
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft
File: IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft (raw, json)
Hash identifier: NeDxqIjPAZ/IJGFiPuDzf/pw8dxwjMGYC76Qm1vXxvY=
Subject key identifier: B6:3C:13:AD:23:9B:D5:AB:DC:C2:7E:AF:CC:E5:C6:43:06:02:4D:70
Authority key identifier: 22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89
Certificate issuer: /CN=A91CFFCB/serialNumber=2224294416B8465706554B52CBC56F449BC46C89
Certificate serial: DA
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft
Manifest number: D6
Signing time: Fri 17 Jul 2026 07:55:53 +0000
Manifest this update: Fri 17 Jul 2026 07:55:53 +0000
Manifest next update: Fri 24 Jul 2026 07:55:53 +0000
Files and hashes: 1: IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl (hash: J4I16mmHJdZI3LNzYY1MSh4inSN2Y6mMrgTUjapsSGo=)
2: BAEA3A3C497B11F096DCA14EC4F9AE02.roa (hash: +lH463qDPAwERrsUQl45+mVf4irW7NMTQzUVhbxqY6A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl
rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:55:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218 (0xda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CFFCB, serialNumber=2224294416B8465706554B52CBC56F449BC46C89
Validity
Not Before: Jul 17 07:55:53 2026 GMT
Not After : Jul 24 07:55:53 2026 GMT
Subject: CN=6a59e009-786f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3c:0e:e4:0c:64:b2:9f:82:fc:93:f3:fe:52:
db:d6:9c:25:bb:01:a2:59:8c:75:e4:5a:63:73:97:
ca:9e:4e:49:38:75:88:21:29:c4:c7:7c:54:fa:fe:
9c:8f:f9:1a:2d:31:c1:e5:46:6d:8b:88:4b:b1:eb:
ea:14:88:bb:d7:03:75:89:23:43:ec:70:6f:c0:f6:
48:95:4a:24:d6:88:c6:9a:a9:1a:a4:ab:0a:25:9b:
77:65:6b:9c:83:2f:5e:4f:b8:03:55:60:5f:eb:9c:
6b:9a:c9:39:bd:fa:65:34:42:ac:06:d1:45:8a:bb:
00:65:15:69:4e:06:34:7f:36:a8:08:f0:e2:9b:2e:
45:a2:73:4a:a5:e9:45:01:6e:77:7c:8c:ff:08:45:
3e:f6:b3:e7:8f:f4:8c:f8:88:91:f3:06:44:cc:ce:
c8:ec:a0:5a:90:0b:2f:ec:a3:be:0c:39:e5:64:ee:
1f:55:7d:7c:8f:b5:94:be:57:8e:28:3f:49:39:95:
24:49:e8:d6:f8:00:e4:06:d3:ca:f4:3f:46:fe:50:
6c:f8:11:4c:13:82:72:4d:7d:64:8b:df:1c:f0:43:
bf:6c:78:38:3e:ff:13:f7:64:fc:8d:40:da:cf:fb:
94:a2:78:56:06:ad:2f:09:87:34:e9:e1:c6:fe:70:
0c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3C:13:AD:23:9B:D5:AB:DC:C2:7E:AF:CC:E5:C6:43:06:02:4D:70
X509v3 Authority Key Identifier:
keyid:22:24:29:44:16:B8:46:57:06:55:4B:52:CB:C5:6F:44:9B:C4:6C:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiQpRBa4RlcGVUtSy8VvRJvEbIk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/ED0F11F4420511F0BF7A8711C4F9AE02/IiQpRBa4RlcGVUtSy8VvRJvEbIk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0c:35:31:91:a1:27:3e:b8:fa:4e:ad:cd:b1:ad:36:0f:af:a1:
d6:bc:a7:ff:d1:23:0a:ba:73:3c:c9:e3:35:19:93:97:4d:15:
e6:50:bf:fa:dc:66:97:22:ac:b4:b8:95:16:97:e9:ce:64:47:
af:b0:93:92:b5:a0:da:0a:42:7a:ad:23:8e:96:c5:cd:2e:c4:
b8:ae:28:a9:47:05:94:62:fc:70:f7:30:6a:58:0e:a5:ab:bd:
37:1e:8f:f9:76:e0:ab:45:4e:90:db:10:62:08:8a:d1:5a:db:
94:f6:9d:0d:0c:cb:9f:c2:7f:cf:42:18:13:12:6e:48:05:80:
2c:1a:e2:f7:0c:b7:c3:cc:de:ad:af:91:d3:57:ab:b4:9f:40:
9a:0f:09:ac:3a:0b:db:ca:c3:02:5b:84:65:2d:b4:2d:64:23:
f6:59:3c:02:84:60:8f:b9:71:be:b8:3a:d5:59:dc:78:ea:b7:
b2:b8:9c:a1:8a:61:c4:f4:da:b9:39:6c:04:ae:6d:c2:e9:c7:
91:82:e6:39:75:a0:ec:be:1e:74:fd:c6:ee:32:18:9f:fe:bc:
c0:4a:77:7f:4a:3b:ee:50:6a:94:a4:b8:fa:c0:25:64:1b:53:
12:87:3d:1e:49:67:d5:42:b3:28:6c:fd:3c:69:d4:24:63:01:
8a:fd:47:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:20 2026 by rpki-client