
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json)
Hash identifier: /fmb7ASkULKYqG//pdxt+6/GnQAwc8ElUSdDf4XTgos=
Subject key identifier: AB:32:94:8B:BB:19:88:62:4D:3B:95:76:FC:47:55:F9:69:D9:AD:41
Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
Certificate serial: 0141
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
Manifest number: 0138
Signing time: Fri 17 Jul 2026 06:39:19 +0000
Manifest this update: Fri 17 Jul 2026 06:39:18 +0000
Manifest next update: Fri 24 Jul 2026 06:39:18 +0000
Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: DwRqZohAX1gNQa0/GDIxVbtVehcvc78hHU8UJXnK9V4=)
2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: vVE/wYQljIOEW6qq0MvXd9SjBMo9AS5Tw8SXEPHuwyo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl
rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:39:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321 (0x141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E520F, serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E
Validity
Not Before: Jul 17 06:39:18 2026 GMT
Not After : Jul 24 06:39:18 2026 GMT
Subject: CN=6a59ce17-5034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:89:9b:92:b9:25:3d:0b:36:19:3c:e0:8a:c0:
0f:d8:60:a0:f6:96:6e:11:03:2c:dd:c0:bb:2c:d5:
b2:00:8e:27:df:02:52:a7:72:91:af:c7:3f:77:65:
34:90:4d:ab:29:71:d2:a2:9d:08:70:87:13:73:a7:
2b:bf:83:b1:31:25:f2:56:1e:ed:a5:c3:b4:4a:b5:
a5:3a:9e:32:b8:65:f3:5f:62:6d:6a:64:ab:99:3c:
8f:25:04:23:bd:a0:02:bc:5f:b2:73:9b:54:8d:4b:
5f:0f:7c:a7:a7:a6:36:aa:ca:aa:07:98:f8:43:b1:
c1:c0:4e:74:83:c0:c0:14:c7:a3:7d:8b:b6:37:51:
5b:74:12:79:51:57:89:a5:b9:89:14:65:7f:f5:7d:
d7:0e:6b:85:75:c9:97:6e:4a:6a:27:e3:fd:a6:c8:
7f:b8:55:e0:5c:78:87:41:06:9e:a3:bb:b3:2f:66:
91:c7:31:53:41:19:a4:ef:a7:4f:99:86:0f:90:57:
39:98:84:be:c9:ee:bd:76:b5:5f:45:82:73:95:a6:
24:e3:eb:31:94:81:65:e8:0e:22:26:cf:e1:32:90:
6f:42:ec:8a:33:de:b7:a6:2e:e7:d6:87:da:23:7b:
45:9c:04:e9:4c:67:d1:34:9b:ad:cf:6e:e4:7e:41:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:32:94:8B:BB:19:88:62:4D:3B:95:76:FC:47:55:F9:69:D9:AD:41
X509v3 Authority Key Identifier:
keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a7:92:cd:d8:ce:58:89:cd:93:70:c8:0f:11:27:bf:f0:15:bf:
4a:33:a5:8c:f1:c4:86:5e:c4:17:65:b8:05:bc:64:69:34:30:
71:4b:94:13:a9:bc:6a:0f:df:01:19:8c:32:0b:a1:32:bf:ca:
c7:4e:fb:7a:83:13:d5:f6:f3:16:af:11:05:9f:aa:b2:f2:0a:
01:05:47:f4:8a:80:61:82:ba:32:98:6f:a4:49:50:c6:ed:ce:
fa:c7:d2:28:a5:4a:bd:7b:d3:c7:95:22:f9:91:77:a2:62:3a:
ad:e8:23:9f:0f:19:67:d5:b4:d7:ec:03:b6:43:ce:43:fa:a1:
d4:ad:9b:e5:6e:90:5c:7c:53:77:18:92:34:cb:b4:61:1a:40:
43:38:11:cb:c8:3b:2c:43:c0:a7:f4:84:5c:bf:04:79:22:f5:
39:9a:d6:00:b1:9c:b9:e5:6b:75:80:48:4f:d9:06:0d:7e:e9:
dc:f2:a9:54:40:33:09:47:49:b7:bd:e2:78:44:e1:92:85:6e:
fc:f4:c2:52:17:50:a2:88:09:5c:ad:01:c8:4d:87:3d:db:36:
21:ea:21:13:7c:65:e0:b7:46:e8:9b:4f:6a:1c:1a:a9:a3:95:
1a:29:7f:89:73:87:2b:eb:ae:43:8b:4e:84:a9:66:8b:09:e0:
d3:71:1e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:07 2026 by rpki-client