
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json)
Hash identifier: d8nIdAQ94Tc09qzbnwbv0PBUuLNKy0qOc4fhj/FZ3Cw=
Subject key identifier: DF:6A:E9:74:E0:FB:B3:2A:65:D9:40:CA:A8:51:1B:D7:DB:50:74:4C
Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4
Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4
Certificate serial: 031C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
Manifest number: 0315
Signing time: Fri 17 Jul 2026 01:49:24 +0000
Manifest this update: Fri 17 Jul 2026 01:49:24 +0000
Manifest next update: Fri 24 Jul 2026 01:49:24 +0000
Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: s8Xm0ATcQQgRlN6+phsNfzMZ8fz3zFvFUjqA3CQ65nw=)
2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: qOTgX26Zanjyv6Lj/0iXY/YLtNoeVOf7TQ8Rw4nq2og=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl
rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 796 (0x31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C95AA, serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4
Validity
Not Before: Jul 17 01:49:24 2026 GMT
Not After : Jul 24 01:49:24 2026 GMT
Subject: CN=6a598a24-3451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:73:65:92:eb:ad:bc:47:74:30:27:58:d7:b2:
77:c2:aa:11:ae:00:be:21:30:43:b3:e3:ee:ab:dd:
84:6d:76:1b:22:2b:20:69:c3:42:f7:61:bc:00:66:
2e:e3:7a:83:a0:32:b4:0c:49:d0:4b:70:38:18:f7:
c5:64:48:4c:51:43:1c:94:4a:8e:69:a1:ea:fe:58:
a5:d5:8f:3f:aa:24:6c:9c:4a:05:c4:d7:1b:2f:df:
63:1f:04:34:40:b4:11:90:0a:d4:a8:6e:f5:3c:d2:
80:0f:24:cc:9b:6b:33:8c:98:73:a6:96:66:93:f3:
c0:79:4e:30:7d:8b:98:86:33:1c:93:9d:6c:62:e5:
2c:68:4f:11:04:21:3e:fa:cd:05:71:42:6d:bc:73:
18:2e:e6:2b:73:1c:d4:cc:76:c9:96:24:ac:55:4d:
76:de:9a:1f:a8:f7:69:03:6c:69:ca:f8:dc:b1:83:
c4:8b:f8:2a:a1:cb:13:f9:18:f2:a8:47:72:fa:32:
64:b2:89:0a:e5:27:f7:59:7c:eb:f8:77:26:4a:3c:
6e:ad:ae:da:cd:12:cf:ee:03:e3:ed:73:1d:40:f5:
8c:04:f2:bd:1f:f1:35:db:35:36:10:72:17:0a:29:
5b:dc:d9:ac:19:32:de:1f:ab:09:3a:21:d8:c7:f7:
68:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:6A:E9:74:E0:FB:B3:2A:65:D9:40:CA:A8:51:1B:D7:DB:50:74:4C
X509v3 Authority Key Identifier:
keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
94:40:58:1c:7d:13:93:74:0c:29:e0:df:8e:d1:55:8c:21:b1:
75:03:cd:76:42:4f:c0:d2:7a:f9:fd:dd:12:35:de:0c:39:3b:
89:b3:c3:da:d4:22:9f:c0:89:a3:ad:73:1e:5f:57:c2:ac:43:
19:e8:02:5c:aa:63:e0:64:f2:62:49:5c:ff:ed:a1:be:4f:da:
bf:e6:3b:25:13:de:5a:00:6e:9c:51:c0:44:79:87:b5:fb:51:
85:6e:b0:4b:f0:f8:c9:65:a2:6c:66:a1:8d:44:80:0c:6f:ac:
8a:0d:9e:6e:c7:77:6f:2a:e7:29:86:33:d1:24:9a:7a:80:ff:
2b:2e:de:e4:54:19:fd:c9:9a:44:c8:e9:d3:75:5f:44:a1:51:
8f:a2:05:d7:b7:eb:35:db:0f:30:f7:a3:a5:f0:c6:75:44:7c:
e8:1b:84:9d:9a:00:ed:f6:6e:83:43:51:af:c0:46:be:ae:f2:
67:31:af:f6:71:e7:88:69:60:62:a9:62:79:f8:6d:1e:ee:b9:
23:49:da:3f:39:05:2d:4f:9e:e3:13:ba:7c:3e:b6:79:77:94:
96:e6:66:7c:bd:51:a3:e8:eb:62:74:7e:5d:9c:fb:41:4e:8e:
6c:5d:0e:9b:af:96:90:b6:9d:a1:a2:c6:7b:4c:28:b6:82:d2:
ab:ef:7e:55
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB
MTk5ODczRDQwHhcNMjYwNzE3MDE0OTI0WhcNMjYwNzI0MDE0OTI0WjAYMRYwFAYD
VQQDEw02YTU5OGEyNC0zNDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtXNlkuutvEd0MCdY17J3wqoRrgC+ITBDs+Puq92EbXYbIisgacNC92G8AGYu
43qDoDK0DEnQS3A4GPfFZEhMUUMclEqOaaHq/lil1Y8/qiRsnEoFxNcbL99jHwQ0
QLQRkArUqG71PNKADyTMm2szjJhzppZmk/PAeU4wfYuYhjMck51sYuUsaE8RBCE+
+s0FcUJtvHMYLuYrcxzUzHbJliSsVU123pofqPdpA2xpyvjcsYPEi/gqocsT+Rjy
qEdy+jJksokK5Sf3WXzr+HcmSjxura7azRLP7gPj7XMdQPWMBPK9H/E12zU2EHIX
Cilb3NmsGTLeH6sJOiHYx/dojQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN9q6XTg
+7MqZdlAyqhRG9fbUHRMMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0
MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj
OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx
dmxOaENhYXZtXy1obVljOVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAlEBYHH0Tk3QMKeDfjtFVjCGxdQPNdkJPwNJ6+f3dEjXeDDk7ibPD2tQin8CJ
o61zHl9XwqxDGegCXKpj4GTyYklc/+2hvk/av+Y7JRPeWgBunFHARHmHtftRhW6w
S/D4yWWibGahjUSADG+sig2ebsd3byrnKYYz0SSaeoD/Ky7e5FQZ/cmaRMjp03Vf
RKFRj6IF17frNdsPMPejpfDGdUR86BuEnZoA7fZug0NRr8BGvq7yZzGv9nHniGlg
YqliefhtHu65I0naPzkFLU+e4xO6fD62eXeUluZmfL1Ro+jrYnR+XZz7QU6ObF0O
m6+WkLadoaLGe0wotoLSq+9+VQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 05:32:03 2026 by rpki-client