
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
File: bhQyTH_rm8iZLUocPkWehqPxjuE.mft (raw, json)
Hash identifier: r2pRN6bokEAuI4/dElYMH6Xes5C5DiMDGn/tImYSRlA=
Subject key identifier: E3:72:2F:B3:AC:02:C2:92:6D:34:4C:3C:6B:6B:FA:CD:62:C0:6F:D1
Authority key identifier: 6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1
Certificate issuer: /CN=A91CDC08/serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1
Certificate serial: 53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
Manifest number: 51
Signing time: Sun 05 Jul 2026 09:00:54 +0000
Manifest this update: Sun 05 Jul 2026 09:00:54 +0000
Manifest next update: Sun 12 Jul 2026 09:00:54 +0000
Files and hashes: 1: bhQyTH_rm8iZLUocPkWehqPxjuE.crl (hash: 5NEhkiiEgFMHlqosmKkK9bn8EIkDCJcPSa3vZauDnXY=)
2: 2508F7B8001611F18F2C9137416F56BC.roa (hash: kk4e8+otr3vEuo88eNfz1XFH7SDaG9Z2aCSEpZsnIgI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl
rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 09:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83 (0x53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CDC08, serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1
Validity
Not Before: Jul 5 09:00:54 2026 GMT
Not After : Jul 12 09:00:54 2026 GMT
Subject: CN=6a4a1d46-81ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:70:c5:7d:4b:13:89:5d:47:56:36:fb:9c:6f:
1e:c7:4b:d3:d5:67:29:49:93:ff:eb:a3:00:45:ff:
7b:f0:86:5e:9a:ea:a7:d9:f0:0c:d1:e1:75:cd:bc:
cd:cd:16:37:7a:51:ba:9a:03:e2:70:8f:2e:20:22:
ba:63:96:b3:00:14:7f:80:dc:79:bd:64:ba:ec:31:
22:a9:ac:21:34:ac:41:5e:66:1d:7f:45:c8:3f:be:
69:5a:f6:72:7b:bd:71:f1:b7:cf:62:85:1c:b6:1e:
5f:49:e3:63:78:79:ff:e4:77:d3:64:19:f3:50:52:
6c:7a:65:ac:67:1b:bf:9f:42:9e:0e:4c:08:3e:71:
d0:06:be:cb:0c:8d:ce:32:09:ec:bc:be:29:b2:9a:
b0:5d:23:07:89:eb:60:49:d2:47:83:24:7b:e3:5c:
c0:33:cd:2c:57:9b:5a:80:3b:80:ea:c8:c7:6d:42:
21:d7:0d:35:18:d1:82:79:14:55:bf:34:47:ae:89:
0a:4f:6a:14:fa:2a:44:cf:9f:8b:bc:8c:67:55:b7:
32:7e:16:fa:ec:f3:ba:11:c9:4a:9d:f5:0a:16:63:
60:f7:f1:7c:1a:d1:32:90:92:74:de:64:7a:0a:0d:
f1:29:48:79:89:af:3e:a5:ba:ed:fc:e8:71:73:64:
0d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:72:2F:B3:AC:02:C2:92:6D:34:4C:3C:6B:6B:FA:CD:62:C0:6F:D1
X509v3 Authority Key Identifier:
keyid:6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:b3:ba:2f:e6:aa:a0:4b:cd:d1:72:66:02:af:5f:6b:f7:9e:
67:dd:5e:73:02:91:27:11:0c:2b:39:35:28:d6:05:50:0d:04:
54:6d:9a:99:73:22:0b:35:a3:78:89:59:78:6e:9d:e4:67:89:
7f:20:7e:5d:48:d1:44:32:39:1e:9a:ed:aa:15:43:29:86:d2:
66:e0:4f:e8:0e:87:9f:f6:5c:10:76:20:a3:a8:fb:0f:34:25:
39:cc:13:72:5c:6a:52:85:d6:46:ac:49:f9:5c:db:9c:4e:58:
fe:e8:47:71:ca:3f:5d:eb:a0:cf:5d:61:22:f4:1f:bb:68:6c:
3a:a2:54:95:d9:40:95:c2:a3:d5:48:e4:e3:20:75:e4:d1:df:
74:98:78:6d:d0:42:00:19:13:1c:35:bc:f9:36:a4:53:65:dd:
f4:8a:ee:c2:7d:39:8c:5a:dd:8d:c9:80:fc:dc:b3:1c:6d:b8:
f5:36:17:df:0b:97:ca:8d:ac:b1:a0:34:97:e9:cb:c1:d9:af:
e4:70:dd:ba:f2:0d:3b:9d:b8:26:cf:bf:6a:52:87:b1:58:31:
27:2b:8b:e6:44:40:ad:00:0e:ca:ca:22:ae:75:a8:73:4d:f6:
da:d4:b4:b2:b3:ec:80:ff:2c:23:30:08:78:74:3e:72:97:7e:
08:0b:14:a0
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD
REMwODExMC8GA1UEBRMoNkUxNDMyNEM3RkVCOUJDODk5MkQ0QTFDM0U0NTlFODZB
M0YxOEVFMTAeFw0yNjA3MDUwOTAwNTRaFw0yNjA3MTIwOTAwNTRaMBgxFjAUBgNV
BAMTDTZhNGExZDQ2LTgxYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDgcMV9SxOJXUdWNvucbx7HS9PVZylJk//rowBF/3vwhl6a6qfZ8AzR4XXNvM3N
Fjd6UbqaA+Jwjy4gIrpjlrMAFH+A3Hm9ZLrsMSKprCE0rEFeZh1/Rcg/vmla9nJ7
vXHxt89ihRy2Hl9J42N4ef/kd9NkGfNQUmx6ZaxnG7+fQp4OTAg+cdAGvssMjc4y
Cey8vimymrBdIweJ62BJ0keDJHvjXMAzzSxXm1qAO4DqyMdtQiHXDTUY0YJ5FFW/
NEeuiQpPahT6KkTPn4u8jGdVtzJ+Fvrs87oRyUqd9QoWY2D38Xwa0TKQknTeZHoK
DfEpSHmJrz6luu386HFzZA37AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU43Ivs6wC
wpJtNEw8a2v6zWLAb9EwHwYDVR0jBBgwFoAUbhQyTH/rm8iZLUocPkWehqPxjuEw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQzA4L0YzRTY1N0ZDMDAx
NTExRjE5NUQ1OEFENDQwNkY1NkJDL2JoUXlUSF9ybThpWkxVb2NQa1dlaHFQeGp1
RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvYmhReVRIX3JtOGlaTFVvY1BrV2VocVB4anVFLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE
QzA4L0YzRTY1N0ZDMDAxNTExRjE5NUQ1OEFENDQwNkY1NkJDL2JoUXlUSF9ybThp
WkxVb2NQa1dlaHFQeGp1RS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQAds7ov5qqgS83RcmYCr19r955n3V5zApEnEQwrOTUo1gVQDQRUbZqZcyILNaN4
iVl4bp3kZ4l/IH5dSNFEMjkemu2qFUMphtJm4E/oDoef9lwQdiCjqPsPNCU5zBNy
XGpShdZGrEn5XNucTlj+6Edxyj9d66DPXWEi9B+7aGw6olSV2UCVwqPVSOTjIHXk
0d90mHht0EIAGRMcNbz5NqRTZd30iu7CfTmMWt2NyYD83LMcbbj1NhffC5fKjayx
oDSX6cvB2a/kcN268g07nbgmz79qUoexWDEnK4vmRECtAA7KyiKudahzTfba1LSy
s+yA/ywjMAh4dD5yl34ICxSg
-----END CERTIFICATE-----
Generated at Sun Jul 5 13:49:28 2026 by rpki-client