
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json)
Hash identifier: V2G3cRgh8sZ2A9asfcinQ2rkUWUTeyoYuejrVgj6MK8=
Subject key identifier: A6:E7:AA:D9:D4:83:82:F5:09:07:9A:5C:B4:C2:D7:2D:CE:E7:3D:B5
Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E
Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E
Certificate serial: 01E0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
Manifest number: 01DB
Signing time: Thu 16 Jul 2026 14:53:35 +0000
Manifest this update: Thu 16 Jul 2026 14:53:34 +0000
Manifest next update: Thu 23 Jul 2026 14:53:34 +0000
Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: JzjBGzQX28TYImLzM/HzO/wYiy7xtFh+31X792DRGqE=)
2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: QreKN0Rd5UfNyWwEd5SMYjaTfZ6J0wKhOlda79WX3co=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl
rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 14:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480 (0x1e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E
Validity
Not Before: Jul 16 14:53:34 2026 GMT
Not After : Jul 23 14:53:34 2026 GMT
Subject: CN=6a58f06f-d936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0c:c3:96:44:62:b6:67:4e:1b:38:7c:9b:49:
b8:13:8c:c7:d7:a0:4a:55:f4:a8:5b:76:95:76:b2:
f3:d1:05:ed:cb:fe:85:03:c7:e7:b5:3f:db:81:1a:
cb:56:e2:08:72:b4:40:32:51:ca:e0:0f:ce:ec:90:
ed:fb:f4:8f:48:71:43:58:21:4b:80:5b:10:ae:6a:
95:dc:77:15:a5:5c:3f:5e:f8:70:52:d1:07:2b:af:
fc:55:00:e6:b5:fa:23:56:a4:fc:67:98:13:24:78:
4b:3b:91:d5:48:29:04:41:0f:2c:b1:81:75:7e:8a:
01:6c:b6:64:db:70:05:3c:7d:6b:16:b5:24:e6:41:
ed:9c:47:7c:4c:34:29:c6:04:64:77:cd:89:64:5c:
b7:d7:72:27:8d:58:b5:26:1e:bd:9e:ed:55:f7:24:
d7:8b:a9:e0:7b:11:90:d5:5e:be:a2:9c:89:d2:58:
ec:15:47:36:aa:67:43:66:d0:06:d4:a0:0d:66:6c:
2e:ed:47:91:1e:07:3a:b4:7d:d6:29:dd:b8:8c:20:
06:3c:02:4d:87:50:07:c5:1a:6b:5c:85:3e:50:be:
55:9d:b3:39:28:07:73:91:b3:4c:9e:87:59:78:08:
e6:a3:86:bb:10:42:eb:02:88:a7:b7:b1:b3:04:bd:
0c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E7:AA:D9:D4:83:82:F5:09:07:9A:5C:B4:C2:D7:2D:CE:E7:3D:B5
X509v3 Authority Key Identifier:
keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a4:ef:bf:27:29:fe:6c:2d:28:42:33:95:75:a3:a9:41:86:
05:d4:13:c9:a5:19:ea:34:f8:22:c9:8f:cf:bf:17:cb:1f:96:
1d:6e:a4:ea:17:fb:f4:c3:48:52:e6:94:ae:ff:42:0d:e2:1b:
55:75:5c:64:30:0a:1e:a7:b4:e6:bb:c6:3c:53:6c:72:0a:40:
50:3f:8a:e8:69:ad:c7:ea:f1:57:6d:67:14:20:9d:25:c2:14:
cd:8a:ea:3e:9c:81:5d:39:a5:4c:df:c6:05:98:2c:30:11:3f:
be:a0:4a:9a:bc:2c:c6:7a:92:73:fb:36:ba:89:6d:d0:8f:d7:
57:5c:bf:18:64:57:66:e8:8b:f4:44:d5:97:d1:19:cb:46:da:
9e:91:cc:d4:57:28:69:20:16:61:64:a0:b1:54:4a:d7:d8:0b:
ce:84:4a:68:3e:d9:02:32:9d:fd:91:82:a1:a7:86:e3:f8:f4:
bd:d1:d6:b0:46:0f:a4:fe:cd:b5:5d:de:eb:56:65:ee:c6:fa:
43:37:cc:f5:89:b2:49:82:af:12:c3:a0:89:4d:a0:47:2f:4e:
c7:5a:ef:34:d2:4e:4f:fb:1b:27:66:2b:bc:ca:f4:29:de:f4:
a8:9c:43:5b:b7:8b:dc:a9:5f:9e:fc:db:6c:df:93:fe:aa:d7:
01:80:2e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:21:03 2026 by rpki-client