
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft
File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json)
Hash identifier: ROtmHjnNuYzrfIiey24cK3jQRhkoqw4LeqgfwGKAS7U=
Subject key identifier: D9:8F:31:36:B1:EC:EB:9B:11:70:F3:F3:CC:AD:60:91:81:30:C5:54
Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F
Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F
Certificate serial: 01C2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft
Manifest number: 01BB
Signing time: Fri 17 Jul 2026 04:57:53 +0000
Manifest this update: Fri 17 Jul 2026 04:57:53 +0000
Manifest next update: Fri 24 Jul 2026 04:57:53 +0000
Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: WgOUZyk00wrjyCqC2lXVFDOhxs537SUt5+S9Ohsa030=)
2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: iI90c0kPDEFqDSBJB4+1vqswCDOFhWHQNpb/y5cuaW8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl
rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:57:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 450 (0x1c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F
Validity
Not Before: Jul 17 04:57:53 2026 GMT
Not After : Jul 24 04:57:53 2026 GMT
Subject: CN=6a59b651-37da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c2:22:e2:82:35:02:2e:4f:11:62:95:ff:0e:
8a:ff:f0:a7:62:fe:58:bb:d0:df:17:c2:f6:a8:bb:
89:31:97:24:5b:1e:b4:e3:bc:30:aa:f7:c5:ee:cf:
2b:a5:db:75:79:16:d8:5f:df:b8:ad:a5:83:51:f6:
bb:09:ef:4b:6f:1a:f2:fe:38:1d:27:79:34:a2:ed:
7b:5c:d2:31:ac:9b:49:e9:92:1a:b0:bb:32:92:fe:
49:c2:b0:c0:1e:d5:c7:c7:90:90:4f:07:91:d4:55:
ca:c3:e9:77:b0:77:29:38:80:23:41:a3:b3:c9:29:
c6:bc:51:89:9e:44:ff:68:db:60:91:bb:c5:23:e2:
f2:ee:10:0c:2c:72:e4:f4:a1:e8:03:31:ff:4d:27:
13:64:ae:34:03:19:f0:ff:41:f7:54:be:5a:27:65:
1b:9e:d1:95:1d:c3:f8:ec:a0:dc:e2:fd:59:60:4f:
5a:89:ef:72:c4:c6:e5:ba:d8:4b:cd:e4:e8:34:dd:
17:b2:0d:e6:08:bd:2b:24:e6:dc:49:ab:a1:11:74:
b7:ae:fa:22:08:c4:50:3e:03:0b:1c:d8:56:bb:a8:
49:32:7f:8a:46:8d:91:3b:ef:d0:3f:07:46:18:8f:
e8:86:93:5e:af:2b:d4:27:c2:51:ba:60:da:be:ea:
4d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8F:31:36:B1:EC:EB:9B:11:70:F3:F3:CC:AD:60:91:81:30:C5:54
X509v3 Authority Key Identifier:
keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b2:f6:9f:34:86:34:34:12:3e:2a:f8:00:47:fc:41:17:0f:57:
5e:d5:59:87:fa:9d:b6:69:c2:89:cc:5a:f7:a0:ad:bc:f1:d6:
02:ad:cb:58:cb:25:99:be:81:f1:1a:a4:c6:6b:47:4e:4a:6d:
74:a8:95:d3:15:2c:2e:60:95:05:2a:7e:06:25:09:3c:57:88:
93:fa:d4:08:63:c4:31:6b:98:a9:ba:6c:d9:22:3f:12:6b:a2:
dc:3e:9d:2e:50:58:e3:3d:cf:ce:ec:2a:0b:e4:5f:49:1f:75:
3b:ce:a7:b9:c7:40:bc:cc:33:0d:cd:81:18:33:14:f3:29:be:
99:18:78:62:98:78:44:16:11:5d:df:2f:78:e4:73:85:5b:8d:
55:08:24:d7:41:6b:92:03:ee:67:ac:4b:ad:d2:63:51:19:62:
36:be:14:7b:4d:f0:83:1a:9a:7c:03:66:b1:04:d5:29:0b:20:
8c:27:26:3b:f4:4e:f5:04:69:23:7a:45:1d:f6:f2:80:f6:3a:
17:71:3c:1d:e2:a0:91:3e:00:39:01:69:bd:3f:ce:cd:76:2a:
fe:0a:f3:c2:42:37:dc:64:52:19:13:be:bc:98:5e:bf:a7:ad:
ae:18:88:36:1f:f3:ad:78:af:86:19:3a:cc:0e:10:e8:c7:32:
2c:d3:3e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:38 2026 by rpki-client