
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
File: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json)
Hash identifier: BLruiOo1/TIYhNfrB1W0c2X4AKIiXtzwtIgLbytfMvE=
Subject key identifier: 5C:76:D4:3E:BC:A6:5C:47:AF:11:F4:FB:2E:DA:DF:F1:54:3A:0A:2E
Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7
Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7
Certificate serial: 0274
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
Manifest number: 0261
Signing time: Tue 07 Jul 2026 03:10:07 +0000
Manifest this update: Tue 07 Jul 2026 03:10:06 +0000
Manifest next update: Tue 14 Jul 2026 03:10:06 +0000
Files and hashes: 1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: tO50UX+WP2WVyVXqaQC3cQmcvKJbNEesTrPz9K/3juI=)
2: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: vqGdVaaDYf6gNLNH5VIBJ2NRjMzmVVMM9ASsA3cNz2A=)
3: 1333404E5A0D11EF8810E217C4F9AE02.roa (hash: 4mVa0DqBaCflYNU9bhCT5eYUo2wiGhZvFPJW9PpsrbY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl
rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 03:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 628 (0x274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7
Validity
Not Before: Jul 7 03:10:06 2026 GMT
Not After : Jul 14 03:10:06 2026 GMT
Subject: CN=6a4c6e0f-2405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:86:e1:3a:71:92:86:52:95:79:1b:71:ae:53:
9d:dd:49:ce:de:79:8f:05:f9:12:b1:92:d0:e3:0b:
3f:51:8a:9a:8c:bb:5d:c0:20:8f:b6:47:d3:1a:4a:
67:b4:10:3b:b0:8d:da:a4:63:f6:1e:d6:12:cc:43:
37:ab:30:6b:4b:c9:11:c6:ec:3c:00:d3:32:8b:bb:
31:cf:0c:ee:a5:aa:ec:55:84:6d:32:f2:c0:87:77:
af:a3:9f:7d:b9:92:fb:84:6c:7c:0d:90:5a:77:7d:
d1:35:21:59:51:99:3c:0b:a2:1c:32:fd:5a:84:48:
ff:d8:d2:9d:e6:cb:bc:b2:2f:21:cd:85:6d:a8:f8:
08:94:23:e0:63:7a:b7:8f:84:79:3c:bc:c2:58:52:
e3:6f:03:e8:33:93:13:1e:0b:9a:59:67:08:a8:62:
f0:64:fd:04:21:97:0c:ec:92:3a:74:f6:da:21:e1:
e3:fa:61:d9:29:0d:f8:ba:64:cd:fa:e9:89:31:d5:
f4:d5:1b:16:f4:eb:c6:8a:c7:aa:7e:75:6c:25:19:
7a:8c:24:3d:23:52:ae:11:0b:f2:c7:a5:d6:3a:67:
87:55:31:4e:13:6c:9e:ef:5c:74:5b:77:91:8f:94:
dd:38:eb:66:c4:dc:cc:7b:92:fd:99:14:f1:85:da:
e5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:76:D4:3E:BC:A6:5C:47:AF:11:F4:FB:2E:DA:DF:F1:54:3A:0A:2E
X509v3 Authority Key Identifier:
keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c9:8f:4f:3a:75:fa:a5:3e:fc:cd:b5:3f:20:00:6a:de:19:6a:
ea:75:06:45:f1:34:35:db:9a:ce:d3:87:bd:7c:9d:a1:bb:00:
92:ad:81:87:dc:ff:d2:b6:a9:50:b4:b0:83:a9:f8:55:ac:9a:
d4:b5:2d:2f:47:1c:40:35:4a:30:b3:52:9c:18:13:e4:bf:c7:
d8:51:dd:3e:68:5f:19:76:63:89:05:06:fc:d3:82:c3:a0:94:
d0:21:1a:37:b6:da:52:94:e7:39:4c:08:2d:f6:45:3e:c9:05:
96:6f:ca:29:31:eb:28:d0:d0:af:4c:16:80:35:b6:09:37:16:
58:06:de:f8:59:d9:f8:1a:cb:cf:75:57:da:f3:e6:01:f1:90:
a6:da:9b:cf:26:6c:06:7b:12:64:14:c1:f5:38:b4:79:e9:2c:
d8:a4:c8:9e:29:e0:b5:9c:06:e4:6d:d1:91:3d:cf:a8:4a:a4:
80:04:30:72:20:83:13:14:81:8e:59:45:1c:c0:6f:d8:93:c5:
44:3b:c0:9c:bc:fe:89:a2:bd:f7:b8:62:54:f3:b6:3f:53:73:
7b:00:98:3a:60:c4:48:09:c4:f9:38:87:09:85:b4:2c:39:26:
bc:d8:d4:0d:a2:bf:55:22:a1:fb:1d:9f:6c:3c:39:a9:b2:0d:
84:a0:a5:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:48:13 2026 by rpki-client