
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft
File: HLlfP3vebhmbdAuSgqxyKk7amZs.mft (raw, json)
Hash identifier: 2Qp8UPiZn/m6pNCz4WGKkOqcembtgdtEtjqFGVNkSB4=
Subject key identifier: A8:B0:CB:E5:CE:FE:9E:1A:44:AB:00:D9:45:1C:3B:5D:0B:F0:A7:7D
Authority key identifier: 1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B
Certificate issuer: /CN=A91E4EEF/serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B
Certificate serial: 91
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft
Manifest number: 7B
Signing time: Fri 17 Jul 2026 09:11:59 +0000
Manifest this update: Fri 17 Jul 2026 09:11:58 +0000
Manifest next update: Fri 24 Jul 2026 09:11:58 +0000
Files and hashes: 1: HLlfP3vebhmbdAuSgqxyKk7amZs.crl (hash: 4sarY0+rXEYzIV6gfkz6YGKEMCMK+r0Gg+Ez9SFd25U=)
2: 0C1F9D8CF13A11F08789470C566F56BC.roa (hash: sgoDIUBe0jr7XN1MyW0ONqjTLm6kK+bIbhy55Li2/S8=)
3: 304D9EDEF13A11F0A5B04E41566F56BC.roa (hash: AC/jIeXBOHw70y2QOJSmCZ+NDE9I0e7M9WpwuYpLz9U=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl
rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 09:11:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4EEF, serialNumber=1CB95F3F7BDE6E199B740B9282AC722A4EDA999B
Validity
Not Before: Jul 17 09:11:58 2026 GMT
Not After : Jul 24 09:11:58 2026 GMT
Subject: CN=6a59f1df-2305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:20:61:da:c0:33:cd:c3:c4:64:d4:ac:14:
62:32:17:42:b4:89:e8:b8:77:e9:37:bc:58:a8:fc:
2e:58:75:4e:e1:28:14:ec:64:ed:c1:48:c6:3b:bd:
4e:68:4b:fc:28:dd:3e:6a:9c:91:0f:0b:1e:66:e6:
68:31:bf:14:fe:ec:cd:92:44:5f:02:a2:af:b0:40:
96:e1:24:d5:07:5c:06:66:bb:7b:f9:1e:d6:30:4c:
06:3f:80:e1:4c:13:8b:af:da:2d:43:36:13:cf:ba:
ce:99:b1:cd:1e:63:1e:aa:01:9c:c3:24:4b:bd:bc:
90:cb:73:8e:32:30:0d:4e:50:4f:38:fd:43:47:ec:
f4:f5:bb:ba:6a:93:03:f9:e1:f3:c8:ca:bd:7f:9a:
81:49:79:a0:5f:7f:b1:9e:8b:f3:30:58:86:b1:ec:
81:f8:d9:99:a9:f1:f5:4d:a3:11:2a:41:83:43:a5:
f8:d8:27:46:0e:8f:d1:54:e0:16:5d:e9:67:e2:1d:
b1:f1:b2:47:88:87:0f:ca:a0:50:cb:80:2c:d1:c2:
88:06:79:3c:32:29:21:b4:45:8b:c0:10:70:eb:9a:
fb:d2:bf:9a:4d:ec:ce:41:37:32:52:2e:27:8c:96:
36:d3:22:93:d9:0b:3c:b5:19:22:73:88:7e:81:18:
89:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B0:CB:E5:CE:FE:9E:1A:44:AB:00:D9:45:1C:3B:5D:0B:F0:A7:7D
X509v3 Authority Key Identifier:
keyid:1C:B9:5F:3F:7B:DE:6E:19:9B:74:0B:92:82:AC:72:2A:4E:DA:99:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLlfP3vebhmbdAuSgqxyKk7amZs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EEF/CEA836BADEF311F09ED41296576F56BC/HLlfP3vebhmbdAuSgqxyKk7amZs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:45:01:7c:ad:5f:7b:b0:de:a8:62:1a:c2:b3:50:ed:d3:07:
97:c7:d8:bf:0b:8d:9e:9f:8c:81:a8:35:a2:aa:bd:57:18:85:
dc:2a:9d:3e:39:61:9e:3c:ec:58:93:24:a2:9b:85:19:fa:8c:
1c:e4:78:46:1e:96:2e:c6:05:5a:69:bf:48:cf:33:2c:82:b4:
65:22:d4:5d:71:13:22:db:51:e9:8c:7c:92:48:14:0a:ff:ea:
3b:a8:b3:4d:5c:da:e9:04:88:38:5b:f7:04:cf:26:7a:ee:a5:
80:e4:dc:8a:4d:f6:f6:0e:e2:fc:b5:80:c2:3a:60:03:e9:26:
48:3e:ff:5d:ba:92:05:40:88:20:af:66:ae:44:1c:4a:c9:ca:
90:68:2f:7a:c8:d9:41:85:7e:29:34:07:6e:28:a1:30:a4:26:
a4:63:c7:e5:5c:ed:4a:11:31:fa:2d:d6:66:25:4b:25:ce:d7:
5d:d4:19:85:c2:93:3b:10:f1:0d:d7:9d:04:ea:c6:75:de:4b:
3f:a9:d1:52:aa:d4:40:93:53:80:e6:65:e7:8c:9a:ce:97:7f:
be:f9:fa:79:2f:61:d3:f1:c5:bb:4f:7c:3a:e7:e3:4d:b1:87:
11:5f:69:3e:41:d9:a0:0b:05:a5:f9:ab:f1:08:bd:d5:fb:4d:
f3:99:ae:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:16 2026 by rpki-client