
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json)
Hash identifier: 7wH8a7pNk7YmCAJWMFBiYCTBoBz4a4TNnp+LmBAjm70=
Subject key identifier: 81:89:7E:EE:30:CA:C0:83:3F:6D:6F:D1:82:3A:32:1A:AA:E7:9E:C2
Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD
Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD
Certificate serial: 0171
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
Manifest number: 0169
Signing time: Fri 17 Jul 2026 06:04:03 +0000
Manifest this update: Fri 17 Jul 2026 06:04:03 +0000
Manifest next update: Fri 24 Jul 2026 06:04:03 +0000
Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: lZwBc+3lyhew6uJTI5aEg53D2rTfnjg3WY3zVgaQOQQ=)
2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: /fpFKtFcwh7KjBndTGfGIO4WW4Bx9KlPmCwqANIq6FA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl
rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:04:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 369 (0x171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD
Validity
Not Before: Jul 17 06:04:03 2026 GMT
Not After : Jul 24 06:04:03 2026 GMT
Subject: CN=6a59c5d3-cd20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e0:92:ef:b1:db:5f:e1:d7:de:17:0f:52:b3:
1e:11:dd:23:38:b5:b4:ba:b1:88:08:38:d3:89:4d:
6a:5a:3e:2e:83:53:bd:c1:37:83:74:cb:02:c7:9b:
52:dd:73:7b:2c:95:de:56:9f:a3:91:f0:fb:1c:3e:
9f:93:25:45:1e:5b:86:51:59:61:4d:c3:9e:13:72:
4c:f5:f6:6f:7a:ee:22:29:33:27:54:ff:39:eb:5d:
54:ac:82:de:d1:47:aa:7c:64:a9:ef:44:14:54:da:
04:9c:55:a9:70:6b:ee:0b:10:9c:07:18:c5:6a:63:
45:05:b2:0a:77:e4:00:64:da:0e:a9:57:83:20:09:
4b:0a:b2:29:da:af:02:32:25:e2:86:2f:5e:00:f4:
db:3f:3c:c7:4e:fe:b0:70:c9:17:08:05:cc:16:c2:
cb:87:56:e4:b8:37:50:75:55:1e:90:98:f7:45:6f:
59:19:b2:c9:ee:40:0e:4f:b1:5b:fe:58:16:ea:b5:
40:5b:de:2d:b8:e1:5f:6e:46:64:97:70:fd:19:de:
8e:37:44:61:f7:1d:59:33:c1:27:62:27:ed:9c:06:
10:6d:a6:60:ff:9b:2d:3f:83:48:22:f3:69:59:48:
cc:8c:e9:29:73:07:62:ae:5c:63:21:6e:e4:99:8d:
15:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:89:7E:EE:30:CA:C0:83:3F:6D:6F:D1:82:3A:32:1A:AA:E7:9E:C2
X509v3 Authority Key Identifier:
keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:74:52:29:53:f8:59:ca:b4:a9:cb:ca:e1:d0:a6:d9:24:dd:
05:d3:b3:45:a2:5c:3f:f5:fe:f1:d4:6c:ee:fc:71:b8:74:8a:
e0:5e:af:f8:13:85:9a:4d:1b:78:3d:5f:43:7f:98:c8:9c:46:
43:60:bc:aa:47:3c:64:18:b5:ea:ca:0f:e7:c1:5a:f5:c9:4e:
c2:4a:91:a1:1c:67:24:ba:eb:30:ba:38:48:bf:b9:90:5a:32:
e2:82:f2:e3:39:96:aa:ba:09:b9:44:c7:4b:8b:f6:1c:97:ae:
d3:ae:cb:fe:88:fe:a2:4a:68:b5:8c:cd:0e:db:1f:c4:17:76:
3d:a2:69:4a:8f:59:df:94:f2:9a:45:95:b7:47:42:24:64:77:
8c:c2:2e:7c:a7:61:f6:f0:97:9a:ef:5b:37:ba:02:e3:9f:f5:
59:09:07:7a:2b:b5:a8:2e:58:3b:f3:0a:19:16:3b:93:6b:51:
a7:a3:eb:98:2d:2e:10:22:c6:6a:d6:eb:f1:c7:f6:f6:ee:c7:
7d:d2:c0:76:c5:b4:6f:0e:03:8a:71:06:07:8d:93:45:b9:c5:
aa:56:9a:3d:4f:d8:55:17:a5:f1:3e:5a:fd:16:b9:af:60:d0:
f4:48:8d:b5:4c:ff:ee:4a:45:a5:2e:2f:25:89:38:13:1d:37:
e9:db:cc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:21 2026 by rpki-client