
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json)
Hash identifier: YT9IW8nylp8mt+Mce9/eySQkO7r+HONRfnQUrRv7p6E=
Subject key identifier: 04:BF:83:3E:6C:27:7D:E6:5E:59:83:15:5A:AD:07:9F:EC:D7:F3:21
Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8
Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8
Certificate serial: 03C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
Manifest number: 03C3
Signing time: Sun 05 Jul 2026 00:59:40 +0000
Manifest this update: Sun 05 Jul 2026 00:59:39 +0000
Manifest next update: Sun 12 Jul 2026 00:59:39 +0000
Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: Wu6yQEujlMjghHrnZxk5OnSrB+XHH6wnVHwGS52SrYQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl
rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:59:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 964 (0x3c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8
Validity
Not Before: Jul 5 00:59:39 2026 GMT
Not After : Jul 12 00:59:39 2026 GMT
Subject: CN=6a49ac7c-cf11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:da:19:70:ac:0e:22:c4:ce:ab:56:45:95:7e:
b3:e0:04:43:d8:92:5c:31:37:e9:4c:22:25:06:26:
69:58:8a:7f:0b:20:6a:25:5b:5f:77:8e:14:16:05:
ca:2c:f1:24:4f:be:cb:ec:11:07:33:fb:52:bd:97:
ae:36:88:98:51:96:3a:74:81:e8:42:4a:89:cf:c2:
03:ad:de:28:9e:1d:ea:c4:39:53:4e:74:c7:88:ce:
69:ee:54:60:92:83:4b:64:a2:af:e7:ba:8c:40:e5:
9b:cc:09:da:6a:67:c0:4e:37:87:40:d2:a6:4a:41:
1c:c1:48:79:a2:da:af:13:f8:50:df:8b:34:c7:3a:
92:88:2a:96:ba:98:89:52:44:15:48:bd:f8:85:e6:
e9:6e:5b:b6:ab:78:40:11:78:8e:d8:e8:5f:63:6b:
45:9e:83:03:43:20:db:a9:66:b0:40:72:7d:08:28:
a7:c4:ec:e8:b0:76:27:29:fa:c0:77:d5:a0:f9:aa:
26:b3:fb:48:13:67:00:4e:bf:16:4e:4c:e7:cb:2b:
61:7c:b7:59:89:79:c6:f3:c8:18:a8:08:85:97:64:
4a:c5:52:d4:21:64:b8:4c:95:d7:80:49:a1:96:f5:
50:0f:87:0f:38:72:3f:15:e4:a4:7a:49:56:c0:42:
02:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BF:83:3E:6C:27:7D:E6:5E:59:83:15:5A:AD:07:9F:EC:D7:F3:21
X509v3 Authority Key Identifier:
keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
18:cc:3e:6a:18:d7:0b:5a:69:bb:e3:d4:e8:0e:52:d4:28:8d:
e1:e7:91:fc:5b:e2:e1:b8:64:39:5d:ad:ea:9f:0a:bd:8c:2b:
d0:2c:db:28:c1:4b:75:08:31:74:fa:28:57:d3:75:84:41:8d:
4c:31:d9:5a:e4:85:b8:47:7c:f1:f1:03:b8:a5:dc:eb:ce:96:
6d:8f:90:c2:53:c1:e3:6c:67:c7:b1:18:92:f8:c1:f3:bf:03:
6c:e2:31:91:6c:80:c2:e1:4a:06:66:79:b1:d8:b5:a6:95:f4:
73:e3:a4:e3:ea:de:83:aa:36:2a:9a:ff:c7:71:f8:bb:60:47:
49:e3:5d:13:18:6d:0a:8d:88:cb:d4:e0:f3:3f:77:bf:a1:94:
72:2e:43:31:c2:4a:cf:74:60:3b:72:48:c5:f4:0b:ca:6d:7f:
b2:62:f9:85:0b:c8:f4:4a:b7:bd:20:bb:05:a8:ab:57:9c:85:
05:8b:87:c0:70:ee:f6:f1:46:49:d9:c7:63:e6:85:23:2b:68:
04:7c:9f:fb:a9:b9:91:d3:88:2b:9f:bf:fc:65:08:bb:be:16:
93:d8:da:89:3a:e2:da:4d:86:de:21:7f:f4:ea:ec:93:64:dd:
2f:fc:9b:4e:59:b2:23:cd:d8:de:e6:8c:42:c4:77:a4:68:ff:
de:c4:6a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:39 2026 by rpki-client