
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json)
Hash identifier: 1GD06861O+zt70W3ClPSu0xoQSCFebnpVh0BhjzpVAY=
Subject key identifier: 36:7E:0F:8A:47:F3:2F:7E:E9:83:D4:C7:65:37:8C:70:7A:11:50:7C
Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2
Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2
Certificate serial: B0
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
Manifest number: AE
Signing time: Fri 17 Jul 2026 08:21:12 +0000
Manifest this update: Fri 17 Jul 2026 08:21:11 +0000
Manifest next update: Fri 24 Jul 2026 08:21:11 +0000
Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: 5wrrv2UHGzXUWva0LJ6pekup4KoEA7BXL4RyYHE9raI=)
2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: cA1zRf5hGPx366nz55tbLEUSAsNqCtNhxK7+ift/7Yw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl
rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176 (0xb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2
Validity
Not Before: Jul 17 08:21:11 2026 GMT
Not After : Jul 24 08:21:11 2026 GMT
Subject: CN=6a59e5f8-3e57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4e:0d:3c:bb:05:e2:d1:12:6d:65:7b:f3:2e:
05:2a:a9:36:da:eb:1c:83:27:97:a8:2f:1b:0b:1e:
48:af:36:b8:e2:36:ae:1d:18:9b:45:da:22:ad:0a:
30:1b:7b:d6:ce:9e:fc:93:9a:a7:d5:cc:de:bf:be:
ca:e1:57:3a:5a:4b:2c:2a:4e:6a:fd:c5:9c:72:45:
72:10:b4:f9:0e:1f:a0:c6:a6:1f:16:2b:4a:a8:c4:
e0:d6:f1:83:61:e8:31:63:23:c1:18:cb:60:f1:ba:
8a:c9:92:f1:a4:a5:a6:63:d6:2e:9f:52:59:d8:a7:
c1:2d:c8:53:d6:b3:cc:0a:b6:98:60:6b:33:47:fa:
f3:0e:79:ac:ff:1a:03:f1:3f:d8:6c:c8:aa:3f:28:
61:04:b4:0e:8a:6a:6d:26:e7:bd:40:bc:7a:ef:b7:
c1:7e:a9:aa:ab:d1:c8:3d:0a:f9:b1:62:67:2d:59:
c6:47:19:d6:f4:c4:75:50:51:f5:a7:e4:07:67:78:
4a:91:04:be:a5:80:ad:6b:dc:bc:71:aa:28:d0:5a:
dd:46:e4:b7:7d:17:47:22:7f:c7:d7:89:89:25:b8:
80:28:20:4b:00:87:40:88:99:02:e9:6d:1a:9c:b4:
1f:74:71:7e:76:e0:5e:69:f5:42:07:01:a1:50:1f:
59:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7E:0F:8A:47:F3:2F:7E:E9:83:D4:C7:65:37:8C:70:7A:11:50:7C
X509v3 Authority Key Identifier:
keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
81:14:44:a1:38:ff:ce:e2:9f:e9:ac:2a:00:83:d9:aa:02:38:
73:14:1f:a1:8a:95:54:35:fb:e8:d2:f5:9d:3f:a5:b7:a1:c8:
a9:fd:f8:2b:54:a0:03:14:46:05:21:85:a5:bf:60:f1:4e:25:
0c:57:01:77:95:4f:85:e6:ce:c5:6b:1c:0c:36:1e:32:07:61:
0d:a5:a9:c0:62:28:9f:c8:fc:df:67:f5:09:27:fc:f6:8a:ef:
79:61:a0:1a:82:23:a0:da:77:d4:18:fc:ee:57:d5:6b:a7:ac:
89:79:76:89:8b:17:90:80:ae:0f:5e:41:1d:e3:c6:23:52:00:
31:21:6a:83:4d:20:17:01:fb:e0:36:29:c0:78:79:f3:3c:8a:
a7:7b:47:2e:ec:d2:da:9c:4e:7f:85:dc:9f:e8:d1:10:39:a4:
bf:74:82:f0:04:9a:09:4c:f4:79:11:6f:7d:84:77:5f:03:dd:
ca:df:44:e0:46:72:d4:28:3d:08:73:e4:41:2e:30:4c:cc:17:
b2:96:1a:f2:d7:a1:cd:a7:ec:39:57:aa:49:33:e1:3b:9e:57:
c9:8d:d7:84:e2:1f:38:ae:d4:04:a7:c4:6e:90:32:1a:d6:65:
e0:b2:e9:8f:fd:19:4e:a9:05:d5:67:97:c7:d5:00:71:fc:c1:
4e:c6:1a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:59 2026 by rpki-client