
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json)
Hash identifier: rbr/rKvRlnc7hJyk2rWq4tz87Iuiy5zD/gVfn7xaQP4=
Subject key identifier: 26:77:67:51:9C:B2:AA:24:D8:31:79:77:89:58:72:7A:70:5E:BF:A5
Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209
Certificate serial: 0241
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
Manifest number: 0227
Signing time: Sun 05 Jul 2026 03:20:00 +0000
Manifest this update: Sun 05 Jul 2026 03:19:59 +0000
Manifest next update: Sun 12 Jul 2026 03:19:59 +0000
Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: tifLRhTTimifrZ5HlVbWLSEtZTUqYvDEthegR+KscOQ=)
2: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: +ktnd6zho24yZwUVIDb8JpM0wNDX8OLmDRgr8JefA9c=)
3: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: G4c9qIHjh7jRuzT8uRtPVyKbehGwTJD3pzh2RMSA5FQ=)
4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: /Ca02zsxpAL8gcjil39VFFafzNLGZS+o8ZdBBpzgYJE=)
5: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: kQlooTOYF7DNmDZKuzweY7EEd5/y9UZLGCRSSGQFlGE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl
rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 03:19:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 577 (0x241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C74B5, serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209
Validity
Not Before: Jul 5 03:19:59 2026 GMT
Not After : Jul 12 03:19:59 2026 GMT
Subject: CN=6a49cd60-ffd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9d:44:70:82:37:fa:11:69:ea:93:e2:09:87:
5e:c6:6a:2e:82:ff:f8:2c:fd:0a:71:04:86:dd:64:
d1:53:cc:7e:48:bd:4c:f3:e7:bb:a6:74:5a:91:0c:
b4:95:fe:23:c0:45:03:42:2f:d6:05:aa:86:c2:c7:
cb:c7:d0:23:e8:3c:dd:8f:bb:8f:7b:5b:95:7c:26:
e3:91:47:43:69:0d:94:79:3d:86:de:ac:70:11:3f:
88:cf:c5:20:3f:e4:28:c2:05:d4:69:df:37:9c:96:
c8:1b:e0:d5:f6:ab:0c:08:1e:b8:71:75:c6:94:9e:
e5:9a:01:7f:8f:b7:61:b3:f8:3a:3b:6c:cc:e3:08:
8b:e0:93:23:46:ae:b3:88:1f:1c:0c:28:56:b4:4c:
e5:57:7b:3b:21:a0:9e:df:07:ab:48:2a:6d:4d:f3:
34:0a:f6:82:b6:06:76:d9:da:75:7b:01:4f:64:84:
c6:11:16:6e:c6:93:da:74:99:c9:75:3a:98:5d:d6:
69:9f:22:1e:1b:64:09:d4:0c:3d:8f:57:2b:55:a3:
56:3f:cb:e8:67:8f:df:8f:e9:e9:26:19:e6:4e:19:
87:9d:77:bf:29:8c:0a:8c:d1:2a:5c:b1:32:ed:63:
1c:44:85:be:70:ed:52:5e:b7:63:68:89:38:83:7a:
39:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:77:67:51:9C:B2:AA:24:D8:31:79:77:89:58:72:7A:70:5E:BF:A5
X509v3 Authority Key Identifier:
keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:7a:84:11:91:f2:8c:55:f3:04:2c:20:7a:f0:fe:07:5d:86:
0f:ec:68:60:49:5e:46:1e:23:85:e4:88:55:17:0d:b5:49:4a:
2f:7c:32:15:08:43:2d:b1:8c:51:04:68:d7:c9:ea:10:6b:d0:
08:d8:d2:49:dc:a4:ee:c0:08:f9:50:53:de:f1:c7:03:7e:9e:
69:c9:33:3a:ea:4d:00:3c:84:62:c5:d1:db:4d:3f:4f:77:b7:
65:94:a6:4f:df:a1:00:ab:57:9f:24:72:c2:11:18:28:6a:f2:
80:07:12:43:59:c1:26:14:2b:b2:0e:c0:e8:3f:34:10:9c:e0:
5d:76:a2:d3:dc:14:7e:78:ad:8b:2e:d7:a3:56:0f:eb:b4:0e:
32:73:c8:d4:80:8f:f7:99:ff:12:ae:53:16:40:28:29:5c:26:
d9:7e:c5:09:e0:41:68:81:35:cd:45:e9:c7:f0:d6:e3:de:ff:
0e:7c:16:fc:2c:03:7a:d1:a8:e9:2d:8b:19:d4:cf:2b:7a:d3:
6b:11:63:89:06:71:b6:68:b4:e1:6c:22:9e:ff:89:b5:83:32:
90:8d:a7:63:ed:4c:31:c5:ed:83:03:a7:f0:18:03:d2:f5:87:
b2:f4:dc:f7:a1:8e:bc:29:32:d5:6a:d3:f4:b4:a0:99:0f:75:
0f:6c:c5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:44 2026 by rpki-client