
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json)
Hash identifier: qmwSMoRrmQfKYi2+HJ/z6bRqe4v+BO3cbaJ2UHCedLQ=
Subject key identifier: DD:34:C9:69:54:0B:E5:32:2F:74:36:07:62:60:2C:B9:DB:C1:E9:F5
Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A
Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A
Certificate serial: 1294
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
Manifest number: 1262
Signing time: Thu 16 Jul 2026 17:11:00 +0000
Manifest this update: Thu 16 Jul 2026 17:11:00 +0000
Manifest next update: Thu 23 Jul 2026 17:11:00 +0000
Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: b/2toa2lPl8bjVjWAGGtTADPYu9dY8xpMGGKHM3/LY0=)
2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: f+/uDtECPh4z9lUgGecamZwBqy/HTP1IaGpVkdXlDqM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl
rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 17:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4756 (0x1294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DE7DE, serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A
Validity
Not Before: Jul 16 17:11:00 2026 GMT
Not After : Jul 23 17:11:00 2026 GMT
Subject: CN=6a5910a4-4d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:17:95:9f:d3:19:e8:92:a3:3c:96:48:40:
3a:29:00:d2:41:e9:8b:bb:3a:87:23:ba:2c:8f:6b:
5a:3a:de:9a:fe:f7:29:70:ad:e7:a0:ea:ec:d0:41:
33:17:df:49:29:80:d7:f7:5c:ac:45:14:39:9a:a9:
dd:cc:f4:65:4b:13:89:45:97:d3:24:70:63:55:c7:
05:8a:20:1e:8b:3b:f1:f0:da:25:26:21:58:3e:7f:
73:1f:92:73:05:9f:a1:5e:3c:dd:2d:19:c1:ba:5c:
9a:26:f7:b4:8f:de:9e:95:4e:6d:a1:90:b4:d3:9f:
b3:ee:4d:e4:1c:3d:88:8c:c0:0c:17:96:7a:c3:33:
73:4f:39:cf:78:17:bc:3a:a1:46:46:72:60:b8:47:
88:f6:63:09:ed:05:d3:af:39:e9:a8:df:c5:be:09:
dd:1d:64:24:a3:d2:ce:b4:8d:4f:d5:c0:2c:38:de:
e0:f1:7d:c5:e8:e4:bf:fc:8c:fd:40:7c:ad:ff:f6:
ba:be:61:37:40:eb:d3:a1:10:0f:01:a9:bb:a3:4f:
61:50:21:15:46:e0:98:11:14:13:81:ec:4e:64:0a:
42:9b:b7:4f:08:68:5e:c7:f5:19:05:aa:69:55:fb:
ba:fa:ef:6e:bb:aa:c8:ce:59:ce:45:99:a9:ad:78:
74:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:34:C9:69:54:0B:E5:32:2F:74:36:07:62:60:2C:B9:DB:C1:E9:F5
X509v3 Authority Key Identifier:
keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e3:18:e1:88:6e:d2:76:3c:71:ba:b8:54:11:73:bf:95:ea:
ab:44:86:50:83:43:9e:e4:0c:36:46:a7:f3:05:fe:40:13:ef:
ef:19:ae:96:65:97:38:b9:c0:e5:d8:88:e5:0d:20:04:f1:7d:
d1:f7:71:d9:a9:5e:e6:73:2b:d5:92:31:21:30:22:22:bd:3a:
1b:1b:93:e6:b0:31:6f:a2:ab:15:3c:3f:68:c3:af:c6:fd:56:
7a:8a:9c:62:b2:72:f6:70:35:f9:3d:d0:88:97:91:60:2a:86:
d4:92:41:ae:cb:76:10:31:1a:de:90:17:ed:a9:90:a3:09:88:
b6:bc:01:7c:4a:66:d5:0c:4d:45:26:22:3c:6b:00:6f:39:66:
d1:03:80:77:35:4e:5b:fa:dc:81:e1:ed:40:86:b6:a1:cf:7c:
bc:37:f7:32:2d:5d:aa:2d:dc:ac:eb:c9:2f:50:41:a3:79:cc:
f6:3e:93:2e:19:be:f4:4a:1b:cc:e9:d6:5f:73:aa:7f:27:33:
8d:c8:96:b9:69:d3:1c:e9:01:9c:f1:93:bb:14:e2:0e:79:48:
c2:c7:e6:44:ad:cf:63:a0:7a:d3:81:a3:78:11:a9:85:29:39:
4c:00:68:26:e2:d0:d0:61:19:91:8c:8d:74:9b:86:58:9e:b6:
98:a7:37:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 10:33:08 2026 by rpki-client