
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json)
Hash identifier: yixZtAiBGwXiGWnYn+C6QyKGmpiWLUQrHV1EQmg4/Kw=
Subject key identifier: 1F:96:BA:0A:A1:E6:07:AB:CA:2F:4F:99:21:A0:5E:CC:3D:32:5E:F1
Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A
Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A
Certificate serial: 029C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
Manifest number: 027F
Signing time: Fri 17 Jul 2026 02:57:41 +0000
Manifest this update: Fri 17 Jul 2026 02:57:41 +0000
Manifest next update: Fri 24 Jul 2026 02:57:41 +0000
Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: 177CGwaI4FWmUJ6PqtSQGu0KZ/lghlU9cLotememBYg=)
2: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: BDN3eWU1QOvpwhp4B8qHZfh25EaapwZh0B/UqPtIRS4=)
3: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: WJy0DDE3R4DJLfi+G/eV3lsb3PxP1zjDf/s8mlf+RmM=)
4: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: +FOKSn3UMqNBdCkwTnN5e6gZKaXTHMKWX9i32crYuLc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl
rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:57:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 668 (0x29c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A
Validity
Not Before: Jul 17 02:57:41 2026 GMT
Not After : Jul 24 02:57:41 2026 GMT
Subject: CN=6a599a25-7977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:e9:e8:fa:62:1b:81:6e:1b:fc:d2:32:ee:
3c:dc:61:f6:27:20:fb:49:5c:14:1c:91:e4:a7:2a:
7f:51:73:e5:49:b3:19:8c:b8:c1:c2:b2:d8:6f:59:
d0:40:ed:b5:8c:c5:b9:83:98:d1:02:26:12:14:4f:
fa:d2:cf:39:bf:24:fa:2d:6b:59:33:8c:69:9d:72:
8d:71:ae:93:bc:4b:50:01:f3:eb:6e:90:72:de:ac:
68:db:7b:13:78:2c:fb:d4:ca:47:20:74:9b:a7:3c:
f2:a0:41:eb:d7:3c:8b:f1:42:29:0d:23:f1:80:13:
bf:51:31:a3:2d:8e:b5:a6:f4:7a:13:3d:5a:d1:a0:
78:6f:27:87:bb:ec:35:03:d1:f6:54:9c:d9:9c:6b:
cc:3f:34:74:06:5c:1e:2c:2c:dc:c3:63:e0:f0:44:
61:33:9f:d0:02:62:01:e2:f2:ee:10:fe:11:ce:1a:
1d:24:bd:2a:29:74:44:dc:c1:3e:7b:8e:ef:2d:6c:
3d:df:42:77:22:36:2c:d5:64:73:ef:71:10:ee:35:
66:18:7e:bc:43:f4:d5:9e:fb:13:40:b2:ea:8d:c3:
66:da:8c:bd:13:42:f4:05:8f:7f:bd:5c:ad:0e:3c:
bd:64:f0:62:32:c5:51:4b:48:05:2a:13:eb:d5:9d:
5b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:96:BA:0A:A1:E6:07:AB:CA:2F:4F:99:21:A0:5E:CC:3D:32:5E:F1
X509v3 Authority Key Identifier:
keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
51:1b:ed:77:c4:d8:16:c6:66:21:5d:fa:5a:0b:34:0e:f7:49:
88:c7:af:72:b2:b5:29:2c:bc:8e:5d:2f:49:ea:63:0b:f1:76:
30:0b:fc:a8:7b:d9:bb:ca:24:ba:1a:7f:f5:ad:2f:1a:7a:46:
e5:a7:d5:92:d4:a0:65:90:19:b1:60:cd:5f:2c:00:59:0e:14:
a9:3e:2a:97:50:12:c9:0b:7d:e7:11:21:ec:42:9e:71:d3:41:
d8:e5:6e:de:e4:19:bd:a0:70:1b:f7:ca:f1:49:17:fc:45:28:
e9:8d:33:48:dc:29:c9:c5:36:0b:56:e0:ed:d1:db:a6:51:ce:
52:54:9b:05:dd:5d:39:5d:d7:d1:35:19:c2:4e:98:c0:ac:38:
3b:f8:58:ff:d8:25:fb:8d:98:b5:e0:1c:13:a5:33:54:39:7d:
ad:11:a0:7b:51:4e:8c:60:c6:7d:08:69:9b:4a:96:18:83:6a:
94:e3:a3:31:df:fe:4a:8a:3f:4a:c2:6e:c8:00:d5:bb:e7:5a:
67:5e:90:70:0c:26:e3:c4:08:fb:30:92:55:3d:fc:8d:f2:2b:
63:e1:2a:ff:19:25:52:af:6e:79:72:91:71:a1:c6:96:0e:9d:
28:9d:31:e2:71:89:91:22:30:37:de:c5:b9:fc:71:59:33:35:
dc:36:3b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:23:46 2026 by rpki-client