
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft
File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json)
Hash identifier: kGMeFA9tppUm9FCu/9v5g6sJ95ToXfk1D3Q7i5FXym8=
Subject key identifier: A5:C0:EF:EF:CD:B0:5D:86:D8:22:CF:C7:89:2A:54:D0:3F:06:40:5E
Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27
Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627
Certificate serial: 0E1C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft
Manifest number: 0E11
Signing time: Thu 16 Jul 2026 17:55:29 +0000
Manifest this update: Thu 16 Jul 2026 17:55:29 +0000
Manifest next update: Thu 23 Jul 2026 17:55:29 +0000
Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: 4/Ryn7YU0K9Stjm0J4zDRfZ5NI13ytuPgeAt1wuOO1g=)
2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: ob3kyKb+k6DfPg+34w85RGonL9slb2GFkKFVzFEICJQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl
rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 17:55:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3612 (0xe1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627
Validity
Not Before: Jul 16 17:55:29 2026 GMT
Not After : Jul 23 17:55:29 2026 GMT
Subject: CN=6a591b11-da46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ba:5b:f8:88:a5:22:f7:02:f3:dc:f6:39:f7:
b3:9c:44:55:ab:ad:73:37:ff:67:02:8f:ed:25:69:
71:79:74:6c:28:6e:3f:2b:65:9f:32:ff:0b:fa:01:
8a:6f:39:cb:9b:58:e3:7e:7a:83:a7:d3:a5:ec:21:
6f:1a:cf:bc:3c:52:0f:63:f6:a1:e7:9d:92:f0:ae:
ff:75:3b:7f:00:18:3f:c9:13:f5:8f:32:64:7a:60:
41:a0:d5:15:7a:aa:88:27:a3:08:ae:9f:88:f4:b9:
dc:ce:51:fc:f5:b0:8b:98:d5:d0:6b:8e:15:1d:12:
72:ea:62:1d:04:46:89:6b:a5:07:4a:ba:50:9b:bd:
e0:45:f5:03:3a:63:76:c3:71:6d:a0:06:01:f4:10:
7a:3a:70:9f:28:56:d9:14:72:6d:50:59:0e:15:74:
05:95:c1:49:74:a3:a9:b5:5b:5c:ce:06:59:c4:e7:
37:b2:14:37:52:5c:f5:b0:22:60:bf:5e:dd:8b:e1:
d0:91:93:71:c0:f1:af:80:33:b0:08:32:4a:be:83:
b3:5c:c2:38:e4:d9:5f:f8:a9:61:85:6f:f4:ad:ab:
dd:83:6d:2b:24:19:28:ad:3e:b3:7b:3d:7b:cb:b4:
96:97:c9:ae:6a:6c:0e:92:e2:e9:78:8c:b9:df:1f:
d7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C0:EF:EF:CD:B0:5D:86:D8:22:CF:C7:89:2A:54:D0:3F:06:40:5E
X509v3 Authority Key Identifier:
keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7d:ec:c9:d4:fb:7f:d3:66:c5:d4:7d:b9:83:34:a0:9d:fe:02:
2a:5e:ca:84:dd:90:df:75:e9:05:6f:5d:70:63:0d:44:c2:99:
c9:26:0e:6f:06:a9:34:b6:cb:06:db:ee:49:0c:fd:6d:32:20:
c6:b7:f2:d9:27:19:f0:fc:bf:8a:9e:83:3e:b6:7d:36:5d:be:
3a:08:dc:92:c4:c0:f2:1e:09:c6:cd:8f:91:76:e6:d1:14:cb:
18:55:7b:9b:5b:0a:db:eb:99:1a:1c:80:75:c3:2a:03:38:4f:
1e:20:c9:e5:1b:39:cd:25:5c:43:58:8d:72:c0:d9:58:60:70:
71:d8:65:79:37:f2:d5:90:27:bb:a1:10:d0:99:a6:4a:d3:85:
a3:85:97:e8:ae:72:72:a7:13:36:1b:40:07:76:4d:d4:b5:d2:
fa:f7:f0:06:e6:00:e8:0f:2c:cc:c4:57:83:75:9c:cb:ce:41:
91:f8:43:e9:0e:0f:df:37:d9:c1:2c:ea:6d:63:52:cb:13:28:
92:88:58:55:87:fe:4d:fd:38:a0:f0:a4:7d:5f:cc:1b:0f:4e:
6b:2b:6d:1d:b9:2d:b9:64:c9:b9:0e:03:7c:10:63:6f:a1:6d:
a3:79:e3:2f:eb:43:cb:ca:dd:b9:2e:e4:20:3a:fe:a8:80:70:
6b:81:3a:df
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0
NjIyRkQ2MjcwHhcNMjYwNzE2MTc1NTI5WhcNMjYwNzIzMTc1NTI5WjAYMRYwFAYD
VQQDEw02YTU5MWIxMS1kYTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArrpb+IilIvcC89z2OfeznERVq61zN/9nAo/tJWlxeXRsKG4/K2WfMv8L+gGK
bznLm1jjfnqDp9Ol7CFvGs+8PFIPY/ah552S8K7/dTt/ABg/yRP1jzJkemBBoNUV
eqqIJ6MIrp+I9LnczlH89bCLmNXQa44VHRJy6mIdBEaJa6UHSrpQm73gRfUDOmN2
w3FtoAYB9BB6OnCfKFbZFHJtUFkOFXQFlcFJdKOptVtczgZZxOc3shQ3Ulz1sCJg
v17di+HQkZNxwPGvgDOwCDJKvoOzXMI45Nlf+KlhhW/0ravdg20rJBkorT6zez17
y7SWl8muamwOkuLpeIy53x/XHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKXA7+/N
sF2G2CLPx4kqVNA/BkBeMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1
MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx
aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi
OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAfezJ1Pt/02bF1H25gzSgnf4CKl7KhN2Q33XpBW9dcGMNRMKZySYObwapNLbL
BtvuSQz9bTIgxrfy2ScZ8Py/ip6DPrZ9Nl2+OgjcksTA8h4Jxs2PkXbm0RTLGFV7
m1sK2+uZGhyAdcMqAzhPHiDJ5Rs5zSVcQ1iNcsDZWGBwcdhleTfy1ZAnu6EQ0Jmm
StOFo4WX6K5ycqcTNhtAB3ZN1LXS+vfwBuYA6A8szMRXg3Wcy85BkfhD6Q4P3zfZ
wSzqbWNSyxMokohYVYf+Tf04oPCkfV/MGw9OayttHbktuWTJuQ4DfBBjb6Fto3nj
L+tDy8rduS7kIDr+qIBwa4E63w==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:39 2026 by rpki-client