
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json)
Hash identifier: oMz4y8T6eKZVEnwJ1ZKX/RkpOZlfK55Kn7mP2CnOQLM=
Subject key identifier: A3:E1:79:EA:61:B1:02:65:15:F2:CF:D8:27:F9:E0:02:69:00:94:18
Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83
Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083
Certificate serial: 01D9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
Manifest number: 01BA
Signing time: Tue 07 Jul 2026 05:08:53 +0000
Manifest this update: Tue 07 Jul 2026 05:08:53 +0000
Manifest next update: Tue 14 Jul 2026 05:08:53 +0000
Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: gy5V8tliYKa0i6YpDD1G7+kshrixcM6dtuxR4c4IsXw=)
2: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: tZoqe0Wr8WxlyxJlU9JnoVv0Dbj1abCtUlpInyE8avA=)
3: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: NXPm9MxFlazPxhF1ZkfK5w9U7zw1CF9xskWoFgFi9BA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl
rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 05:08:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473 (0x1d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083
Validity
Not Before: Jul 7 05:08:53 2026 GMT
Not After : Jul 14 05:08:53 2026 GMT
Subject: CN=6a4c89e5-ea38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4b:c6:35:51:66:b9:4a:3f:64:07:b6:48:56:
5e:c1:a3:ba:38:75:fb:e5:7b:08:cf:db:0a:05:09:
42:3b:92:ac:66:71:a8:a4:db:55:a6:bf:d9:46:5c:
5e:6f:73:77:c2:5a:2d:6a:39:b1:ea:e2:ef:19:51:
46:e0:fb:f7:37:87:8d:ab:04:b5:86:93:04:b4:bf:
80:5a:42:ab:b4:b7:1a:76:b5:17:b4:71:f8:17:ff:
52:44:68:0b:29:4a:ff:02:2b:4a:09:64:19:24:37:
1f:a0:4a:f4:75:2d:25:11:41:6b:98:37:b0:43:07:
25:a8:38:6b:fe:b3:6d:32:33:56:58:ca:26:77:b0:
21:31:1a:e8:12:42:75:4d:30:09:ca:f3:15:27:23:
d7:25:45:88:98:02:e1:71:57:08:4b:a4:4a:31:8d:
dc:fd:7d:3a:18:a4:2f:5b:a2:29:be:52:ad:1c:2f:
d8:08:8d:8d:fc:0f:0a:c7:78:c4:96:d1:58:3b:ee:
bc:ce:97:8d:05:15:fd:9b:66:ba:b1:34:c9:2f:46:
37:68:ea:6f:53:cf:cc:01:57:ff:c6:46:64:24:78:
d2:f6:a3:2a:35:02:5b:94:06:ee:42:bb:67:c1:b3:
12:70:5e:19:31:ef:68:12:53:dc:ce:82:2a:a8:3e:
78:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:E1:79:EA:61:B1:02:65:15:F2:CF:D8:27:F9:E0:02:69:00:94:18
X509v3 Authority Key Identifier:
keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a1:71:22:3e:1a:32:6a:6f:14:35:8c:6f:c8:27:78:c9:51:0f:
93:3b:cd:ab:8d:fc:98:a6:ae:61:0a:8b:48:ef:fe:3d:34:0b:
94:33:db:17:17:77:84:b5:ba:d0:91:c5:7e:58:67:ac:00:d7:
65:6e:d1:be:0d:27:d4:d9:d2:7f:a1:a3:f8:ca:ea:22:ca:d0:
7f:17:1d:37:c0:f6:fd:9f:61:fb:82:65:19:67:d1:91:14:66:
d5:15:df:4a:55:59:72:af:31:32:f5:16:76:47:f8:06:bb:68:
3c:9e:36:ab:43:56:a5:c1:a9:bd:e0:c3:24:97:fd:65:a1:b6:
d8:f1:79:f3:8d:88:59:0d:35:97:83:1d:ed:76:ac:32:dc:ee:
2e:37:fe:e3:f7:2e:79:6c:d2:4a:6d:e0:04:8e:2a:4f:e6:f4:
52:44:f5:ee:a4:98:40:44:7c:90:84:d8:3e:dc:83:6d:23:9f:
a5:e2:e1:64:0f:e9:ae:f9:72:80:45:8e:69:81:d9:aa:90:c8:
53:07:4e:66:a2:f9:4d:17:b2:23:25:d4:55:b8:c4:8c:40:8e:
1e:4f:d2:63:10:bd:55:5a:b2:c7:19:da:7f:8f:bc:9c:f9:57:
42:5f:1e:df:8f:ed:04:a3:56:d9:d3:b7:90:0e:cc:df:5b:a5:
30:a9:aa:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 13:19:14 2026 by rpki-client