
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
File: b70F9jC-RBCpUSzbaahco3zoxzk.mft (raw, json)
Hash identifier: 2Kv0BPeSZULd8Gb+i1N+2OJTQezzYRNDmv9ueIjj/Kw=
Subject key identifier: 69:01:DE:7E:83:EC:36:17:04:F7:D3:1D:3E:8A:A5:A6:BB:41:B6:1D
Authority key identifier: 6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39
Certificate issuer: /CN=A91DC897/serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739
Certificate serial: 54
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
Manifest number: 50
Signing time: Wed 01 Jul 2026 10:09:31 +0000
Manifest this update: Wed 01 Jul 2026 10:09:31 +0000
Manifest next update: Wed 08 Jul 2026 10:09:31 +0000
Files and hashes: 1: b70F9jC-RBCpUSzbaahco3zoxzk.crl (hash: 855VRBxwgZCfKE2Uv7UOKoDk+fAzL5yAvx5oavu4rsk=)
2: B8EA8ABC033311F1AAD74374203D8C67.roa (hash: VGTwiIqmaXq4MsscshpbxlIvpQ6VN4x9kiDNRx4VLZE=)
3: 2764AC08003111F18836FC08486F56BC.roa (hash: yELvoRc3S+vHFcCwKMNPwYPmKbFYr2Z48ucu1l1HAEs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl
rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 Jul 2026 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84 (0x54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC897, serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739
Validity
Not Before: Jul 1 10:09:31 2026 GMT
Not After : Jul 8 10:09:31 2026 GMT
Subject: CN=6a44e75b-9f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:55:f1:65:a0:8a:b6:d3:1c:cd:14:39:de:
01:4b:8f:26:37:3d:d7:07:a9:0c:b9:6c:05:a4:88:
0c:b7:9c:3d:d1:f7:6c:4d:15:b9:99:24:35:a0:32:
a9:40:82:af:44:31:b7:84:97:8f:88:4c:bd:59:4c:
63:8d:89:39:15:ad:f7:bd:41:69:53:c2:3f:f8:95:
37:fd:86:10:f9:31:f6:3b:ff:23:be:81:6b:dd:a1:
5b:b1:bf:4b:7d:0e:05:52:a2:93:ba:d0:e6:49:a0:
8a:9b:ff:d1:cb:75:39:ff:46:2c:7b:f3:20:a2:4b:
ac:eb:95:76:8d:cd:cc:d5:fa:8e:54:fd:40:8f:80:
a8:a6:c3:9e:23:c7:e4:56:af:c4:75:bd:d6:26:f6:
d0:3c:c9:e4:28:f1:28:8b:bf:33:ec:ed:bb:ef:0a:
3a:8b:43:85:9b:c0:71:3b:95:0e:7f:b0:52:f3:a1:
26:6e:4b:b1:e1:5a:7c:69:6e:74:59:ad:8b:08:80:
30:eb:f8:99:30:ff:58:0f:d4:32:3d:02:cf:6a:1a:
3f:64:7a:c3:c9:6a:bb:15:2d:20:da:9a:4a:52:e3:
da:bc:2b:be:e6:0f:2b:2c:01:c1:32:d6:77:6e:b7:
e4:be:29:32:3b:15:ac:aa:9b:87:e7:02:34:4b:44:
2f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:01:DE:7E:83:EC:36:17:04:F7:D3:1D:3E:8A:A5:A6:BB:41:B6:1D
X509v3 Authority Key Identifier:
keyid:6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
91:79:a5:84:37:d6:33:08:17:4d:27:a1:f5:c5:6a:e4:05:83:
25:89:21:13:46:0f:0e:64:09:db:a9:e3:f6:8c:27:09:7f:52:
bb:53:83:85:4d:66:f3:32:94:7e:21:eb:72:0a:55:42:e9:be:
71:68:2a:e9:54:af:d3:de:e1:ba:7b:fc:9d:b9:f3:7f:6f:6b:
ea:1d:7a:f0:8d:d1:05:bf:17:e1:23:f9:5e:b2:a0:c5:56:c6:
9e:e0:60:7b:42:b2:cb:ab:37:93:bd:24:59:1e:c8:eb:ef:bb:
f6:db:75:a2:21:e3:d3:36:52:5c:c0:25:ec:9c:c1:4f:94:d2:
d1:d5:be:02:f3:12:eb:16:82:ef:7b:f6:89:07:ce:c3:4d:25:
37:97:18:3b:d6:c2:7f:ce:73:ca:1f:73:65:3a:60:c5:bd:b3:
8d:79:bd:5e:29:9f:72:45:18:4f:db:89:5a:38:cf:ed:aa:aa:
da:3e:08:82:06:c7:f9:69:3d:a7:14:a8:a8:04:4a:7b:d3:59:
6e:9a:68:77:55:08:ef:a1:c8:ae:4b:c3:b2:a0:4e:9f:20:54:
f5:fe:fc:d5:b9:66:a4:41:9c:18:6b:17:a5:a8:33:03:f9:4f:
f6:ce:77:18:6d:a0:18:f1:d8:6a:a1:14:43:0b:1d:23:1b:76:
62:a8:04:52
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE
Qzg5NzExMC8GA1UEBRMoNkZCRDA1RjYzMEJFNDQxMEE5NTEyQ0RCNjlBODVDQTM3
Q0U4QzczOTAeFw0yNjA3MDExMDA5MzFaFw0yNjA3MDgxMDA5MzFaMBgxFjAUBgNV
BAMTDTZhNDRlNzViLTlmOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCrF1XxZaCKttMczRQ53gFLjyY3PdcHqQy5bAWkiAy3nD3R92xNFbmZJDWgMqlA
gq9EMbeEl4+ITL1ZTGONiTkVrfe9QWlTwj/4lTf9hhD5MfY7/yO+gWvdoVuxv0t9
DgVSopO60OZJoIqb/9HLdTn/Rix78yCiS6zrlXaNzczV+o5U/UCPgKimw54jx+RW
r8R1vdYm9tA8yeQo8SiLvzPs7bvvCjqLQ4WbwHE7lQ5/sFLzoSZuS7HhWnxpbnRZ
rYsIgDDr+Jkw/1gP1DI9As9qGj9kesPJarsVLSDamkpS49q8K77mDyssAcEy1ndu
t+S+KTI7Fayqm4fnAjRLRC/fAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUaQHefoPs
NhcE99MdPoqlprtBth0wHwYDVR0jBBgwFoAUb70F9jC+RBCpUSzbaahco3zoxzkw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDODk3LzdGNEU2M0VDMDAz
MDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJDcFVTemJhYWhjbzN6b3h6
ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG
RDFGRjIvYjcwRjlqQy1SQkNwVVN6YmFhaGNvM3pveHprLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD
ODk3LzdGNEU2M0VDMDAzMDExRjE5NEEyNTdBQjQ3NkY1NkJDL2I3MEY5akMtUkJD
cFVTemJhYWhjbzN6b3h6ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQCReaWEN9YzCBdNJ6H1xWrkBYMliSETRg8OZAnbqeP2jCcJf1K7U4OFTWbzMpR+
IetyClVC6b5xaCrpVK/T3uG6e/ydufN/b2vqHXrwjdEFvxfhI/lesqDFVsae4GB7
QrLLqzeTvSRZHsjr77v223WiIePTNlJcwCXsnMFPlNLR1b4C8xLrFoLve/aJB87D
TSU3lxg71sJ/znPKH3NlOmDFvbONeb1eKZ9yRRhP24laOM/tqqraPgiCBsf5aT2n
FKioBEp701lummh3VQjvociuS8OyoE6fIFT1/vzVuWakQZwYaxelqDMD+U/2zncY
baAY8dhqoRRDCx0jG3ZiqARS
-----END CERTIFICATE-----
Generated at Wed Jul 1 14:49:00 2026 by rpki-client