
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json)
Hash identifier: fhfQielTtPe5QQ7gmviaC0XTGT5Apd+zR3aB+4SUwD4=
Subject key identifier: 6F:C9:0A:EE:D6:B2:39:FF:65:84:61:CE:A9:D0:23:E8:F8:83:5D:E2
Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93
Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93
Certificate serial: 04BB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
Manifest number: 04AE
Signing time: Fri 17 Jul 2026 00:31:47 +0000
Manifest this update: Fri 17 Jul 2026 00:31:46 +0000
Manifest next update: Fri 24 Jul 2026 00:31:46 +0000
Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: SkZv7+KrIeW2EhdovF+h7xCUi3ZgKOEzkSFxoxWlT9s=)
2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: 89nb39WeO+2Ub6Nf3O9bYYBJxsIA87zSaSarp1B+j1E=)
3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: 1pV5x+wzFKlIURLdK4W0ATECc1pPeoL8XQh/coLs8yw=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl
rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1211 (0x4bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93
Validity
Not Before: Jul 17 00:31:46 2026 GMT
Not After : Jul 24 00:31:46 2026 GMT
Subject: CN=6a5977f3-dfb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:13:b7:95:13:0f:47:a9:62:cd:63:4d:3c:
33:dd:19:15:50:8d:82:ac:60:d1:59:cc:c0:15:a8:
96:95:bd:aa:36:52:f5:da:a2:64:90:ed:50:c2:64:
51:11:b2:09:bb:b1:f0:97:3b:a9:9f:4d:a9:98:7b:
f8:90:72:0a:49:1c:5c:81:39:0a:a5:f1:a5:64:3a:
0a:8e:d0:26:2a:f2:6b:ba:ff:f1:39:9f:e8:2d:44:
13:ac:2d:58:ba:c5:4f:9d:a0:dc:77:59:f2:dc:29:
dc:6b:45:d3:a2:2f:93:e3:d7:48:02:73:2e:55:fa:
e4:6c:68:35:cb:f7:f2:ac:f4:50:0a:24:e1:fb:12:
2a:19:1d:75:f6:79:45:b1:3d:fd:bd:c8:07:72:f6:
a2:d1:9c:00:c9:9c:e9:0e:9a:aa:a0:57:3c:7d:17:
be:1a:5a:35:fd:88:5b:07:8c:2c:c6:9b:a2:bd:18:
bd:49:ee:b2:4c:06:7b:4e:dd:17:58:80:e3:0a:b9:
df:f0:5b:97:2d:2a:bd:09:cd:d5:6a:cf:3e:f6:ba:
c9:ef:31:a3:ed:79:ea:ce:cf:ac:91:96:d6:22:2d:
32:f9:94:07:fc:61:c3:3c:03:d2:0c:96:42:87:84:
10:15:0a:4b:b0:25:48:d8:b6:79:3e:fd:51:ee:81:
81:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C9:0A:EE:D6:B2:39:FF:65:84:61:CE:A9:D0:23:E8:F8:83:5D:E2
X509v3 Authority Key Identifier:
keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c5:50:d1:37:2d:0e:5e:00:2e:9b:4d:0b:a2:49:09:f5:7d:a1:
a5:e5:5d:8a:d6:6f:e3:75:45:d1:86:e8:b4:76:51:18:31:4c:
74:85:f1:08:fb:e7:42:14:7a:eb:98:13:4b:7f:f0:ba:69:5d:
5f:bd:09:bb:74:17:13:ad:10:96:ee:88:ab:a5:60:fd:11:54:
cd:35:02:29:b9:24:e1:6d:65:f4:fa:c7:5c:43:d8:4e:96:03:
ec:b5:12:70:ec:fc:a1:b1:c0:1f:2d:99:a6:97:6b:ae:d0:14:
b4:fc:50:1d:12:ba:67:5d:3e:fc:c6:00:d0:f8:18:5e:81:01:
76:c9:9d:e4:8f:2c:68:17:a6:54:43:0e:14:76:7f:23:a5:ec:
56:d7:00:15:06:8f:31:3b:c6:a1:01:cc:38:f0:26:a6:f2:d1:
ba:95:23:db:ac:1f:ec:e1:3c:bf:88:54:60:de:d8:c1:53:19:
e4:a8:79:a5:3b:9a:26:bb:5b:1e:98:97:4e:e0:e8:42:01:05:
f2:d3:53:b7:9b:6d:52:37:2d:8d:61:f2:ca:f5:fd:d5:1f:81:
99:e0:53:2a:94:e3:04:bd:20:3c:0e:d2:2a:73:d4:ad:e6:52:
2b:c0:40:d8:14:26:76:d5:fe:ad:46:06:d1:61:28:c8:d2:96:
fa:26:da:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:10:10 2026 by rpki-client