
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json)
Hash identifier: lSXpY7I55RrinhBQ12El8GW0tCPug1OmTR623p1Xx8Y=
Subject key identifier: 1C:EF:46:78:18:BF:5D:9A:E7:E5:46:CC:81:F8:78:D9:8E:B8:0B:98
Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F
Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F
Certificate serial: 0216
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
Manifest number: 0210
Signing time: Fri 17 Jul 2026 03:55:09 +0000
Manifest this update: Fri 17 Jul 2026 03:55:09 +0000
Manifest next update: Fri 24 Jul 2026 03:55:09 +0000
Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: adiZpayKJmeonNNfx1ScbYPqXuUCYYlRhJ0WbFIH/0k=)
2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: WP8HegPa5EokTKx706o1KpMqrQcLXlZh4ZkoerJ4FaU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl
rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:55:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 534 (0x216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F
Validity
Not Before: Jul 17 03:55:09 2026 GMT
Not After : Jul 24 03:55:09 2026 GMT
Subject: CN=6a59a79d-562b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:14:69:52:57:89:7d:53:69:9d:30:5b:e2:85:
07:af:e0:84:f9:a6:71:55:2e:dc:1e:be:34:55:fa:
33:00:29:49:34:82:f8:36:a3:e1:d5:57:a5:02:e6:
42:da:07:9f:a4:6a:33:e4:b3:a1:4a:e9:6a:10:7d:
74:93:4c:bd:76:f2:aa:7a:28:1f:11:03:60:1d:ff:
fb:a9:c7:2b:03:32:12:f3:8d:d6:dd:d6:25:df:d6:
03:dd:7a:16:3c:5f:e3:40:41:b2:4e:0a:bc:43:62:
96:00:e7:24:28:51:cb:be:cc:fc:37:06:0a:b5:4e:
99:35:7d:06:47:3a:05:af:d0:61:24:7d:91:eb:f8:
83:c5:bc:9d:b8:07:1d:91:41:d1:48:fa:7f:79:52:
9e:40:d5:45:f2:50:ed:5f:cf:b3:e7:df:83:08:1a:
37:22:e5:18:bf:43:c6:c4:2f:2c:81:78:34:89:55:
83:ca:52:6c:e6:8c:63:88:89:7b:fa:5b:98:29:ed:
26:30:ce:0d:1c:f3:eb:1f:a4:ad:db:f6:b8:b6:31:
7c:d4:14:6a:93:47:d1:e2:c4:fe:b1:1a:74:d7:8e:
0a:7e:ec:5c:20:09:ea:98:d6:43:08:31:aa:b9:4e:
c4:c0:73:e2:b2:b6:44:dc:53:f7:ac:90:e6:b7:cc:
46:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EF:46:78:18:BF:5D:9A:E7:E5:46:CC:81:F8:78:D9:8E:B8:0B:98
X509v3 Authority Key Identifier:
keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
48:87:20:ff:d2:eb:16:fa:b6:51:30:e2:9a:4a:6e:59:14:31:
17:7b:c7:92:0c:17:bd:b4:b0:ed:0a:05:ee:8f:14:9e:2d:fc:
ff:a7:d8:90:80:51:7a:64:f4:c2:c5:3e:89:7e:f3:0a:15:26:
cd:1f:f0:a4:e0:de:b8:67:ef:06:05:7b:83:c6:67:4d:eb:88:
94:11:03:bf:97:16:34:31:0f:b9:05:5d:77:41:dc:4a:05:f6:
a1:2d:82:2c:52:1f:76:82:ca:5f:ce:ec:71:c3:c5:ef:56:35:
b4:56:41:5c:fd:a2:b9:df:03:22:0b:f2:6d:30:d2:d5:c9:07:
70:7f:c1:a1:f8:3d:f9:ea:d9:99:6a:10:ec:fc:ad:53:9c:b7:
51:67:ca:cb:b3:36:8e:91:46:53:db:2d:74:2c:6f:d7:33:84:
ca:71:be:8e:bf:25:98:fa:cd:1b:24:4c:f7:10:50:57:bf:7e:
c7:8e:ca:1f:03:65:41:ca:9f:18:9a:b2:36:84:d5:ec:16:1f:
23:ae:e8:eb:7c:f5:e4:61:87:d3:06:dd:0f:b1:b5:72:d9:aa:
86:cd:fe:fd:53:d1:50:aa:ac:6c:d7:5e:99:5d:45:bd:73:0c:
ce:13:54:30:6d:89:25:ef:7d:3b:f4:8b:ca:54:09:ba:20:ef:
82:4c:79:7b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG
MjJBOENGNUYwHhcNMjYwNzE3MDM1NTA5WhcNMjYwNzI0MDM1NTA5WjAYMRYwFAYD
VQQDEw02YTU5YTc5ZC01NjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqBRpUleJfVNpnTBb4oUHr+CE+aZxVS7cHr40VfozAClJNIL4NqPh1VelAuZC
2gefpGoz5LOhSulqEH10k0y9dvKqeigfEQNgHf/7qccrAzIS843W3dYl39YD3XoW
PF/jQEGyTgq8Q2KWAOckKFHLvsz8NwYKtU6ZNX0GRzoFr9BhJH2R6/iDxbyduAcd
kUHRSPp/eVKeQNVF8lDtX8+z59+DCBo3IuUYv0PGxC8sgXg0iVWDylJs5oxjiIl7
+luYKe0mMM4NHPPrH6St2/a4tjF81BRqk0fR4sT+sRp0144KfuxcIAnqmNZDCDGq
uU7EwHPisrZE3FP3rJDmt8xGYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBzvRngY
v12a5+VGzIH4eNmOuAuYMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE
QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296
MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR
MUpkdmJpbGhFN3J5S296MTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEASIcg/9LrFvq2UTDimkpuWRQxF3vHkgwXvbSw7QoF7o8Uni38/6fYkIBRemT0
wsU+iX7zChUmzR/wpODeuGfvBgV7g8ZnTeuIlBEDv5cWNDEPuQVdd0HcSgX2oS2C
LFIfdoLKX87sccPF71Y1tFZBXP2iud8DIgvybTDS1ckHcH/Bofg9+erZmWoQ7Pyt
U5y3UWfKy7M2jpFGU9stdCxv1zOEynG+jr8lmPrNGyRM9xBQV79+x47KHwNlQcqf
GJqyNoTV7BYfI67o63z15GGH0wbdD7G1ctmqhs3+/VPRUKqsbNdemV1FvXMMzhNU
MG2JJe99O/SLylQJuiDvgkx5ew==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:13:09 2026 by rpki-client