
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json)
Hash identifier: MpyZ47eAQWNTh005LW2OBXz+EmUY4dN+1MRSxjN9IL0=
Subject key identifier: C6:8B:D7:D3:EC:E9:E6:C4:85:E5:95:99:69:74:F1:D5:F0:14:BC:61
Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32
Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32
Certificate serial: 01CA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
Manifest number: 01BF
Signing time: Sat 11 Jul 2026 04:46:08 +0000
Manifest this update: Sat 11 Jul 2026 04:46:08 +0000
Manifest next update: Sat 18 Jul 2026 04:46:08 +0000
Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: fxKY4Bf9FPZUc0RuIUDmbr5X/dzApY1ACu033Io99pM=)
2: 683E73BA664A11F183E2ACC07047A888.roa (hash: zzbifsuUJU8SyQGKEOYnqcaJexnydnzq2UEdFbkQNUI=)
3: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: 1AVC031hsrlcjlMHgOtfIB20iuFsoNxmwrDznlqN4TA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl
rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 04:46:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 458 (0x1ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32
Validity
Not Before: Jul 11 04:46:08 2026 GMT
Not After : Jul 18 04:46:08 2026 GMT
Subject: CN=6a51ca90-731a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:75:d8:00:fd:79:8f:ae:89:3a:aa:6e:f2:c3:
3d:24:69:10:b1:e3:1d:f3:9a:ba:b8:9a:34:1b:f0:
a2:5f:4f:fe:8f:ea:7a:64:bb:86:9b:2d:d0:5d:37:
7b:7e:80:aa:88:3a:b2:4b:b3:d7:7d:f3:d7:6d:82:
12:c2:e2:df:8e:f2:43:19:c9:76:8a:49:6b:fc:87:
19:a5:7a:a8:55:5b:5d:ea:c9:95:ee:bf:02:3c:6c:
6f:5f:31:2c:b3:78:92:26:4d:52:e7:8f:c0:e4:0a:
84:ec:4f:e7:c1:9f:38:88:5d:7e:d1:44:f0:c1:60:
45:df:9a:92:79:97:01:83:e4:12:6d:c6:54:d7:4e:
30:4f:8e:f0:2c:ab:d8:00:a6:cd:e8:32:6b:41:b8:
fb:b4:bb:45:37:60:17:95:ce:da:ce:45:31:34:96:
9f:47:c9:80:1b:3e:2d:ea:b1:b1:8b:ef:a4:39:c2:
cb:5c:c7:3d:62:a4:1e:12:09:24:0b:1c:61:25:0d:
78:49:60:8f:d0:c3:c7:f2:1e:3f:93:c9:c8:51:13:
11:bd:3c:71:01:64:be:b1:9c:2f:86:d6:22:fa:4b:
49:85:96:9a:c5:c3:f6:50:26:58:5f:d8:a7:8e:db:
e8:7d:55:91:ef:3b:2d:0e:d7:0c:d2:45:34:4f:c7:
b4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:8B:D7:D3:EC:E9:E6:C4:85:E5:95:99:69:74:F1:D5:F0:14:BC:61
X509v3 Authority Key Identifier:
keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3f:92:59:4b:98:99:1f:1d:9e:31:9c:44:22:28:2c:61:2e:ca:
1b:18:63:04:49:78:58:d6:b2:07:70:2a:cf:80:bd:68:16:f5:
88:0f:8b:a6:95:cf:a6:4a:f9:89:d1:0e:d5:32:6c:52:5c:e4:
8f:66:fa:e1:68:9f:ce:09:8d:99:1f:b9:80:ea:24:8f:e4:6e:
71:8d:a3:97:ab:60:7c:ee:9b:d2:3e:20:cf:9e:aa:eb:6f:4f:
f0:dc:40:7f:f6:55:df:f3:1c:0d:3c:73:b7:69:86:42:f4:c1:
1c:59:a0:c1:f5:61:1f:6f:ec:98:05:2d:0b:bc:8b:e8:4b:48:
ee:65:13:2e:01:14:28:bd:0c:45:3b:c0:15:4f:02:16:11:a3:
f8:32:16:21:09:35:82:3c:db:dc:36:17:68:1c:e4:b8:c8:a1:
26:90:5d:61:74:c5:ca:fe:0e:65:9e:43:ff:c0:07:b6:23:20:
f8:7d:68:55:13:f4:6d:52:9a:bd:fc:b9:20:79:d9:5f:78:cb:
bd:b6:0f:30:3a:ec:38:0f:ef:37:63:97:44:c7:a5:26:03:ca:
ca:ce:2f:48:c1:ab:8b:6c:5b:51:54:53:3e:0f:17:91:c7:40:
fe:db:3a:dc:a4:ba:d6:14:84:25:ef:48:e9:35:bf:38:53:da:
11:d8:4f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 17:16:41 2026 by rpki-client