
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json)
Hash identifier: mpfH9waWvQ5/VHwW2kFGY6JaweboRSgkMvmvdMgtgCs=
Subject key identifier: 34:1F:3D:B3:A9:82:D6:46:19:F8:77:7F:20:97:9C:8C:F5:C2:E7:2D
Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2
Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2
Certificate serial: DA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
Manifest number: D6
Signing time: Fri 17 Jul 2026 07:55:56 +0000
Manifest this update: Fri 17 Jul 2026 07:55:56 +0000
Manifest next update: Fri 24 Jul 2026 07:55:56 +0000
Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: J/1nU9GqHHiMyHj55DHBqFiJrht3pbLg4wzGA3h/wFM=)
2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: 54rNaHs3BHHyTMIFPvOgY9u0ai10wJmM8WXV532IDWg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl
rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:55:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218 (0xda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2
Validity
Not Before: Jul 17 07:55:56 2026 GMT
Not After : Jul 24 07:55:56 2026 GMT
Subject: CN=6a59e00c-bc6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cd:13:fd:5b:cc:01:c1:a0:cc:33:0f:78:a9:
e6:58:e8:9f:f2:f0:ff:2c:9b:fd:8e:91:36:41:fb:
59:f2:bf:30:a6:bd:b7:e5:4f:20:df:1d:02:e5:b8:
4a:ec:bf:f0:c1:a6:85:d9:d0:5c:56:c9:f2:84:fb:
a2:50:00:f0:78:fc:5f:2b:ca:d0:eb:75:89:4e:f2:
a1:07:7d:27:c0:30:34:4a:c8:19:b1:75:fd:13:b6:
35:9c:c7:29:47:bb:8d:19:dc:e9:bf:4c:4a:f0:75:
fb:7c:73:53:d5:66:3b:ba:28:19:a2:17:71:cc:f6:
c9:eb:09:f6:73:04:41:27:7b:e8:20:88:06:76:81:
62:77:7e:10:13:5b:87:7b:db:fb:55:84:6a:21:80:
b9:fb:ee:8e:f6:7d:1e:5f:4c:9a:9f:8a:51:4b:a0:
88:56:2f:1e:d7:63:fa:56:e5:48:dc:21:8b:a0:b5:
44:9c:2a:96:c5:ad:a6:dd:30:2c:c7:bc:75:83:28:
24:48:bd:bc:ae:b1:b9:9c:9d:03:84:1b:43:7b:36:
50:7e:5e:1e:4d:18:68:3a:b8:11:d0:a5:b9:5e:60:
c1:96:77:96:ea:70:17:f3:85:3e:2b:13:19:ec:f4:
ad:5d:83:73:32:76:9f:29:e5:b8:91:31:bf:3e:b2:
0c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1F:3D:B3:A9:82:D6:46:19:F8:77:7F:20:97:9C:8C:F5:C2:E7:2D
X509v3 Authority Key Identifier:
keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:bf:ee:0a:45:13:cd:df:89:f8:9b:ab:66:31:4d:67:43:cc:
29:9b:5f:36:01:3e:12:ef:2d:5b:49:5a:9e:55:d9:6d:9f:10:
b1:f8:d5:fe:95:5a:ee:08:16:88:51:bc:66:22:76:b0:e8:1a:
ce:36:86:1b:3c:b9:77:4f:d8:7f:1a:94:d6:b2:88:a3:c8:d9:
6e:84:d3:08:da:b3:2f:ab:c3:27:f8:64:ba:19:00:e2:83:42:
7b:4b:75:cc:58:3c:c6:ff:2e:30:1a:9c:ee:53:52:1f:00:50:
0b:49:30:d8:e3:4b:c1:85:bf:3f:a0:c6:bb:a3:7a:67:a8:a5:
06:99:69:5f:a1:e7:c3:93:fb:1b:12:0b:b2:01:ed:e9:f5:0c:
7d:a2:ab:da:80:14:4a:4c:8b:88:c3:9b:7d:44:51:da:9b:f9:
b0:5b:c4:25:0b:8f:0d:ea:89:59:fe:0a:a1:df:ea:95:52:2a:
a6:73:ab:47:ed:0b:0c:84:12:2e:a1:39:02:9a:00:cc:cc:4e:
43:da:5a:e0:5d:51:b8:a2:08:0d:bd:d3:8b:24:71:58:e7:77:
82:dd:06:67:6d:10:14:16:15:d9:dd:6e:ff:24:12:0c:d8:f2:
0d:70:21:15:5a:60:7f:10:16:85:40:c8:94:70:ad:ff:ca:80:
59:69:ed:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:14:28 2026 by rpki-client