
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft
File: 01nlbdoAA8SD861qQMCA6Qy41HI.mft (raw, json)
Hash identifier: 0g3Ro/wlBCV99Ztd7jxq9uoOItk4uPJ0WVDGPVE6Alk=
Subject key identifier: 3D:24:67:13:35:9D:A0:10:7F:55:A2:7E:64:72:30:D7:3C:D9:27:DC
Authority key identifier: D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72
Certificate issuer: /CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472
Certificate serial: 018A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft
Manifest number: 017D
Signing time: Sat 11 Jul 2026 05:25:44 +0000
Manifest this update: Sat 11 Jul 2026 05:25:44 +0000
Manifest next update: Sat 18 Jul 2026 05:25:44 +0000
Files and hashes: 1: 01nlbdoAA8SD861qQMCA6Qy41HI.crl (hash: UDmTMlkg8qCeaqMl1otS4ZyDNmg/tbOr3PotWBlPi+Q=)
2: 573BE4DE3D0811EF84157B26C4F9AE02.roa (hash: qVzuwc8GJJLc1M+VCPFsl93UzK3diqKkMLNcNf9VMmc=)
3: 97530E023D0911EFA33E4A38C4F9AE02.roa (hash: 7D2o9V8B+THFZdf2H4zmO2ZxT2tryY6dqnAujMyrW8Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl
rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 05:25:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394 (0x18a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D9B1B, serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472
Validity
Not Before: Jul 11 05:25:44 2026 GMT
Not After : Jul 18 05:25:44 2026 GMT
Subject: CN=6a51d3d8-d82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:31:5e:63:8f:0c:08:ee:85:c4:8f:5d:62:ab:
cc:0e:92:8a:15:1f:76:e2:d5:0b:f6:5a:3b:59:c6:
23:d5:30:f8:98:62:1e:15:70:d6:4f:2a:18:e6:19:
97:21:27:2a:06:6a:7c:7e:0c:37:3c:fd:38:dc:be:
13:e9:96:80:d7:30:ac:64:5f:7e:bc:10:fe:55:7c:
f2:db:7a:18:fa:30:12:8b:6a:52:19:9b:b0:fe:41:
d4:4f:19:ad:1e:61:9c:9b:72:ed:85:23:3f:30:34:
06:74:22:0c:8d:81:0d:33:36:d1:74:99:4f:ad:39:
65:12:14:5a:a0:6e:8b:eb:38:63:3d:76:b5:bf:5f:
e7:c5:8e:ea:72:92:d6:96:f4:df:9b:ce:22:aa:02:
de:59:c9:45:69:ef:ee:c3:20:eb:c2:43:1f:7c:f3:
61:6f:ed:a5:bb:c5:43:ff:ca:7c:1d:d4:08:02:e0:
a6:4a:e6:71:a9:fe:03:47:ee:d8:78:f5:78:43:77:
f4:1d:18:de:3d:e8:f7:6a:9b:98:32:2f:27:0b:e4:
2c:01:7b:88:24:a6:5c:6f:a1:64:dd:f2:ad:76:bc:
e2:10:53:83:93:3d:0c:c7:3f:88:e9:a1:67:58:b6:
37:59:97:68:04:fc:0b:6e:10:fc:63:f7:b0:28:fd:
0b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:24:67:13:35:9D:A0:10:7F:55:A2:7E:64:72:30:D7:3C:D9:27:DC
X509v3 Authority Key Identifier:
keyid:D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a2:49:0f:66:e4:fa:e3:f7:0c:fb:4e:9a:0d:79:7b:3c:70:4c:
df:c1:6f:c5:07:5f:f1:76:e1:da:a6:b9:98:53:34:fa:f6:be:
8a:04:7a:3a:35:8b:e0:45:f8:24:1d:7b:7e:eb:89:7e:2a:65:
ae:31:a4:73:d2:8d:84:93:c6:0c:76:ac:64:8b:f0:c0:dd:24:
67:35:15:2d:46:18:6e:ab:4a:14:90:6b:dc:23:07:b7:19:04:
60:94:63:b3:30:ae:62:bf:b4:4a:dc:e3:52:44:61:86:96:a2:
8a:0e:6f:f8:2b:3f:0f:9a:db:17:1a:85:e6:2f:ae:d6:0c:17:
44:75:04:c2:e1:9b:a8:a3:c9:e0:e2:67:27:45:67:7c:ec:98:
46:ee:1a:25:be:00:55:a9:b6:9c:a5:3a:c7:be:d1:2d:10:0b:
08:0e:02:93:4b:3d:13:73:4f:f2:b8:80:d6:06:58:0a:ff:53:
cd:aa:93:82:8e:4d:8a:5d:1c:7e:ea:08:1d:f1:5e:8f:60:8f:
f3:db:e3:e1:9b:7c:7e:c9:ff:87:1c:c0:37:16:bd:0b:d6:14:
36:93:f4:e4:06:87:ef:ef:ab:b1:3a:53:29:d2:96:eb:c0:07:
c0:8b:f9:24:2b:30:47:43:51:c0:e7:b6:0a:69:38:64:e2:44:
70:a1:b0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 05:49:11 2026 by rpki-client