
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json)
Hash identifier: q+zANsdd1RMj6xvf2NFsS1dY/CTL0C8pN0tJA55gaBM=
Subject key identifier: E1:5B:E6:0E:E1:E8:E5:A6:30:EC:2E:5D:12:7D:22:CA:08:F6:C5:99
Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Certificate serial: 05CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
Manifest number: 05C1
Signing time: Sun 12 Jul 2026 23:09:38 +0000
Manifest this update: Sun 12 Jul 2026 23:09:37 +0000
Manifest next update: Sun 19 Jul 2026 23:09:37 +0000
Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: gNu80mHH6qiO+hUjacXVi9Y8MbUEOZo3/wkf6ZDG/mA=)
2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl
rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 Jul 2026 23:09:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1487 (0x5cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Validity
Not Before: Jul 12 23:09:37 2026 GMT
Not After : Jul 19 23:09:37 2026 GMT
Subject: CN=6a541eb2-ea32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:5f:f5:58:71:51:7e:cf:5a:52:1f:87:36:4e:
8b:3f:91:29:1a:b3:cb:f2:ca:e9:ba:24:8d:87:02:
14:cc:b3:30:23:c3:88:35:9b:5d:81:a9:7b:e6:e8:
c9:7d:10:d4:92:48:0d:3d:a2:22:ec:5a:6d:7e:2b:
15:0c:74:cb:a4:aa:cd:a1:6c:23:2b:9b:08:6c:1b:
db:3d:6c:6b:6f:ae:95:7e:b3:d5:6f:e5:5f:42:91:
bd:6b:4d:67:0b:24:f7:db:ce:54:15:f2:03:3e:e8:
76:4c:72:4e:b4:ed:d2:db:da:1f:86:a8:89:85:f7:
73:1c:5e:d2:21:68:2e:67:7f:0d:42:98:4b:65:25:
4e:a0:37:35:d0:24:dc:b6:52:56:e8:4a:ee:e1:03:
2a:21:c4:35:0e:99:19:fa:4c:76:87:bd:ea:c3:3e:
68:19:f1:57:be:71:ab:4e:ce:87:9b:e2:b5:c7:fd:
b9:52:76:3c:6a:f2:38:12:4b:9e:50:62:60:9d:f3:
54:b2:1f:30:5a:9f:3d:1d:11:6e:92:65:c8:2a:4b:
bc:5f:81:da:a1:08:2d:1e:c6:30:02:06:82:e8:cf:
76:4c:bc:ab:2e:98:2f:4c:1d:6f:48:32:11:1b:62:
e6:5d:06:9a:54:1e:47:08:92:92:d0:ed:24:e7:cf:
ce:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:5B:E6:0E:E1:E8:E5:A6:30:EC:2E:5D:12:7D:22:CA:08:F6:C5:99
X509v3 Authority Key Identifier:
keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:47:36:3c:9b:06:7a:34:0a:f1:3e:d3:33:7a:6a:2d:83:e8:
cf:10:7b:20:20:5b:bb:10:d2:ee:48:89:11:5d:21:51:bf:90:
56:ac:40:44:22:32:ab:48:de:d6:92:b5:28:9f:55:09:7d:0d:
cb:f5:41:de:be:f6:09:39:14:02:07:fe:b6:70:6d:b2:d5:0f:
b8:aa:31:4b:97:6f:97:c4:9a:32:b6:93:c0:66:8f:e5:f3:08:
2c:ab:7e:05:e1:d7:e7:97:39:aa:f7:9b:66:75:88:a6:22:88:
5c:66:ed:e2:37:24:a9:8f:28:28:bf:87:78:e9:09:3d:a7:31:
11:e2:f4:2a:b2:c2:b5:b0:1f:2e:67:aa:7a:4a:4d:a4:a9:eb:
3b:fb:48:5f:8f:3b:4b:31:76:f0:29:cc:1c:0a:23:49:9c:98:
55:13:4c:5b:70:ef:39:5c:e1:a9:9d:30:58:41:65:3a:c7:58:
28:d8:ec:b3:07:20:6a:d8:ae:7e:7c:68:06:5d:c9:b9:b6:52:
55:9f:67:ce:1b:77:0e:c5:c1:cb:39:77:4f:43:40:e0:f4:3d:
86:6c:cf:d8:14:fa:24:b0:52:ae:29:a1:9a:2f:32:71:27:cb:
0d:03:ae:10:6f:df:3e:44:57:3e:a3:47:02:bb:56:1b:1b:63:
10:2e:e6:85
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1
NURCMzFDRTgwHhcNMjYwNzEyMjMwOTM3WhcNMjYwNzE5MjMwOTM3WjAYMRYwFAYD
VQQDEw02YTU0MWViMi1lYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA71/1WHFRfs9aUh+HNk6LP5EpGrPL8srpuiSNhwIUzLMwI8OINZtdgal75ujJ
fRDUkkgNPaIi7FptfisVDHTLpKrNoWwjK5sIbBvbPWxrb66VfrPVb+VfQpG9a01n
CyT3285UFfIDPuh2THJOtO3S29ofhqiJhfdzHF7SIWguZ38NQphLZSVOoDc10CTc
tlJW6Eru4QMqIcQ1DpkZ+kx2h73qwz5oGfFXvnGrTs6Hm+K1x/25UnY8avI4Ekue
UGJgnfNUsh8wWp89HRFukmXIKku8X4HaoQgtHsYwAgaC6M92TLyrLpgvTB1vSDIR
G2LmXQaaVB5HCJKS0O0k58/OXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOFb5g7h
6OWmMOwuXRJ9IsoI9sWZMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB
ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI
T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN
VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEATkc2PJsGejQK8T7TM3pqLYPozxB7ICBbuxDS7kiJEV0hUb+QVqxARCIyq0je
1pK1KJ9VCX0Ny/VB3r72CTkUAgf+tnBtstUPuKoxS5dvl8SaMraTwGaP5fMILKt+
BeHX55c5qvebZnWIpiKIXGbt4jckqY8oKL+HeOkJPacxEeL0KrLCtbAfLmeqekpN
pKnrO/tIX487SzF28CnMHAojSZyYVRNMW3DvOVzhqZ0wWEFlOsdYKNjsswcgatiu
fnxoBl3JubZSVZ9nzht3DsXByzl3T0NA4PQ9hmzP2BT6JLBSrimhmi8ycSfLDQOu
EG/fPkRXPqNHArtWGxtjEC7mhQ==
-----END CERTIFICATE-----
Generated at Mon Jul 13 20:40:22 2026 by rpki-client