
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json)
Hash identifier: cnRK3N2E9k0GrrUvAcbfGvOjE26a9mZntXMIoCsVLE0=
Subject key identifier: 92:6B:1F:6E:FD:94:4D:AF:84:D9:70:3F:0D:34:83:86:6A:40:A7:A7
Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61
Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961
Certificate serial: 0173
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
Manifest number: 0161
Signing time: Fri 17 Jul 2026 06:18:11 +0000
Manifest this update: Fri 17 Jul 2026 06:18:10 +0000
Manifest next update: Fri 24 Jul 2026 06:18:10 +0000
Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: +qIMCUKLpvlBec7ap5R2DrceG4xx5vjD4njjRCHQ91M=)
2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: KOPGS6LMhund+vJdD6XHT18EgiJR1qKIzzUaEq9CH3Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl
rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 371 (0x173)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961
Validity
Not Before: Jul 17 06:18:10 2026 GMT
Not After : Jul 24 06:18:10 2026 GMT
Subject: CN=6a59c923-7eec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5a:c0:0f:bc:df:0a:af:60:bb:b0:c5:08:37:
9d:db:ef:cf:97:8c:1b:de:2c:e5:aa:b0:df:64:20:
68:2c:04:88:5f:20:20:f5:58:71:6d:6c:08:66:0b:
d9:62:f6:6c:cd:44:1a:36:57:79:f1:46:f1:28:6b:
6e:89:34:92:2c:4e:a8:24:26:73:7d:76:2c:2c:22:
56:66:28:d6:cc:93:73:64:16:f5:be:42:82:be:ce:
16:9b:22:8d:3d:79:51:86:e5:b6:cd:11:27:88:0d:
97:5f:1f:9c:b5:7d:94:84:ef:6b:a7:57:57:5e:2b:
bc:65:a7:e1:d1:1d:8a:8c:07:b4:89:4a:50:8e:f5:
bb:aa:f5:95:d8:a4:64:e5:3d:be:39:3c:07:8e:0e:
ca:6f:45:37:d2:ce:f7:9c:d1:f9:7d:f7:66:36:ae:
e5:88:0f:dd:01:50:cd:91:fd:6a:d5:00:4e:2b:db:
2b:b6:6d:dd:2a:54:01:8a:fe:78:ea:53:b2:91:f7:
37:70:05:2e:86:51:76:de:34:01:f1:32:71:e8:16:
99:f5:8f:29:1f:d8:67:0c:8e:8f:a0:5e:98:7f:bb:
33:7e:6e:50:94:d2:be:4b:f8:79:04:9a:7d:bc:0a:
3a:f1:6e:80:3d:31:83:02:a4:78:d2:fb:96:90:66:
33:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:6B:1F:6E:FD:94:4D:AF:84:D9:70:3F:0D:34:83:86:6A:40:A7:A7
X509v3 Authority Key Identifier:
keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:5a:9f:77:5b:81:a1:25:60:23:50:34:8f:67:14:23:d8:43:
70:1b:d7:9e:95:e6:9e:e1:6c:d5:4a:ed:02:9c:b7:86:a2:81:
da:db:6f:86:81:2d:8e:38:21:cc:fd:3e:0b:85:50:7a:18:0a:
8b:4d:42:fd:f8:88:a7:6b:bb:95:ed:b2:c3:ef:20:ac:e9:c6:
dd:a7:2e:a1:d2:c2:e7:f3:54:db:f9:45:e6:35:a5:de:e2:5d:
45:ec:4f:45:09:fe:f7:60:a0:5b:ed:2f:96:7a:35:2c:40:35:
c2:e6:4d:88:52:2c:e1:2c:54:07:44:29:9f:09:8c:5c:75:a8:
ed:c1:69:a8:d7:32:30:fe:fc:80:36:72:3b:73:15:5d:f1:01:
9b:06:04:56:23:ac:41:bb:9b:c4:9b:0f:55:03:d3:e0:1f:48:
7b:dd:3f:3c:1e:a9:28:16:cb:31:a1:c8:89:e4:7d:0c:ec:cf:
98:1a:75:8b:fc:10:c3:1a:5d:c9:48:61:67:91:6f:12:99:41:
67:26:d2:70:71:4c:6b:f1:aa:d8:72:9d:20:ec:a3:43:2f:60:
ff:7a:6c:d0:a3:d7:d0:80:cb:87:58:2f:fe:e8:58:08:9f:99:
45:c9:c2:9f:5b:95:af:3a:84:88:3a:08:74:b5:0c:1e:91:d2:
db:5b:9c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:11 2026 by rpki-client