
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json)
Hash identifier: HTmps+9bL5XX8OgsF+1K08fbsmST1ItKIdBl6n7X6Xg=
Subject key identifier: DB:59:6D:5E:8B:94:38:AA:E8:82:C2:F9:C8:E8:0B:EB:41:2A:44:96
Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA
Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA
Certificate serial: 0803
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
Manifest number: 07D0
Signing time: Wed 08 Jul 2026 22:22:56 +0000
Manifest this update: Wed 08 Jul 2026 22:22:56 +0000
Manifest next update: Wed 15 Jul 2026 22:22:56 +0000
Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: 3UHv/cpSU2aLwdhXOImmdR0bSNfpcu9UBBiO2cK3cws=)
2: F3BEC03CE13B11F090F650ED6F6F56BC.roa (hash: 73pAfLSC8B0XWc6KcAo6RSi0u4KosXge+3h5CVJGLfw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl
rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 22:22:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2051 (0x803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA
Validity
Not Before: Jul 8 22:22:56 2026 GMT
Not After : Jul 15 22:22:56 2026 GMT
Subject: CN=6a4ecdc0-a810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ee:d1:3b:3c:59:93:bc:05:41:37:93:0f:ca:
60:c3:c2:6d:ce:f5:42:d6:38:53:93:26:6e:91:30:
08:fb:25:59:7f:62:58:17:89:26:97:f1:97:45:35:
1c:65:88:04:b7:07:7d:b9:6c:f4:1b:52:f5:10:46:
9e:5f:66:7e:9c:ed:6a:14:ea:0f:36:63:42:79:36:
d6:bd:a3:c9:13:9c:fa:45:52:58:74:c5:a6:6b:bc:
51:45:ce:fd:65:e8:fe:8c:be:60:9d:bd:98:71:ff:
28:a8:14:08:d7:fc:12:74:69:d5:94:ed:24:0d:c5:
b7:44:de:d1:a1:b2:6f:99:d0:e0:bf:52:23:59:c6:
48:52:37:58:3d:15:19:e0:f5:19:a7:a6:69:dc:35:
91:6d:05:f0:99:59:66:4e:e3:b5:36:d2:2a:58:2e:
68:01:55:39:c6:de:14:81:8a:41:70:49:f4:7b:ee:
09:95:2b:b3:22:51:cc:9c:c9:b3:c5:71:4c:b1:e1:
5c:0f:9c:6d:99:ab:36:95:e9:01:2a:6e:e3:d3:15:
89:c8:ba:00:f1:3e:c7:db:a1:06:c6:c7:01:32:50:
19:7a:7c:60:0f:18:62:6b:ab:ea:7d:c8:a6:bf:d4:
d0:31:13:0a:df:a5:2f:52:57:aa:f7:1a:1f:93:b0:
37:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:59:6D:5E:8B:94:38:AA:E8:82:C2:F9:C8:E8:0B:EB:41:2A:44:96
X509v3 Authority Key Identifier:
keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
40:5a:24:ba:40:bb:96:c1:1b:56:06:5b:c4:e9:80:7c:c4:6e:
c5:cc:a7:98:86:94:68:11:6a:73:8a:ac:8e:ae:25:2f:7d:a1:
8e:c0:c3:fc:22:4f:86:c6:b4:e1:12:0a:2e:22:79:96:bf:3d:
6f:81:64:7a:51:5a:80:80:2a:c0:e1:13:07:9b:08:50:35:c8:
5e:6d:25:ba:93:45:7f:e1:2c:3f:98:c6:4b:71:be:c5:37:06:
20:bc:26:6a:44:45:8b:14:a2:49:dd:13:f9:a1:7c:ad:23:4f:
5c:df:cd:27:26:bd:4f:ba:54:b8:0e:c3:21:be:11:fe:04:a8:
ff:02:f2:8d:6f:8c:68:44:4e:05:61:b6:d0:95:10:9a:4b:09:
32:4c:b2:06:d5:ed:e6:8c:f9:a1:08:15:3d:95:26:75:f6:6c:
fd:0c:d1:7c:44:43:48:96:70:8a:b6:72:09:a8:21:c3:bd:2f:
df:6c:73:bf:84:67:6d:ad:77:9a:54:8b:91:84:c7:fb:b3:ea:
5d:a9:d4:ae:6d:17:dd:3c:ed:e3:4a:4b:37:70:44:d6:e1:3c:
d8:d3:c0:60:06:d0:1d:f2:72:cb:60:2f:7d:4b:d3:f9:79:c4:
10:fa:f0:79:29:3b:c8:a1:67:86:5f:bd:a6:2e:5d:07:d7:3f:
04:b4:b3:52
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1
NTkxRjJEREEwHhcNMjYwNzA4MjIyMjU2WhcNMjYwNzE1MjIyMjU2WjAYMRYwFAYD
VQQDEw02YTRlY2RjMC1hODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5e7ROzxZk7wFQTeTD8pgw8JtzvVC1jhTkyZukTAI+yVZf2JYF4kml/GXRTUc
ZYgEtwd9uWz0G1L1EEaeX2Z+nO1qFOoPNmNCeTbWvaPJE5z6RVJYdMWma7xRRc79
Zej+jL5gnb2Ycf8oqBQI1/wSdGnVlO0kDcW3RN7RobJvmdDgv1IjWcZIUjdYPRUZ
4PUZp6Zp3DWRbQXwmVlmTuO1NtIqWC5oAVU5xt4UgYpBcEn0e+4JlSuzIlHMnMmz
xXFMseFcD5xtmas2lekBKm7j0xWJyLoA8T7H26EGxscBMlAZenxgDxhia6vqfcim
v9TQMRMK36UvUleq9xofk7A3lwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNtZbV6L
lDiq6ILC+cjoC+tBKkSWMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5
NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM
ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC
cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAQFokukC7lsEbVgZbxOmAfMRuxcynmIaUaBFqc4qsjq4lL32hjsDD/CJPhsa0
4RIKLiJ5lr89b4FkelFagIAqwOETB5sIUDXIXm0lupNFf+EsP5jGS3G+xTcGILwm
akRFixSiSd0T+aF8rSNPXN/NJya9T7pUuA7DIb4R/gSo/wLyjW+MaEROBWG20JUQ
mksJMkyyBtXt5oz5oQgVPZUmdfZs/QzRfERDSJZwirZyCaghw70v32xzv4Rnba13
mlSLkYTH+7PqXanUrm0X3Tzt40pLN3BE1uE82NPAYAbQHfJyy2AvfUvT+XnEEPrw
eSk7yKFnhl+9pi5dB9c/BLSzUg==
-----END CERTIFICATE-----
Generated at Thu Jul 9 07:32:48 2026 by rpki-client