
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
File: pwfo7Wx0uvNh3UByccajTUQCIqw.mft (raw, json)
Hash identifier: bW3Xqzj7yFIQ9kSkuKc2kAe2Ng2EQZjRl4YzM0gpU7I=
Subject key identifier: A4:CF:82:D6:DC:A7:8C:C6:F0:0B:A1:72:FD:C6:02:AA:E1:F7:5A:13
Authority key identifier: A7:07:E8:ED:6C:74:BA:F3:61:DD:40:72:71:C6:A3:4D:44:02:22:AC
Certificate issuer: /CN=A91D0C14/serialNumber=A707E8ED6C74BAF361DD407271C6A34D440222AC
Certificate serial: 02CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pwfo7Wx0uvNh3UByccajTUQCIqw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
Manifest number: 02C4
Signing time: Sun 05 Jul 2026 01:51:52 +0000
Manifest this update: Sun 05 Jul 2026 01:51:51 +0000
Manifest next update: Sun 12 Jul 2026 01:51:51 +0000
Files and hashes: 1: pwfo7Wx0uvNh3UByccajTUQCIqw.crl (hash: Eb7dJVmCGVVyspCOJr5C5irBP2eHobytep7jsP5Je1I=)
2: 111C77744E1811EDADB36913C4F9AE02.roa (hash: 6hfUw9nQOdjVrwwSNnhQ1CXEFLWSCYmyZedcFdNSRgg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.crl
rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pwfo7Wx0uvNh3UByccajTUQCIqw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 01:51:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 716 (0x2cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D0C14, serialNumber=A707E8ED6C74BAF361DD407271C6A34D440222AC
Validity
Not Before: Jul 5 01:51:51 2026 GMT
Not After : Jul 12 01:51:51 2026 GMT
Subject: CN=6a49b8b8-f6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c8:d7:d4:cc:9b:2c:13:d4:0f:5b:67:73:78:
eb:3b:28:72:01:d5:ea:ad:bc:d4:8e:39:88:49:47:
ee:22:2f:4a:05:4e:02:0e:df:55:7c:1f:3c:d4:a1:
b4:98:b9:5e:51:c0:20:9c:11:a3:dd:b6:20:eb:62:
70:99:82:26:cf:42:41:84:9d:5c:39:8f:fd:d4:09:
bf:4b:56:64:86:cb:07:b6:1b:fc:82:d1:49:bd:f3:
4e:b3:4d:a1:b3:7d:5f:66:d8:c2:b0:21:c6:fe:a1:
a7:d5:87:8e:5e:16:c0:f2:b9:78:dc:a6:fe:64:20:
98:51:50:53:b8:74:5e:e4:b7:24:9b:96:19:b2:af:
47:a4:02:72:2a:24:bd:cc:c7:1e:05:23:1c:e4:f3:
fe:bf:56:7a:f8:81:4f:f6:ff:25:59:fc:f0:dd:c0:
a6:ce:15:5f:46:9f:5d:14:31:00:f9:69:5a:bc:89:
18:13:c6:28:cc:9f:87:be:75:4a:0b:23:a6:88:99:
fb:9f:32:d5:cb:ba:d7:e6:bf:da:31:e6:8c:47:96:
b5:c6:4e:88:16:22:b6:1f:66:09:0a:5c:82:e0:56:
14:f1:8a:1d:a7:87:8f:e1:e8:c3:79:6f:a4:ab:d6:
f2:cf:38:56:02:d5:8e:4a:ea:c4:2a:31:b2:36:f3:
38:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CF:82:D6:DC:A7:8C:C6:F0:0B:A1:72:FD:C6:02:AA:E1:F7:5A:13
X509v3 Authority Key Identifier:
keyid:A7:07:E8:ED:6C:74:BA:F3:61:DD:40:72:71:C6:A3:4D:44:02:22:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pwfo7Wx0uvNh3UByccajTUQCIqw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d7:b1:93:b1:66:0b:96:aa:9a:85:da:e3:1e:09:9c:15:87:
ea:a7:f5:19:a7:a0:b1:ad:6e:ce:ad:16:56:9f:df:40:5b:a2:
64:d2:c7:3b:76:13:b5:02:6d:4e:ea:a8:72:d4:21:79:05:fa:
00:c6:c8:e6:bd:a2:40:54:1c:a8:07:53:99:27:ee:e0:d0:be:
ab:5f:68:6c:42:d5:7d:98:ae:d0:0e:e3:81:b2:8f:cc:6a:52:
b8:d7:57:b7:25:13:f2:95:31:6e:f3:06:2a:70:5a:ea:10:08:
c6:8d:bd:7c:de:59:0f:b2:27:94:34:56:1e:57:be:a6:41:19:
e6:ac:c6:35:3e:94:ac:9a:24:18:44:f4:d2:5b:9b:81:21:7c:
87:d6:d8:b6:84:dd:fb:b9:c0:60:ba:04:3c:d1:7c:90:1a:25:
82:92:43:0e:e8:45:87:ac:0a:d0:25:8c:9c:da:88:8e:f8:e4:
b9:32:e1:d8:62:c2:dd:9d:3a:3c:35:9b:da:f4:1a:f3:0b:34:
85:95:68:3e:3c:97:b8:5f:55:ca:4e:2e:ae:69:b0:64:68:87:
b9:e4:99:2f:a9:b0:f9:09:b0:8b:92:63:bf:b7:38:05:ee:c3:
90:27:c3:b0:4f:a4:70:0f:81:54:f8:e2:8f:da:91:c0:4a:9b:
8d:7a:93:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:27 2026 by rpki-client