
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json)
Hash identifier: 1yEi0B02b0nJ/f2wv9w+DNDLi657lduq5Z/NCJy7Iw0=
Subject key identifier: D2:3A:69:3F:C3:FA:36:8C:2D:98:E2:92:CE:84:B1:EF:E8:11:D4:8A
Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05
Certificate serial: 065F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
Manifest number: 0651
Signing time: Sat 04 Jul 2026 22:58:54 +0000
Manifest this update: Sat 04 Jul 2026 22:58:54 +0000
Manifest next update: Sat 11 Jul 2026 22:58:54 +0000
Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: VVtMbEtTF7/BUNDa6XuRvKYRzaOywjr+6IVZi/9WYVo=)
2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: wpTOnbFzHuZykJ8pDXVXmzxxqZkD4nI9a0iplVk0s2M=)
3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: cye1hIVFGwa2LCmeYD2ib4pZaHJ8xh8Jr5cItjYasmo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl
rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 22:58:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1631 (0x65f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05
Validity
Not Before: Jul 4 22:58:54 2026 GMT
Not After : Jul 11 22:58:54 2026 GMT
Subject: CN=6a49902e-d71a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e2:e8:73:6f:89:0a:81:cd:5a:82:13:55:c9:
a9:42:1a:42:c8:3f:60:61:66:96:a7:5f:68:d4:f0:
ab:e4:ab:f1:87:c9:e7:9a:0b:19:be:e8:1e:e6:0a:
0a:f5:71:c1:77:81:07:f2:26:36:90:18:26:b8:12:
fb:64:0f:10:39:3b:17:0e:3f:2e:d9:db:74:de:50:
b9:aa:dd:ed:a8:b7:ca:97:24:dc:b2:40:18:18:f8:
ce:4f:81:a4:79:c1:ad:32:f4:f5:2a:c3:90:97:93:
ee:f2:ed:b2:38:be:db:f3:6e:45:9c:f3:b3:12:07:
e7:f8:5e:ad:3a:9d:ed:0e:0f:07:32:0f:a1:7a:b5:
bb:c3:f4:b2:6d:28:bd:97:e7:ba:4d:3c:db:df:b8:
a5:36:d5:34:bc:7f:70:a2:14:55:2e:12:e7:ec:fe:
63:e3:95:49:fa:75:c4:5b:bc:c6:e2:86:24:c0:41:
2d:50:b1:bb:4e:9b:26:46:92:e3:fd:66:57:94:38:
e2:ac:74:9d:de:e3:f5:07:79:e5:5e:af:67:83:2b:
1e:e6:e0:2b:41:b3:37:1c:42:88:f5:c8:99:c6:d7:
8a:ba:4f:6c:18:ee:77:71:a2:c8:82:ee:cd:f8:71:
95:29:1d:e1:a3:a5:40:15:f2:45:24:71:b1:08:b6:
ee:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:3A:69:3F:C3:FA:36:8C:2D:98:E2:92:CE:84:B1:EF:E8:11:D4:8A
X509v3 Authority Key Identifier:
keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
41:20:95:e4:96:19:a1:fc:45:14:43:20:83:ab:9d:92:fa:27:
f1:85:08:13:04:52:d1:ac:f9:18:4f:f4:6d:07:22:f4:5a:a6:
35:92:52:06:28:9d:3e:e6:2a:6f:a0:8c:b2:f0:33:23:f8:cb:
72:1d:00:7a:ae:d5:7d:53:60:54:fe:1e:2d:a6:4e:de:ba:02:
1a:b5:ab:b4:5f:16:59:28:35:c5:6f:08:bb:6d:96:86:9d:37:
79:1d:5c:21:ac:8b:0c:35:1e:0d:7d:24:0e:35:16:b6:96:f9:
7c:62:f3:b5:39:83:f2:cc:51:8c:f8:36:c8:d9:e6:56:d1:fd:
58:2b:e6:dc:e4:f8:c2:da:82:11:a2:5c:22:f5:1b:16:91:9e:
c1:8f:cb:64:cb:d0:1b:84:b2:89:88:01:75:2c:e1:74:bb:32:
98:7a:ab:60:17:56:8e:29:53:46:f3:7b:7b:45:7c:18:5f:e9:
fc:cf:94:2b:08:04:06:ab:8e:95:bc:f2:02:4c:38:8d:c0:d3:
d7:b7:53:85:e4:80:0d:2d:cc:81:92:6b:4f:65:9f:a8:b2:7a:
7b:b5:99:56:39:02:f5:fc:27:02:30:65:36:b5:ec:ae:97:61:
dc:4f:75:3b:04:ef:64:ac:d6:f2:3c:d8:86:52:32:4b:31:86:
23:a0:51:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:14:35 2026 by rpki-client