
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json)
Hash identifier: VYrQr7Cnem+UNzEIzzXnADcC9NA3omPCUxUIJMT1O0s=
Subject key identifier: 69:CB:B9:5A:05:25:48:9C:0D:74:D3:95:B0:9C:D8:3C:CD:BE:60:14
Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD
Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD
Certificate serial: 0408
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
Manifest number: 0402
Signing time: Fri 17 Jul 2026 00:44:51 +0000
Manifest this update: Fri 17 Jul 2026 00:44:50 +0000
Manifest next update: Fri 24 Jul 2026 00:44:50 +0000
Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: Q0K9c+8dwM9m14JMjBc/HAl5MbNZXcJ17PBNj/dBeN8=)
2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: cp7bTb5LQaah3kkUkaBafNzpnRd6bBUnxxFCOx5DKVc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl
rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:44:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1032 (0x408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD
Validity
Not Before: Jul 17 00:44:50 2026 GMT
Not After : Jul 24 00:44:50 2026 GMT
Subject: CN=6a597b02-e47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d5:10:0f:c5:ea:fc:64:d3:a5:32:33:5e:e7:
25:b3:c7:5c:37:83:93:72:52:af:4a:f3:0c:f4:f1:
ec:96:7b:8b:8f:cb:05:e0:b1:63:a9:c6:0f:51:10:
c3:50:a8:62:c1:bc:72:da:06:ea:6a:6e:61:d5:f3:
88:8a:74:49:4a:01:46:b6:19:6c:6b:d0:97:9f:54:
ef:08:2e:d5:9f:80:b2:9a:3d:e3:dd:6e:b4:a5:17:
39:6c:53:5e:cc:ee:77:c2:1f:90:9b:0a:81:c1:33:
3d:c6:96:47:cd:00:5d:f5:46:0b:71:d7:64:84:0d:
56:ce:95:5b:a7:35:57:55:14:4c:a8:2d:02:44:60:
55:52:59:e6:6e:3c:11:fa:d9:90:7b:9c:ca:41:b2:
7f:1b:bb:f2:e7:cb:bb:80:33:b4:2f:76:04:b5:eb:
51:28:a7:76:4a:5e:47:ec:52:30:6e:76:54:34:d2:
b4:5f:f9:a0:05:3a:36:c4:75:b1:3e:ff:3f:e3:49:
9a:ab:ff:47:16:ec:ed:25:1c:fa:95:ab:f0:61:73:
fd:43:64:3a:e4:fd:b9:14:3a:b7:90:6f:0f:63:f1:
41:e7:9f:12:c7:39:97:85:6a:b1:03:8b:16:95:1c:
ac:d1:b7:d7:4c:ce:ad:e6:8f:a5:a1:b9:a4:48:fb:
f2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CB:B9:5A:05:25:48:9C:0D:74:D3:95:B0:9C:D8:3C:CD:BE:60:14
X509v3 Authority Key Identifier:
keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
77:c2:77:30:3b:5f:c3:04:45:ba:5c:aa:72:b4:63:da:6d:8a:
85:33:43:5d:ed:50:fa:f7:c4:1b:fc:56:2f:4e:b1:d7:d2:47:
f8:b6:a7:43:3f:32:3b:c4:68:d6:f5:61:0b:28:78:08:34:71:
e1:f2:df:f4:45:fa:c6:1e:6c:6a:64:8a:ca:0e:42:4d:f1:29:
7d:14:2b:3e:9b:58:3c:b3:e4:32:cf:96:7d:45:11:4c:05:a8:
28:4a:65:ab:fb:92:61:33:96:ea:16:2c:c6:3f:8d:59:b2:85:
3f:e5:ae:a3:b1:69:b1:e3:bf:50:08:c1:ab:ac:e2:76:da:8c:
f4:30:19:e8:e6:3c:33:58:7e:0f:6f:0a:df:ed:50:e5:e2:d6:
fb:57:af:68:ce:2b:fe:74:c1:7c:98:66:c1:d2:b3:ab:8e:a5:
26:bb:2c:d4:34:e2:6a:9e:1e:cb:5f:51:ba:ca:75:bc:3d:60:
32:57:c3:07:02:27:cc:9e:dc:d4:83:d4:69:e8:d3:ce:fc:b7:
23:2e:b0:6e:78:15:0c:14:63:fd:c6:e5:41:a9:6d:f0:2f:ec:
ba:39:aa:5d:28:75:a4:ba:0b:2f:0c:38:c5:c8:7e:39:8c:6f:
c3:dc:47:e3:d1:db:39:bd:44:24:a7:53:26:59:78:9d:47:5c:
65:52:6b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:26:26 2026 by rpki-client