
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft
File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json)
Hash identifier: BeS3ZxbgrBLeHQiV3uAFHdJBlchDvS1+RNkQiYmzG1Y=
Subject key identifier: A1:19:9A:B1:0D:D7:A9:5B:EC:CF:2E:F0:C2:8C:A1:F4:96:5E:28:25
Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39
Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939
Certificate serial: D2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft
Manifest number: CE
Signing time: Fri 17 Jul 2026 07:59:57 +0000
Manifest this update: Fri 17 Jul 2026 07:59:57 +0000
Manifest next update: Fri 24 Jul 2026 07:59:57 +0000
Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: kDR5QaZiZOddraX4zJWcZKVuEKxzIvhHyYqjOmJ8r/A=)
2: 29CA404A3B0D11F18EE2601DA2833773.roa (hash: Jzax6E6Sfv6INltxB8Hf3ktPyBHc/bZL9WLenaL6FpM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl
rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210 (0xd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939
Validity
Not Before: Jul 17 07:59:57 2026 GMT
Not After : Jul 24 07:59:57 2026 GMT
Subject: CN=6a59e0fd-5b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ae:16:45:3d:7c:25:6d:4a:5e:50:89:93:82:
65:61:9f:10:5b:e3:9d:eb:e6:27:5e:91:76:77:3e:
02:0d:0d:cd:0f:99:ce:33:89:3e:55:29:21:17:b0:
59:ba:8b:62:e6:ec:c2:19:77:7c:d0:f1:9d:91:d2:
b2:3e:d1:68:ce:ee:03:9b:6b:ec:93:a8:3e:94:12:
c3:44:c0:0a:3e:95:6e:6f:bf:12:0d:1e:88:42:0a:
28:78:85:6e:82:f3:5f:f6:72:15:67:56:c7:c6:ed:
63:b4:9e:e8:94:22:61:1a:29:f8:11:f7:7a:26:a0:
74:d8:6b:24:ab:34:f4:a6:ad:66:b3:9f:db:17:ff:
ae:a9:47:26:ed:d1:b0:1f:fa:01:da:29:35:07:df:
b3:2d:40:dd:ea:b7:be:0a:f8:57:bd:69:1d:23:2f:
d1:ba:4b:d2:22:be:d6:2f:2d:38:62:a3:8f:aa:30:
3c:00:e3:4e:9d:8e:6a:10:a3:24:05:fa:d3:7d:20:
58:15:5c:64:b6:49:29:e1:af:11:56:54:1c:3b:12:
c4:3c:c9:a9:21:1a:a5:9c:b7:eb:2a:f4:94:bd:bb:
f8:28:0a:1c:79:6d:c9:54:e9:fd:d8:8c:04:bb:96:
4e:c5:8c:9e:c0:d5:09:41:17:41:83:93:c7:cd:bb:
6f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:19:9A:B1:0D:D7:A9:5B:EC:CF:2E:F0:C2:8C:A1:F4:96:5E:28:25
X509v3 Authority Key Identifier:
keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:15:29:7a:9b:2b:ef:e8:c8:cf:c9:3e:b7:d9:25:62:ea:b4:
82:32:c9:d1:9a:76:d9:87:bf:16:88:89:d2:9e:c7:48:79:b0:
d6:fb:ef:a5:db:3b:44:5b:9b:4a:a4:fb:dd:f2:78:c0:b0:53:
ab:a3:41:7a:b5:f6:79:15:3a:4b:4d:b8:95:f2:43:77:58:72:
24:c9:78:48:73:fc:43:e9:b5:5f:a7:e1:de:81:e2:4a:14:69:
f2:13:49:3a:30:11:fa:37:e2:d2:5f:1f:23:4f:76:2e:63:95:
8b:91:8e:66:46:ab:b1:8e:6d:e3:bb:19:66:8b:d0:95:5e:ab:
18:30:9f:f5:2d:0f:15:a6:81:53:27:ca:17:b9:9a:13:04:69:
3c:59:ba:7b:86:d5:99:ca:51:5c:df:e3:57:c7:6e:27:d8:a6:
8e:d9:5b:dc:97:b7:fb:80:6d:0e:46:ef:ae:db:fd:be:d7:65:
83:06:6d:5b:39:17:52:d6:e0:f3:11:d5:2f:c7:7d:a4:14:ae:
71:6d:51:1b:3c:55:48:0f:db:39:7d:60:40:ec:ed:02:91:62:
ab:6e:d9:8f:10:a9:8e:d2:ee:75:b3:63:1f:3a:22:af:96:fa:
94:91:a2:55:77:c2:d2:50:1d:85:7e:89:b7:4c:91:33:25:08:
90:05:27:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:26:50 2026 by rpki-client