
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft
File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json)
Hash identifier: nRl8rtQJp+Mh0nzailvTUX2SL3IaSomlJ/+2nYTht04=
Subject key identifier: 4D:30:53:86:5A:CF:42:21:42:61:D8:E4:D5:FA:29:80:C8:67:8C:48
Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D
Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D
Certificate serial: 2C6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft
Manifest number: 2C43
Signing time: Thu 16 Jul 2026 15:34:28 +0000
Manifest this update: Thu 16 Jul 2026 15:34:28 +0000
Manifest next update: Thu 23 Jul 2026 15:34:28 +0000
Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: 5UQsrcRk4vhOKFcMggKhNuu8adYR398bzT8lFHGXXiU=)
2: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: iD/ZZuFi7/RhaL5/ToA8PIzL2/6qCFz6N1JbxCrgnXQ=)
3: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: HzrAoaY9JYPA2q5sXzU/LWx/s6FAhl2YIVATDmW8pSM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl
rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 15:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11371 (0x2c6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D
Validity
Not Before: Jul 16 15:34:28 2026 GMT
Not After : Jul 23 15:34:28 2026 GMT
Subject: CN=6a58fa04-d7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4d:58:18:e6:45:11:ac:e6:22:77:57:8e:73:
d5:47:f4:e9:83:6a:ed:bf:ef:e7:ba:33:bb:07:a9:
20:58:d1:25:ed:25:18:9c:c9:04:95:1f:1f:d3:9b:
90:21:c0:8f:80:5b:31:45:5a:c5:f0:b6:c7:00:15:
90:34:d3:72:6e:02:c0:15:96:88:b9:3b:1b:2f:2a:
e1:2e:53:bf:f5:3e:eb:e5:65:4f:5b:2d:2a:9f:bd:
46:7a:2f:d7:8d:d5:07:e7:2c:5b:c6:62:9a:f9:76:
45:4b:5b:78:33:e4:47:0b:2f:14:96:ac:8e:f6:47:
f0:5f:d9:17:36:21:2c:b4:3f:48:8a:be:8b:6a:e8:
dd:2d:ec:9d:78:76:6e:9a:f7:a9:df:0d:b1:57:09:
11:0f:a4:68:43:22:a8:d8:69:f4:47:71:75:a9:c1:
b9:f2:26:6d:4d:51:ac:0b:78:cb:68:bc:ba:e8:30:
46:3d:dd:f3:72:bf:bb:9e:09:3c:3e:ce:b1:54:a1:
db:33:c9:25:b2:88:cf:22:f6:0a:ec:a7:77:b7:67:
16:93:81:b8:0d:fc:34:4a:4c:08:de:07:ab:5c:30:
03:6c:4a:d1:f1:68:a7:8a:f6:8c:da:d0:67:76:ca:
ff:76:50:39:b2:1f:7c:1a:b6:d0:1a:e6:84:5e:ad:
33:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:30:53:86:5A:CF:42:21:42:61:D8:E4:D5:FA:29:80:C8:67:8C:48
X509v3 Authority Key Identifier:
keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
33:5c:4b:2d:fe:f5:9a:71:71:2d:9b:f7:0d:f8:1e:f9:be:6f:
b5:ff:a7:4a:46:e0:02:69:b6:9a:97:01:af:dc:8c:86:c5:26:
3c:f0:af:af:b1:bd:f7:e2:24:8a:68:75:68:87:78:63:7c:b8:
5b:dc:13:81:21:01:5d:91:72:5c:51:d4:1e:43:42:23:37:16:
52:a2:a2:cc:e2:a2:24:8a:4a:0f:c9:15:fe:c1:05:0c:7b:e0:
76:81:c1:38:4d:86:0b:8f:1a:12:80:02:06:be:f0:42:fc:7d:
60:c7:9c:98:a7:61:57:6d:e2:2c:10:e2:b3:96:6f:4a:c4:b8:
71:df:d7:5f:56:ac:07:a7:4a:c6:cd:8d:b2:cc:5a:b0:9e:62:
6f:30:c8:ee:f3:e6:4a:a9:b4:26:98:c0:3c:a1:af:64:7a:4c:
14:7f:e3:fc:61:ed:02:3a:13:40:3d:48:6f:ae:fb:78:7c:29:
b9:b7:e6:29:2b:bb:cd:b5:b7:6b:e1:56:12:87:5c:86:2f:ac:
78:1e:dd:15:65:a9:0a:b8:02:d0:b9:6a:99:b1:77:cf:a9:66:
ec:f9:ad:43:38:00:91:80:65:b0:a7:cc:90:e7:2a:b4:1b:f5:
04:d7:90:95:d8:69:c1:fa:35:b2:45:e1:d3:7f:50:7e:b8:99:
c1:2a:0b:0e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICLGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0
QkE4QkEzNkQwHhcNMjYwNzE2MTUzNDI4WhcNMjYwNzIzMTUzNDI4WjAYMRYwFAYD
VQQDEw02YTU4ZmEwNC1kN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApE1YGOZFEazmIndXjnPVR/Tpg2rtv+/nujO7B6kgWNEl7SUYnMkElR8f05uQ
IcCPgFsxRVrF8LbHABWQNNNybgLAFZaIuTsbLyrhLlO/9T7r5WVPWy0qn71Gei/X
jdUH5yxbxmKa+XZFS1t4M+RHCy8UlqyO9kfwX9kXNiEstD9Iir6LaujdLeydeHZu
mvep3w2xVwkRD6RoQyKo2Gn0R3F1qcG58iZtTVGsC3jLaLy66DBGPd3zcr+7ngk8
Ps6xVKHbM8klsojPIvYK7Kd3t2cWk4G4Dfw0SkwI3gerXDADbErR8WinivaM2tBn
dsr/dlA5sh98GrbQGuaEXq0zfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE0wU4Za
z0IhQmHY5NX6KYDIZ4xIMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE
NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv
MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx
YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAM1xLLf71mnFxLZv3Dfge+b5vtf+nSkbgAmm2mpcBr9yMhsUmPPCvr7G99+Ik
imh1aId4Y3y4W9wTgSEBXZFyXFHUHkNCIzcWUqKizOKiJIpKD8kV/sEFDHvgdoHB
OE2GC48aEoACBr7wQvx9YMecmKdhV23iLBDis5ZvSsS4cd/XX1asB6dKxs2Nssxa
sJ5ibzDI7vPmSqm0JpjAPKGvZHpMFH/j/GHtAjoTQD1Ib677eHwpubfmKSu7zbW3
a+FWEodchi+seB7dFWWpCrgC0LlqmbF3z6lm7PmtQzgAkYBlsKfMkOcqtBv1BNeQ
ldhpwfo1skXh039QfriZwSoLDg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:22:35 2026 by rpki-client