
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft
File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json)
Hash identifier: sX5AxN1wnGKjXdroXp6dd0ex5G6P84Ls3jAMHVybkJs=
Subject key identifier: 33:50:19:4E:59:1A:48:C1:9D:5D:79:BA:46:03:FA:D7:C8:C5:09:6D
Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21
Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221
Certificate serial: 0211
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft
Manifest number: 0201
Signing time: Fri 17 Jul 2026 04:12:42 +0000
Manifest this update: Fri 17 Jul 2026 04:12:42 +0000
Manifest next update: Fri 24 Jul 2026 04:12:42 +0000
Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: /A/60cbEbFToCcdTM3HPrDFFClodZrIqMmOE+TWJ27A=)
2: E5196DA6335811F1BC79FB1BCA833773.roa (hash: vyYp7IA/5MNA4gMbec/CoUCTSiktnAR4FwpLUhRjRvU=)
3: 27A66CC4335811F18709AA0FCA833773.roa (hash: pPUHKA5s9wq04L2qfb/B2EY59WS05X4PfzFkdep1N34=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl
rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:12:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 529 (0x211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8AF2, serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221
Validity
Not Before: Jul 17 04:12:42 2026 GMT
Not After : Jul 24 04:12:42 2026 GMT
Subject: CN=6a59abba-9b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6f:76:30:78:d2:4d:a1:5d:77:26:70:7d:08:
c6:34:90:54:94:3b:a5:eb:1b:0f:8f:7d:f4:9a:7b:
f6:cf:10:11:42:0c:42:c5:52:44:25:a5:d3:22:35:
a8:37:6f:fe:b1:3c:12:5a:4a:85:13:9a:0a:16:09:
9b:d5:ec:38:79:bd:f3:57:bb:2d:6a:0a:b9:18:2d:
5d:7f:05:2c:10:b7:69:9d:ab:b8:d9:67:a2:60:34:
47:d1:f4:59:b9:e2:58:c0:2f:e4:8d:51:fb:f2:d9:
7a:42:60:15:20:b3:d5:bc:24:ab:38:02:fe:61:e0:
d6:8e:cc:72:71:2f:fc:ea:fb:e0:44:66:ae:af:db:
9a:45:9a:f9:1a:80:cf:a1:ba:22:c8:f4:0f:c8:e0:
84:b1:4f:21:4e:62:77:4d:27:f3:9f:51:58:50:39:
a7:ac:6b:d3:46:bd:32:70:4c:43:68:89:ef:b3:94:
10:0a:58:eb:54:f7:17:82:7a:0f:66:28:c2:72:aa:
ef:e6:47:cf:35:3e:4e:a5:eb:1f:7a:ea:7c:90:4a:
5f:28:13:b6:fb:26:67:db:4d:1d:55:65:66:60:95:
bd:c9:7f:de:36:7c:42:20:67:60:e0:cf:f1:9f:25:
ef:9d:f6:3c:e1:2f:5c:c9:66:3a:99:4e:da:b8:0d:
4c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:50:19:4E:59:1A:48:C1:9D:5D:79:BA:46:03:FA:D7:C8:C5:09:6D
X509v3 Authority Key Identifier:
keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
61:2b:24:82:30:39:0d:e1:97:ee:84:e7:a0:df:a6:d9:59:90:
b1:80:f3:52:93:db:5d:a3:1c:6a:89:af:bb:2c:d3:13:c2:42:
41:e1:e6:2a:ac:54:21:07:c1:c1:1e:0f:9e:92:fe:4b:42:94:
84:96:5d:60:3c:ba:89:f0:48:43:19:6f:81:be:af:a2:1a:30:
c9:6c:f1:60:ac:81:86:88:43:d5:9c:69:8a:cf:f1:95:30:97:
5e:07:39:6c:38:fe:f7:4b:cf:24:d8:cb:40:88:ce:17:5f:3b:
f2:2d:97:35:0a:32:df:8b:ff:50:d5:68:18:3c:cd:e0:1b:88:
39:b2:9c:b5:13:e1:2f:64:30:4d:96:a6:4a:21:a2:34:f8:ab:
40:b5:0b:d1:ee:9b:07:98:af:92:bf:f8:94:60:d3:52:48:fc:
eb:43:d1:4c:a9:fb:a5:98:33:7c:36:43:13:eb:dd:48:35:f7:
48:5f:42:43:5a:d5:eb:84:fc:b6:17:42:58:eb:a3:4e:70:fc:
74:ec:60:71:e8:62:d8:96:6b:69:5b:16:ca:8e:17:70:a4:c6:
fa:e3:09:2b:65:7c:e4:a8:e4:d5:11:b3:a6:78:39:a6:28:f4:
6a:62:42:13:aa:ef:f3:de:02:38:a5:53:9a:ed:18:ad:15:75:
7e:62:b6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:16:09 2026 by rpki-client