e:4a:
74:9d:b3:92:3c:ae:5f:ec:66:24:3f:10:18:60:2c:d8:0f:f6:
3a:e3:ff:4f:30:54:81:d2:81:0a:23:2d:d3:33:7a:a5:7a:55:
9c:f2:08:b0:e1:e0:d2:3f:19:b8:92:ce:0d:a9:94:7d:d0:66:
cb:67:85:b3:84:cc:0a:3f:04:31:e8:65:ea:63:0e:10:3e:96:
5a:9d:40:4f:22:69:3b:17:6c:87:3b:48:66:47:47:20:91:b0:
8c:2f:f5:fb:34:94:8c:47:c7:8f:45:ea:c4:c3:e2:90:b4:5e:
7b:a5:eb:cb:43:f2:0f:d7:4d:ec:76:22:dd:b3:d6:de:78:b7:
9c:2b:3c:90:33:55:71:38:cb:01:b9:40:54:d3:a3:f4:2a:35:
61:e8:af:30:1e:22:d8:5d:c6:c5:d6:3b:e7:a9:a5:e4:9c:e6:
05:d9:28:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:36 2026 by rpki-client