
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft (raw, json)
Hash identifier: imFCRYeWE/QUBUSyWHz0mfAh1rF/LSxcBpwSeKb2270=
Subject key identifier: E8:54:B7:69:35:97:07:83:9E:02:F0:31:17:CC:0B:23:C2:AD:FD:FE
Authority key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A
Certificate issuer: /CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A
Certificate serial: 042B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
Manifest number: 0423
Signing time: Sun 05 Jul 2026 00:43:23 +0000
Manifest this update: Sun 05 Jul 2026 00:43:22 +0000
Manifest next update: Sun 12 Jul 2026 00:43:22 +0000
Files and hashes: 1: VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl (hash: /Gu2eqE+MHm9VfJDuVaYgwMebGALVvP7n/N5hbxg43o=)
2: 2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa (hash: 84Ty7wcmoehSksw6QkgqM/3dAcuuvgPeVakKxHJDpTI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl
rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:43:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1067 (0x42b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D6F2B, serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A
Validity
Not Before: Jul 5 00:43:22 2026 GMT
Not After : Jul 12 00:43:22 2026 GMT
Subject: CN=6a49a8ab-8336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bd:66:32:14:b5:e5:c7:20:2f:e5:36:78:b9:
30:5c:49:45:f3:f3:c8:74:6f:c4:5c:b4:84:de:19:
36:9f:c8:17:82:f8:0a:8e:76:02:36:a8:b6:54:69:
4f:42:02:a7:07:91:a9:bc:c6:eb:0d:d1:76:28:1d:
9d:83:fa:c3:29:57:86:dc:82:be:e8:27:9b:36:33:
bb:47:a0:19:98:30:ca:17:07:f5:14:5b:f4:d0:ea:
77:29:e3:91:c7:56:a5:ea:fc:ac:32:6e:18:e5:3c:
64:52:47:4b:95:67:07:2b:cb:37:56:65:2b:e8:21:
09:d1:90:65:77:d8:21:67:3e:e3:74:36:1d:59:9f:
46:f3:20:59:9b:0b:53:53:59:11:73:c6:62:23:c2:
02:ec:f6:ea:72:4a:00:ea:15:30:2b:b7:a0:e2:40:
cd:90:48:51:73:8f:4e:14:8a:52:b3:5a:d0:d2:c6:
ec:18:45:f3:d7:c5:65:aa:43:54:e1:5d:bc:f0:a6:
72:d1:7a:bf:de:69:db:7e:1f:ab:ad:48:84:0a:fb:
68:d6:06:d5:68:1b:93:82:6a:55:0f:d5:36:e1:80:
44:2b:1f:c0:4c:15:3a:21:b0:df:62:a8:f3:71:47:
db:1c:56:69:27:3e:67:9c:d0:e9:eb:6b:e6:ab:a2:
aa:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:54:B7:69:35:97:07:83:9E:02:F0:31:17:CC:0B:23:C2:AD:FD:FE
X509v3 Authority Key Identifier:
keyid:56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
75:69:11:dc:c2:29:19:d5:a0:ac:bc:c4:f4:f4:2c:7e:d8:15:
a4:43:1a:24:26:f3:81:a0:71:87:85:d0:88:e3:66:6d:6c:af:
17:2e:96:61:be:7c:9d:41:f6:87:d1:d5:3b:43:93:df:5d:d9:
1b:ed:e6:ba:4c:b3:d6:bd:3b:07:7b:18:67:b6:14:ef:62:e9:
7a:c4:f8:78:35:ae:ff:50:c1:cd:9f:cf:9b:c8:fe:b6:8d:13:
95:7c:5c:3d:40:26:4b:ac:df:fb:ca:57:19:b0:a3:ac:c6:b3:
e4:a2:20:cb:fc:44:a0:ac:a3:7a:59:b9:72:f3:9c:bb:28:4d:
b1:e9:bb:93:4b:7f:5a:4c:f3:49:dd:ba:b7:00:40:20:4f:9d:
e4:7e:1a:1d:d9:f3:8a:cf:cd:ec:69:0c:a8:93:80:ad:6d:dd:
2b:fb:67:e5:30:54:28:4b:cd:fa:66:d1:38:f2:e6:81:3e:82:
79:31:37:3f:88:cd:9b:76:da:f4:6a:36:fe:c9:90:76:d3:e3:
a0:a1:70:8d:86:6e:84:5f:8b:b2:02:16:fb:cc:db:39:15:f5:
41:e0:b5:ae:53:0c:7d:31:5e:84:3d:49:1b:a4:0a:cf:e3:2b:
0b:e4:41:d0:0f:bd:b3:c2:56:3a:52:7b:93:55:22:f1:b6:c7:
03:19:f5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:27 2026 by rpki-client