
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft
File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json)
Hash identifier: B9R+98UNSss2Th4Dj8ZjKucrYomX7WBr1NB+BNYkuqY=
Subject key identifier: 59:39:A3:F2:7A:EB:79:E8:03:CB:A1:65:82:A7:6A:77:39:3F:9A:F5
Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F
Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F
Certificate serial: 024D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft
Manifest number: 0243
Signing time: Fri 17 Jul 2026 03:20:59 +0000
Manifest this update: Fri 17 Jul 2026 03:20:59 +0000
Manifest next update: Fri 24 Jul 2026 03:20:59 +0000
Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: HfcSSg7b1Cj2e+Cm+xRvY9jctwZrgWZovboydSRQhAk=)
2: 275245323AB511F0AE5E5919C4F9AE02.roa (hash: k50pyswPVAJjF83tcl2ttbv+lV78Nbi1RduGBQNNES0=)
3: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: HkA6U1wFsTKTzUQHdDn6LGozzBTZRy33eQX4h5sxnuY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl
rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:20:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 589 (0x24d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD7A4, serialNumber=B5297065556D2B22934935E7520722BD5333DA4F
Validity
Not Before: Jul 17 03:20:59 2026 GMT
Not After : Jul 24 03:20:59 2026 GMT
Subject: CN=6a599f9b-d4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8a:61:0e:9d:41:fb:60:02:b8:7b:b9:3c:f7:
41:7d:b9:03:8e:30:fc:31:65:b4:d2:53:36:da:95:
11:5f:a8:01:88:9f:31:ac:e6:a7:9a:99:09:51:e6:
af:bb:d4:e6:7e:92:e6:fb:9d:cf:cd:ca:df:52:1c:
71:a7:c3:0a:55:01:2d:c5:57:81:87:da:bb:a2:50:
7b:43:43:ef:a4:11:27:99:6e:c8:b1:f2:e4:ac:2f:
46:1a:ef:92:5d:a4:33:98:c5:e4:c6:b2:34:7c:c0:
81:45:a2:71:ba:1c:2a:14:b9:20:85:a2:18:8d:1e:
b8:3c:9d:94:7d:63:c9:ba:a3:16:68:9a:5d:98:4e:
1c:74:b1:21:bb:55:70:33:62:7c:7d:fd:01:0d:a2:
6b:c3:48:b0:9a:a1:d5:46:44:19:fd:97:8c:a4:9f:
c4:cd:fc:67:32:83:60:c3:c7:86:6b:8d:4d:42:d7:
77:0d:b3:e2:ad:89:32:93:77:56:29:a8:39:7b:9b:
6f:e0:f9:7d:ad:f3:60:96:99:32:98:91:4e:23:26:
2a:8d:8b:fd:79:e6:0c:64:1f:8a:e5:0f:53:8e:cf:
81:16:a3:8d:ca:af:df:bd:32:02:23:49:3f:f4:c4:
61:94:a7:37:18:fb:28:81:73:2b:0d:c9:b1:38:42:
9c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:39:A3:F2:7A:EB:79:E8:03:CB:A1:65:82:A7:6A:77:39:3F:9A:F5
X509v3 Authority Key Identifier:
keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9d:b3:ed:90:85:b6:58:be:76:6d:67:4a:ac:06:b7:f5:e5:15:
9d:f9:01:3d:ed:78:66:ea:d7:be:cb:8e:31:20:0d:a7:fb:a0:
c2:e4:39:74:c1:97:d9:21:9a:49:3b:9a:0f:1f:26:d1:ec:c6:
da:ef:9d:b6:c7:42:a7:2a:50:5b:07:73:71:9f:6f:64:5e:63:
95:d2:7c:c8:9f:d0:98:ff:76:00:df:4d:dc:97:c0:0c:d9:a6:
c6:7b:b6:69:fe:11:1d:88:46:85:76:78:21:10:fa:7f:e8:14:
69:55:2e:7f:ae:0b:e6:6f:f5:13:ea:25:40:5a:0d:b9:21:68:
40:03:93:23:9d:1e:3c:4c:9b:52:54:5a:31:79:9c:bc:5d:67:
3d:0b:b8:34:bc:30:e1:3f:80:18:09:39:98:b7:ae:ea:fb:ab:
d8:d2:30:9c:a7:0d:48:83:4e:a1:82:b1:bf:7a:b3:74:bf:35:
ea:88:4f:b8:3e:d7:dd:b3:d9:86:82:01:e6:b0:48:a7:89:c8:
b4:1c:59:aa:f7:a3:1f:d9:b6:d6:ca:44:7b:46:28:fe:79:86:
51:3e:09:33:ea:55:6d:9e:c8:ca:8f:fb:b4:dc:fa:0e:1e:86:
fd:39:36:dd:9e:4f:7b:6a:c2:ec:92:f7:40:e5:56:f1:d2:f9:
a9:bf:d3:ef
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE
NTMzM0RBNEYwHhcNMjYwNzE3MDMyMDU5WhcNMjYwNzI0MDMyMDU5WjAYMRYwFAYD
VQQDEw02YTU5OWY5Yi1kNGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyophDp1B+2ACuHu5PPdBfbkDjjD8MWW00lM22pURX6gBiJ8xrOanmpkJUeav
u9TmfpLm+53PzcrfUhxxp8MKVQEtxVeBh9q7olB7Q0PvpBEnmW7IsfLkrC9GGu+S
XaQzmMXkxrI0fMCBRaJxuhwqFLkghaIYjR64PJ2UfWPJuqMWaJpdmE4cdLEhu1Vw
M2J8ff0BDaJrw0iwmqHVRkQZ/ZeMpJ/EzfxnMoNgw8eGa41NQtd3DbPirYkyk3dW
Kag5e5tv4Pl9rfNglpkymJFOIyYqjYv9eeYMZB+K5Q9Tjs+BFqONyq/fvTICI0k/
9MRhlKc3GPsogXMrDcmxOEKc0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFk5o/J6
63noA8uhZYKnanc5P5r1MB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx
ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy
azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5
S1RTVFhuVWdjaXZWTXoyazgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAnbPtkIW2WL52bWdKrAa39eUVnfkBPe14ZurXvsuOMSANp/ugwuQ5dMGX2SGa
STuaDx8m0ezG2u+dtsdCpypQWwdzcZ9vZF5jldJ8yJ/QmP92AN9N3JfADNmmxnu2
af4RHYhGhXZ4IRD6f+gUaVUuf64L5m/1E+olQFoNuSFoQAOTI50ePEybUlRaMXmc
vF1nPQu4NLww4T+AGAk5mLeu6vur2NIwnKcNSINOoYKxv3qzdL816ohPuD7X3bPZ
hoIB5rBIp4nItBxZqvejH9m21spEe0Yo/nmGUT4JM+pVbZ7Iyo/7tNz6Dh6G/Tk2
3Z5Pe2rC7JL3QOVW8dL5qb/T7w==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:22:00 2026 by rpki-client