
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json)
Hash identifier: o+4MQN8ruja4Vr3lPclbdr9F+n8pIremGhCqlLTDbmU=
Subject key identifier: F9:76:18:4F:30:B2:A2:DE:23:9A:72:08:FE:FD:BB:17:C5:22:F9:35
Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02
Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
Certificate serial: 049E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
Manifest number: 045E
Signing time: Wed 15 Jul 2026 00:58:02 +0000
Manifest this update: Wed 15 Jul 2026 00:58:02 +0000
Manifest next update: Wed 22 Jul 2026 00:58:02 +0000
Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: znjsfAcbUZNshLijzfntVsxEoS/PaAhE6dP7Uk+BJq4=)
2: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: dPxIUNEqYuFtJskM6HAN9FGSFnQOEAtn06dnZBLnvG8=)
3: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: tBey+DH64+Kn32UVWimcmMh2WoGFqT18gD06i2GEZsU=)
4: AD17704445F611EE97DF317CC4F9AE02.roa (hash: /vhmP+Y6Yb84j9vhzg0Zbk6HCi7aZS+Km8vmqSzsrmM=)
5: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: r+lrx7WpAI1BilPAcnEksEUaCu2KnCEQLhymAPB2i1s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl
rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Jul 2026 00:58:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1182 (0x49e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002
Validity
Not Before: Jul 15 00:58:02 2026 GMT
Not After : Jul 22 00:58:02 2026 GMT
Subject: CN=6a56db1a-c49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:45:3d:30:a9:94:0b:55:4e:98:1b:41:33:92:
7f:81:b5:c5:6e:3b:33:9a:66:a3:65:5b:7c:b6:c4:
67:40:33:26:6a:84:52:ab:85:7c:3f:72:22:0c:9d:
7c:8a:a6:34:3d:ab:a3:00:b0:b1:cb:ca:fb:5e:cd:
7a:cf:b2:88:84:bd:70:59:7a:b7:41:2e:9a:4a:b0:
e0:0d:72:fd:76:1b:25:54:15:1a:4d:24:52:6f:5f:
c5:79:82:0a:d9:59:c9:ec:a1:f0:a3:c3:9a:fe:86:
bd:a1:4d:4d:97:80:bb:d3:12:6f:b3:9f:55:42:b0:
f8:1e:a9:23:5d:03:33:9c:93:37:c3:bf:ca:df:b6:
dd:d5:0b:09:a3:78:af:0f:c7:c2:a4:9e:ab:cc:be:
db:cd:3c:1e:71:b0:b9:8a:70:f0:b3:0e:16:b0:07:
c4:a8:f1:b5:de:19:0c:b6:44:ce:e5:1d:46:32:8e:
00:8b:b1:f2:04:e1:b8:48:99:72:f8:2e:f8:76:00:
7c:83:35:03:f9:98:b0:f8:31:78:b5:b3:14:47:20:
95:27:6f:6b:94:ec:16:bd:be:2a:6c:b1:6a:c4:95:
dc:f1:f1:a6:09:f5:b6:7b:9c:70:b7:e6:ee:89:62:
58:ec:e9:fe:1b:4b:b6:4c:db:0b:56:df:29:88:df:
fb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:76:18:4F:30:B2:A2:DE:23:9A:72:08:FE:FD:BB:17:C5:22:F9:35
X509v3 Authority Key Identifier:
keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8b:fd:ca:58:2a:a6:94:2c:82:10:f5:ef:99:e3:28:6f:a1:d7:
39:11:27:cb:47:c2:4e:9f:3b:14:2c:f5:d1:6c:a2:a4:f1:de:
62:0d:d2:0b:18:23:f4:9c:e3:aa:ad:bf:7f:74:43:32:77:5e:
35:27:a4:38:b6:da:06:67:c2:a4:e4:36:a0:84:96:98:79:52:
20:f3:72:92:0d:65:63:12:d6:a8:07:bf:25:86:05:6a:73:f5:
59:ee:23:70:8f:81:4a:11:bf:a7:24:0d:9f:57:6c:4d:2b:be:
23:28:8e:67:e4:cc:ab:54:49:17:1b:a9:4c:ae:04:08:6a:30:
96:81:48:02:6e:de:92:24:7e:4f:ba:f8:51:34:97:31:ed:6d:
ce:25:2a:08:b7:c3:f7:23:67:33:3e:7b:5d:46:44:cf:e5:10:
45:f7:5a:43:df:b6:10:39:14:16:d8:d9:4a:d1:02:7a:f3:23:
70:92:cd:ee:b0:c6:85:69:fe:a4:a3:ac:41:5b:6b:87:e7:33:
05:8c:1e:4d:43:6c:30:d5:cd:22:cf:11:d4:bb:b2:d6:15:14:
f7:c4:67:1d:af:b8:0c:88:6f:06:d8:7c:28:34:4c:02:2b:5a:
5a:b5:31:cc:46:bf:46:1b:9b:a0:d0:d5:d1:f9:c1:59:a4:94:
4d:60:82:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 16 15:49:26 2026 by rpki-client