
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json)
Hash identifier: GVwhy4KIqPaPmWhjgw1pEShK0hHpNn9eSUvfvLLiXtk=
Subject key identifier: A0:13:EE:D9:D2:DC:07:12:A7:29:62:4C:3E:C7:C0:B8:EC:22:C5:D3
Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B
Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B
Certificate serial: 015D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
Manifest number: 0154
Signing time: Fri 17 Jul 2026 06:15:12 +0000
Manifest this update: Fri 17 Jul 2026 06:15:12 +0000
Manifest next update: Fri 24 Jul 2026 06:15:12 +0000
Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: n/N87nWR6JenZMAV3DhXlgYUup4/8sRk16y3snn79PM=)
2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: /6Pq80Gx56ZFBPBtnhjbMbxhhA7hiQGMfNWAnIYq0MM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl
rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:15:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349 (0x15d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B
Validity
Not Before: Jul 17 06:15:12 2026 GMT
Not After : Jul 24 06:15:12 2026 GMT
Subject: CN=6a59c870-d4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:65:41:78:15:08:7a:64:27:3e:55:b9:a1:
54:d6:03:ae:57:69:08:85:d9:cc:3c:c7:1e:0c:4d:
77:78:24:ee:63:2e:51:8f:d6:25:11:49:89:f4:a9:
d6:61:c3:4f:22:cd:55:1e:f9:ab:2f:4e:8e:99:36:
7c:96:75:d0:37:2b:7b:2b:d5:e2:9a:21:4b:ba:25:
0d:c5:85:03:27:12:6a:6b:33:c6:a8:ac:d2:26:69:
2f:cc:20:f0:ae:73:b4:a5:e5:c8:cc:1b:2e:5a:72:
69:81:f4:35:d3:02:14:c8:e7:b5:2d:66:83:6a:2d:
e4:92:31:d3:21:5e:a7:61:7a:5a:ec:38:19:bb:22:
62:32:bf:bd:ed:5a:e9:a6:51:65:ad:38:4e:6a:39:
23:81:9e:ab:f1:39:5a:79:89:54:28:93:6d:50:ea:
6d:ef:9b:fd:c2:4a:51:f6:f4:aa:08:99:0e:2a:3d:
f9:c4:e8:69:1b:0e:97:78:66:98:b8:75:19:6c:93:
32:4f:26:86:5b:aa:61:61:b6:11:99:3d:06:b3:d1:
09:eb:f6:c0:0f:0c:d9:2c:cb:a0:6f:fd:0c:29:c8:
f3:1a:71:96:d1:bd:76:c2:ee:6a:4a:17:17:9e:f2:
d4:41:91:2f:3c:d0:53:a3:de:70:a9:0e:3f:79:e0:
d5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:13:EE:D9:D2:DC:07:12:A7:29:62:4C:3E:C7:C0:B8:EC:22:C5:D3
X509v3 Authority Key Identifier:
keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:1b:c9:df:7b:ba:fe:a4:05:b2:60:c3:62:8c:03:db:04:6d:
af:64:86:ea:df:ec:b8:21:8c:a0:00:dd:60:74:0a:d9:6c:5a:
c8:47:a6:48:22:a7:d9:0a:7e:f1:6e:8e:3b:f0:62:6c:c3:78:
9c:84:5b:4d:08:26:7f:54:df:16:47:3a:65:c1:f8:a9:24:81:
8e:84:e0:a7:8f:5d:88:02:6b:38:4b:f7:73:21:13:c4:93:16:
b9:cb:f7:8d:2c:91:55:bc:79:eb:3e:e5:ef:2a:43:d8:00:ef:
aa:91:d4:31:57:64:fa:f5:d2:bf:83:a9:ca:38:e3:4e:76:21:
28:92:dc:9a:75:4d:75:65:e4:e9:77:0c:e2:94:23:9e:57:aa:
01:5b:14:fe:27:76:92:9b:b1:74:02:81:95:77:4e:a6:86:5f:
43:66:72:2c:26:36:3e:43:92:01:fa:15:bb:93:4a:8f:ae:42:
61:e5:04:5a:26:19:da:5e:e0:f2:d9:40:76:26:81:70:05:59:
c6:45:e2:1c:28:e0:ec:ac:8d:0b:05:94:c2:c4:8f:e3:2c:fa:
81:55:f6:65:fa:fa:0f:47:32:33:73:97:2c:b6:88:f1:70:5e:
f5:06:8a:51:77:41:43:e4:87:4a:b0:d1:11:2c:38:0b:90:49:
58:98:e0:73
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2
NjVBRTE0OEIwHhcNMjYwNzE3MDYxNTEyWhcNMjYwNzI0MDYxNTEyWjAYMRYwFAYD
VQQDEw02YTU5Yzg3MC1kNGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvZ9lQXgVCHpkJz5VuaFU1gOuV2kIhdnMPMceDE13eCTuYy5Rj9YlEUmJ9KnW
YcNPIs1VHvmrL06OmTZ8lnXQNyt7K9XimiFLuiUNxYUDJxJqazPGqKzSJmkvzCDw
rnO0peXIzBsuWnJpgfQ10wIUyOe1LWaDai3kkjHTIV6nYXpa7DgZuyJiMr+97Vrp
plFlrThOajkjgZ6r8TlaeYlUKJNtUOpt75v9wkpR9vSqCJkOKj35xOhpGw6XeGaY
uHUZbJMyTyaGW6phYbYRmT0Gs9EJ6/bADwzZLMugb/0MKcjzGnGW0b12wu5qShcX
nvLUQZEvPNBTo95wqQ4/eeDVhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKAT7tnS
3AcSpyliTD7HwLjsIsXTMB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw
NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG
SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MEIwRS80RTZDQjRGNjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVD
ODQ0LTJfUDBxcTVtV3VGSXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAMxvJ33u6/qQFsmDDYowD2wRtr2SG6t/suCGMoADdYHQK2WxayEemSCKn2Qp+
8W6OO/BibMN4nIRbTQgmf1TfFkc6ZcH4qSSBjoTgp49diAJrOEv3cyETxJMWucv3
jSyRVbx56z7l7ypD2ADvqpHUMVdk+vXSv4OpyjjjTnYhKJLcmnVNdWXk6XcM4pQj
nleqAVsU/id2kpuxdAKBlXdOpoZfQ2ZyLCY2PkOSAfoVu5NKj65CYeUEWiYZ2l7g
8tlAdiaBcAVZxkXiHCjg7KyNCwWUwsSP4yz6gVX2Zfr6D0cyM3OXLLaI8XBe9QaK
UXdBQ+SHSrDRESw4C5BJWJjgcw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:22:08 2026 by rpki-client