
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json)
Hash identifier: FimBRNvBMgijPTHVTnZz+R/4y5774kC8hyk/iQK2J0c=
Subject key identifier: 94:74:C5:44:26:90:AA:FA:DC:09:F9:6C:0D:5B:3B:73:3D:BC:F3:C7
Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA
Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA
Certificate serial: 0946
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
Manifest number: 093E
Signing time: Thu 16 Jul 2026 20:27:00 +0000
Manifest this update: Thu 16 Jul 2026 20:26:59 +0000
Manifest next update: Thu 23 Jul 2026 20:26:59 +0000
Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: alndUPdfFp5N2oEQ5WJV+EZ+WUfd9SwW/C45qdHuff8=)
2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: z8K9NFfgSR+lYBTmglUzfygULgy/XVJpR7AJN5E7qvo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl
rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 20:26:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA
Validity
Not Before: Jul 16 20:26:59 2026 GMT
Not After : Jul 23 20:26:59 2026 GMT
Subject: CN=6a593e94-3aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:5c:96:07:96:53:cc:41:63:31:05:ad:78:
f9:6e:bf:5c:48:f1:bd:52:31:d9:32:49:ef:76:8c:
96:2a:78:99:ec:ac:14:39:1c:7c:b4:37:18:4b:00:
89:b5:58:41:e5:2d:1d:6c:7b:a7:7f:36:37:4a:20:
a1:28:82:d2:5e:de:3d:3b:8e:8a:6e:72:c4:2d:7c:
b7:8d:16:d8:6b:89:a4:cc:a4:bb:b7:11:92:58:d7:
f5:ae:6b:4e:66:d7:02:85:f0:50:f6:41:9e:31:5d:
c7:88:12:9f:59:99:23:33:71:1a:7d:d6:37:4c:97:
95:3b:fc:ff:d6:3c:8b:92:1f:e1:b5:9a:40:cb:27:
da:e5:87:7c:65:9f:01:d6:ba:f4:64:61:e5:8b:c8:
07:da:28:ad:fc:20:5d:54:45:93:cf:e9:79:10:d7:
c3:86:b6:e0:17:df:07:81:dd:c1:77:ad:88:78:4f:
af:3c:21:82:08:a8:67:b3:51:49:a1:7e:97:33:98:
40:b3:34:8f:14:04:b9:d4:7b:29:bc:bc:b0:a1:2b:
cb:77:1b:16:c9:16:80:4e:46:a7:eb:71:42:d6:b6:
ea:08:8f:8e:80:61:21:90:e5:ab:6e:c8:e0:48:2c:
33:b2:b2:f7:67:6d:c2:06:25:98:56:b5:63:8f:1b:
69:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:74:C5:44:26:90:AA:FA:DC:09:F9:6C:0D:5B:3B:73:3D:BC:F3:C7
X509v3 Authority Key Identifier:
keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:c4:68:f3:4f:14:03:80:84:c1:2a:a1:37:07:c9:8a:3a:98:
5b:6a:e4:7d:45:be:5e:bf:a6:5f:1e:53:2a:33:d3:8c:fc:4f:
d6:70:3b:3f:17:24:93:99:6d:03:e7:52:f6:68:8c:95:a6:91:
80:c6:ad:05:74:f5:88:5b:a4:6e:75:fa:35:60:5a:97:22:08:
62:ba:f6:fa:84:55:fb:de:ed:4e:18:62:88:3c:51:09:61:91:
47:14:bd:41:e2:06:1b:ab:e3:5f:c1:40:93:18:9c:55:0a:d1:
00:04:b1:c2:e4:df:8d:02:b3:3d:73:ef:a7:48:1e:2b:22:4a:
9a:70:60:6c:b8:63:6a:b6:1c:f9:6f:5a:33:58:72:61:37:a2:
fb:e2:40:64:40:be:50:69:78:d0:89:d1:a3:95:64:60:77:13:
97:41:69:b2:e7:ac:cd:6a:2a:1d:db:b3:ae:8b:04:19:15:a7:
3d:a4:83:d4:81:29:de:59:8a:28:e7:2e:09:d2:5c:69:58:7b:
f2:0c:b0:c9:ce:88:02:29:5d:ec:d7:0c:54:41:aa:ed:63:62:
02:44:4a:6d:5c:d8:98:c0:25:f4:9f:c5:bf:3b:9a:99:56:b6:
2f:10:d9:66:38:3e:53:5f:3c:bc:af:2e:8a:c9:90:81:a3:c2:
77:43:d5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:14 2026 by rpki-client