
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft
File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json)
Hash identifier: 1MOXZ5wdCe5F98SXtKrqiKbFxTebRj0k37fkGKNHn40=
Subject key identifier: 1D:D5:E9:B6:29:09:94:0F:EB:B4:3E:39:4E:A7:D5:3B:39:AF:20:55
Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47
Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47
Certificate serial: FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft
Manifest number: F4
Signing time: Fri 17 Jul 2026 07:31:58 +0000
Manifest this update: Fri 17 Jul 2026 07:31:57 +0000
Manifest next update: Fri 24 Jul 2026 07:31:57 +0000
Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: X6gQo1i4m/seHgIjPeAg9Is4LdjrrqNHhiymm15ksXk=)
2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: ZgPtES9Kb7/bZDuku74P3oPXELpqML+BgkqSggVYIcY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl
rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252 (0xfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47
Validity
Not Before: Jul 17 07:31:57 2026 GMT
Not After : Jul 24 07:31:57 2026 GMT
Subject: CN=6a59da6e-e2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b9:4a:03:40:8f:f2:db:72:35:61:21:90:de:
53:02:2a:0d:8b:f2:85:8f:5d:9b:d6:4e:a6:fe:31:
9f:c8:5a:1e:97:b7:03:04:68:3a:c9:a9:84:b4:3b:
0a:f2:56:0b:ae:df:5a:16:d1:e1:7b:16:cf:31:bd:
80:61:74:7e:bb:ec:b8:1b:5d:75:34:a5:e3:58:13:
07:7f:e8:65:ae:75:b1:77:8c:94:5f:a1:8f:ef:43:
a4:c4:50:1c:c7:58:8d:dd:ac:2a:a3:c9:b9:46:4c:
8d:3c:d3:0a:f4:5d:f6:da:cd:24:58:e6:da:a7:4f:
0e:09:8b:20:92:82:87:32:e8:5e:02:fc:92:36:7a:
86:29:99:d9:81:e8:98:b0:c2:ac:ff:21:1e:ac:53:
02:eb:09:4b:b5:cd:45:ae:a1:27:ad:fc:92:8e:44:
62:ce:c5:85:a6:7d:18:94:fa:d5:ea:d4:40:29:0d:
32:00:a5:78:cd:25:c5:91:aa:74:3e:23:f0:5e:c3:
1f:f5:61:33:81:b6:23:5f:d1:30:05:e9:c1:e0:e1:
7e:50:8b:0f:94:80:0d:35:a5:d2:df:79:69:61:8a:
39:26:3c:0d:dc:6f:34:03:37:b5:61:a4:7c:31:5a:
90:e2:d5:e7:d5:73:c7:6d:17:20:7e:ec:f0:68:0b:
37:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D5:E9:B6:29:09:94:0F:EB:B4:3E:39:4E:A7:D5:3B:39:AF:20:55
X509v3 Authority Key Identifier:
keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
23:05:4d:3c:62:92:a8:d8:6f:7d:7a:75:bc:87:e5:19:54:b0:
a5:42:04:f8:6d:38:94:a6:a5:b7:7a:c5:e9:42:79:fb:c3:cb:
52:5b:1d:cd:a3:21:b4:af:ac:9f:89:f4:af:e3:a2:1f:1c:e5:
a2:3a:28:a5:67:48:a0:00:14:bc:30:10:df:f4:d0:5b:f1:82:
51:1c:a5:98:2e:e6:33:7d:10:cf:63:3b:51:ae:ac:a2:07:10:
f2:18:0a:73:74:c8:8a:c3:50:3b:26:30:0b:fe:5a:19:15:f8:
bb:4a:05:2c:43:e2:42:56:c2:8e:87:ee:a2:09:3a:a4:04:f7:
8a:17:be:bd:82:3f:75:40:cd:03:8a:ce:e3:b2:bb:3c:04:45:
21:a0:9f:65:84:50:65:8e:35:e1:eb:52:47:a9:a7:3f:e2:15:
20:96:9c:ba:c5:3e:be:0c:c8:51:9f:d1:c9:24:60:cd:08:b6:
3c:87:f5:b8:75:92:3d:d1:17:29:31:c0:77:ea:c8:9d:38:35:
31:03:a9:c9:2d:43:29:9d:70:85:a2:88:95:ec:f1:22:a5:a0:
e9:73:fd:a6:6a:48:79:48:1d:f8:d6:b2:89:d0:a5:27:08:81:
96:77:f4:0c:a9:1b:4c:83:8d:d9:86:66:91:61:48:bf:49:51:
0a:a1:5d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:14:25 2026 by rpki-client