
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json)
Hash identifier: 0268Vqoczl1Xga6ApaHOVEhBcCIPWstv6zIUd+GrjVk=
Subject key identifier: DB:10:26:AB:1E:46:95:11:26:01:34:4E:88:4A:6E:C0:95:F8:C8:75
Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Certificate serial: 0171
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
Manifest number: 016A
Signing time: Fri 17 Jul 2026 06:00:41 +0000
Manifest this update: Fri 17 Jul 2026 06:00:40 +0000
Manifest next update: Fri 24 Jul 2026 06:00:40 +0000
Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: qMrAHzwq7D2OwTpjM0PJzSG3KKm4tYbXlwFLA+qmcA8=)
2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: Qj2e8JFy3G1Ijnc1ybFXUNaXhlpo6NRhbWYoFliMA3w=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl
rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369 (0x171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Validity
Not Before: Jul 17 06:00:40 2026 GMT
Not After : Jul 24 06:00:40 2026 GMT
Subject: CN=6a59c509-dafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:58:c0:42:ce:ff:84:b8:b1:a9:1f:53:b1:f5:
3a:ba:cb:52:2f:bd:dc:ad:ac:f9:99:4b:74:9c:e9:
c8:3b:23:06:90:64:ef:b0:f3:97:db:a7:50:84:4c:
2f:ef:46:cf:c3:16:a6:0d:91:59:b1:3f:b6:eb:ee:
a4:f0:20:af:3c:d2:b7:c4:62:f0:27:88:27:b9:03:
69:86:37:5f:2d:ac:b8:a1:a3:71:b8:e3:19:1a:d6:
77:29:d1:50:33:1c:27:88:01:a7:bf:09:6d:20:0b:
19:74:54:02:6d:bd:31:07:dc:cb:21:f5:e4:83:3f:
a2:e9:0b:b4:bc:73:72:35:fc:1c:68:24:31:82:b2:
22:5b:e9:c9:c2:40:42:1a:52:bf:a2:aa:5f:f9:c5:
ab:a1:ba:7a:11:2b:5c:08:ed:24:6d:35:7b:0e:c5:
7a:33:57:34:2f:6a:66:26:d6:a5:42:ac:2c:2c:a4:
f7:8b:b2:50:30:11:36:dc:cf:b1:6b:30:fb:05:e6:
86:1b:2f:9a:bb:f9:d6:8a:02:e2:a5:a8:b0:c1:cd:
4e:1c:42:6b:ce:95:a6:dc:a0:7c:31:40:8e:ff:54:
b5:e1:a8:f1:78:66:30:56:2d:26:fc:6d:fe:6f:d1:
ef:78:81:a5:e6:4b:2f:ba:cb:55:ac:03:32:bd:c9:
1d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:10:26:AB:1E:46:95:11:26:01:34:4E:88:4A:6E:C0:95:F8:C8:75
X509v3 Authority Key Identifier:
keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:ed:4c:43:87:73:2c:ba:1b:27:bf:1e:70:eb:30:e7:78:8d:
ec:14:44:88:9a:a6:4f:d9:3a:92:85:90:71:fb:2f:27:54:40:
e3:ab:20:ef:bd:6f:9f:0d:9b:95:18:02:e6:89:fc:1d:66:db:
54:1e:5c:98:08:3f:5d:ed:91:48:7c:f6:1c:42:ec:c8:73:94:
4c:f6:f8:db:61:5e:d6:cc:56:73:56:6e:19:b3:95:b3:fa:6e:
ce:1f:8b:14:5e:09:dc:e3:03:83:c4:bf:15:b5:42:da:d5:84:
9e:6a:dd:1a:8e:76:e0:9a:88:ea:cf:ee:1f:77:45:a3:b0:82:
de:d8:d4:a6:d1:d3:21:7a:dc:8f:70:ad:fd:35:46:0e:9e:0f:
dd:cc:78:91:65:65:94:ca:40:e8:56:9d:83:20:d1:f4:db:cc:
d6:31:9e:07:1b:06:bf:e9:1f:2b:f4:8e:c1:ef:3b:3a:d8:9b:
64:fe:57:d7:f3:25:a2:cc:84:c8:a1:89:ae:e0:7e:c2:39:f5:
f8:bf:69:1a:8f:9d:08:0f:64:4a:6f:00:11:84:e7:db:e9:c9:
18:7f:35:54:c2:73:2d:38:3e:bb:03:21:01:c1:0a:3d:39:5f:
96:a7:cc:75:27:41:e1:1b:b1:8d:7f:94:7e:bc:2f:21:11:cd:
16:48:65:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:30:05 2026 by rpki-client