
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft
File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json)
Hash identifier: 04GHkN5pZSOf54zi1FbGcvmJUiZVgAUl4FM/NuAM6fY=
Subject key identifier: C7:21:9E:B8:1D:D6:BE:D0:6B:AC:AC:AA:67:96:D5:DB:78:C0:13:8E
Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27
Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827
Certificate serial: 017F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft
Manifest number: 017A
Signing time: Fri 17 Jul 2026 05:44:58 +0000
Manifest this update: Fri 17 Jul 2026 05:44:58 +0000
Manifest next update: Fri 24 Jul 2026 05:44:58 +0000
Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: lo3raoco4EJRoYgTYqbPLUP+4roxa4QlvJkrvpu1paM=)
2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: RzM5XYHpAe7uWEPFy0Uicf76LJbJuN++zhp1wy8rKjI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl
rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:44:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383 (0x17f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CEE85, serialNumber=07244A994CDC4B938074711C4248D49F9D50D827
Validity
Not Before: Jul 17 05:44:58 2026 GMT
Not After : Jul 24 05:44:58 2026 GMT
Subject: CN=6a59c15a-a386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:25:82:52:4d:86:7e:ce:6d:25:ea:e1:b8:fc:
f7:c7:86:b0:be:66:2e:00:e7:85:0f:fd:cb:77:ed:
12:d1:1f:08:48:70:e9:71:79:28:8f:a7:cc:4a:0a:
eb:78:6f:1a:29:94:67:5f:55:0f:6c:f6:23:64:6d:
32:63:91:88:e0:ce:f7:f5:4e:dc:74:b6:de:5c:d0:
84:91:83:63:59:74:d5:9c:94:9b:89:d8:4d:29:71:
ad:18:0f:b5:33:c5:db:95:9e:00:ea:ac:a7:8c:b3:
b9:3c:87:79:91:8c:a5:e5:b3:09:21:76:6a:46:70:
a0:72:2a:a7:ab:12:de:6a:31:9e:90:75:ef:08:65:
d7:d4:d4:81:67:65:ad:59:5d:fc:2e:df:91:f9:66:
12:91:b3:a6:a0:59:9f:4d:6e:62:80:bb:98:14:5e:
31:35:61:c9:b3:a7:77:ef:8e:29:ed:5d:66:e4:29:
d6:3d:cd:c1:7a:89:a2:0a:3e:9c:03:c1:c6:a8:1f:
cb:76:22:2e:0e:92:99:76:43:e4:5d:98:7f:97:d5:
61:81:8e:44:61:78:cd:93:70:3b:99:ec:4a:37:c8:
08:0a:69:14:7c:08:49:4d:87:28:b7:ba:11:5c:bf:
cc:79:cb:cb:1e:07:98:b0:30:4c:52:c1:d1:29:6c:
1e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:21:9E:B8:1D:D6:BE:D0:6B:AC:AC:AA:67:96:D5:DB:78:C0:13:8E
X509v3 Authority Key Identifier:
keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9f:64:3c:d0:79:2d:bb:32:49:8a:0b:05:90:4d:23:a7:25:b7:
44:99:07:94:d7:9e:5a:51:18:be:42:ab:02:5d:40:3e:9c:ad:
26:2e:4e:a1:e1:73:d0:eb:f6:03:ba:e8:e8:23:31:68:c3:76:
e6:5d:0d:2b:dc:7d:56:68:dd:91:f1:d9:0c:f6:1c:1a:9d:1f:
93:10:33:76:d5:90:dd:12:25:26:f9:41:33:89:32:49:91:e1:
8c:7f:b1:55:2a:dd:bf:7b:01:0d:39:7a:7a:ef:84:af:95:a9:
53:16:87:9b:63:15:54:92:58:01:ff:73:37:25:ac:62:bb:38:
ea:c5:f8:9e:34:64:09:ba:03:1c:8e:d3:eb:9f:1e:b8:73:06:
f4:bd:82:df:83:2a:81:aa:02:ed:b5:28:08:6c:21:a5:df:13:
b4:01:06:68:29:24:db:5b:60:53:1a:25:6f:2c:80:90:01:4d:
09:e7:d2:40:60:04:08:fe:69:5e:0e:bc:80:40:17:6d:aa:04:
0f:45:90:f7:ef:a4:9d:4a:a8:2a:94:97:89:42:78:8d:2f:7b:
60:41:45:63:a8:6b:b9:16:61:dd:59:2c:42:b7:11:c2:ab:fd:
dd:b5:3b:15:0a:73:b7:e8:a7:bf:0d:39:18:d3:90:98:29:6f:
d2:b2:de:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:43 2026 by rpki-client