
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
File: x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft (raw, json)
Hash identifier: qjEA7bvOLMqHmUUjryj9olNRuWJ86xtCoxlOw9gz084=
Subject key identifier: 43:36:A1:81:16:6D:6F:4B:1F:2C:90:38:10:88:66:A3:C6:90:56:9E
Authority key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9
Certificate issuer: /CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9
Certificate serial: 043C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
Manifest number: 042A
Signing time: Tue 07 Jul 2026 00:58:20 +0000
Manifest this update: Tue 07 Jul 2026 00:58:19 +0000
Manifest next update: Tue 14 Jul 2026 00:58:19 +0000
Files and hashes: 1: x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl (hash: dMGPhBgOu6KLP5gavsZC5tewiHXL30DgBC3YJ8YwViM=)
2: A8E34E9CB66611ECAF76DA4CC4F9AE02.roa (hash: 22S1jZVW/bCC+yi8aJxUwO0V5slqfAZBa7wo8/blakU=)
3: A9906244B66611ECAF76DA4CC4F9AE02.roa (hash: K3Ioz+ew3oRAYT6RPNtdUzozr+IYWJNopTpICBz37bk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl
rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 00:58:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1084 (0x43c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E01B2, serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9
Validity
Not Before: Jul 7 00:58:19 2026 GMT
Not After : Jul 14 00:58:19 2026 GMT
Subject: CN=6a4c4f2c-67a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:00:2f:8a:69:1b:c6:a0:93:27:93:4d:60:
e0:8a:17:f7:d2:7d:c8:23:2a:47:80:df:e3:5e:81:
aa:d0:29:da:38:08:4d:9d:12:cd:e8:18:fb:db:7e:
de:f4:44:e3:f6:93:0e:ad:ec:22:32:ef:37:3f:cd:
24:85:30:bb:02:a4:47:9c:4b:b9:4a:7a:5e:86:9b:
79:57:37:6e:0e:e2:1d:35:0a:4f:ea:a8:c4:6a:d3:
8e:3f:d1:62:f2:5b:18:29:a8:fa:29:ef:5a:12:0e:
fc:f4:4e:24:5e:cf:84:1d:47:e7:31:e2:6b:ce:7d:
c1:db:41:5d:b7:cb:38:0f:cc:e4:07:bc:3f:57:f4:
b6:78:e8:64:aa:1c:55:67:19:94:a7:36:20:52:33:
d1:3e:2e:68:8e:65:67:bd:62:e7:c3:da:2c:cd:f6:
d7:75:6c:6c:0a:3c:e4:2a:a7:3a:28:7e:0f:97:d0:
c1:3d:ae:d3:1e:ae:ca:9c:af:ed:79:d5:0b:d1:dd:
59:24:7d:73:85:c5:46:f4:80:23:43:5c:7c:d9:c2:
d0:50:ae:b8:06:31:af:5c:e2:47:cb:58:05:f0:c3:
c3:54:b1:37:6a:72:c9:34:f4:4d:51:31:9a:c6:0a:
3e:db:d3:eb:a4:b4:37:36:e1:c6:2c:98:bd:5f:f5:
f3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:36:A1:81:16:6D:6F:4B:1F:2C:90:38:10:88:66:A3:C6:90:56:9E
X509v3 Authority Key Identifier:
keyid:C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1a:3e:85:c5:e6:3a:55:56:31:43:32:9c:b6:d5:2b:5c:a9:a1:
b5:f9:3a:d4:33:a1:70:5b:5d:5a:19:54:c8:55:22:e0:41:aa:
a3:d2:e0:eb:92:13:2b:85:a7:34:ef:74:fe:fd:1a:23:70:ba:
bf:4f:20:2f:5f:d5:d4:95:71:5b:12:10:4d:c5:ea:07:55:82:
13:bc:3f:4c:9e:d6:0c:1c:74:c2:bf:16:3e:54:a6:e0:5c:d9:
3b:d7:2f:1e:09:33:ff:90:94:48:12:97:6d:10:3e:bf:ef:95:
34:0a:ce:c9:79:ab:40:8c:8d:4b:c3:eb:79:5b:a4:bc:12:d2:
f0:9b:a9:e1:ee:ad:4d:44:6a:cf:af:08:07:3b:6a:60:59:38:
95:4a:82:89:f3:a0:7d:59:bc:27:41:23:5e:1a:a5:43:fe:23:
77:aa:7e:bc:de:21:a3:69:fb:ea:b2:c3:29:34:f3:96:fd:3d:
5c:7d:df:ae:8f:a0:72:98:d4:5e:6a:60:c6:73:a0:bf:ce:02:
22:6a:fe:cc:54:b1:b8:5e:7d:e6:a2:4e:f6:94:ad:69:95:2b:
24:c7:2b:7a:28:6b:4e:98:08:7b:3e:c7:9f:f1:e3:1e:4c:49:
9c:82:60:f3:f2:5f:e9:2f:d6:12:4b:e4:a1:d0:fa:06:2b:ef:
e8:e7:54:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:31:50 2026 by rpki-client