
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft
File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json)
Hash identifier: wdQK7a+aC7qmybY4eRvq/mjVoZEsZQNooprR57GdB4w=
Subject key identifier: CF:46:E3:7F:99:07:77:20:AA:49:21:EF:5D:5D:34:0E:06:EF:2D:7D
Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B
Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B
Certificate serial: 020A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft
Manifest number: 0204
Signing time: Wed 15 Jul 2026 04:04:47 +0000
Manifest this update: Wed 15 Jul 2026 04:04:47 +0000
Manifest next update: Wed 22 Jul 2026 04:04:47 +0000
Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: T+SobbfAdiCe0K6cwTqpb9IpoVP4ZreyCxPigZPacIE=)
2: uBjXwSK2dkrvdHR2yxPpHoA0_4U.asa (hash: YOXKkz0Fmo2/c6LztWniOULV+zi5rkCLcvFXCPhMNVI=)
3: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: 5SIEytqj/kUtficVvfQzNkbf84VZDuhF0/ee1j7nlyY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl
rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Jul 2026 04:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 522 (0x20a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B
Validity
Not Before: Jul 15 04:04:47 2026 GMT
Not After : Jul 22 04:04:47 2026 GMT
Subject: CN=6a5706df-9142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:13:95:01:0b:ef:34:c0:d6:aa:3a:fc:f3:5c:
b6:65:c8:89:97:e9:6a:03:06:26:8d:da:a2:9e:80:
d1:21:fa:f6:d6:08:28:29:47:a1:bf:b9:69:83:d4:
e3:bd:d8:4d:c8:89:df:52:fd:ce:81:72:87:ff:05:
1a:f2:52:7c:c3:26:2a:6d:7f:e3:25:42:71:47:45:
0c:87:c5:8f:4e:14:0d:7c:24:e3:7f:d5:71:2c:bf:
10:2c:36:81:66:8c:5e:2d:e1:27:6a:82:9d:de:a3:
9e:ac:11:89:b2:15:c0:da:56:68:dd:f2:ba:9d:23:
1f:3e:1d:29:02:7f:de:6a:8b:df:d2:32:1d:29:f6:
8e:35:a5:4b:6a:a2:c2:01:30:53:23:e4:86:1c:42:
dd:34:db:8d:0d:21:37:db:9b:cc:4d:71:ee:b9:0c:
d9:da:d3:9d:b9:ba:66:8c:54:7b:a4:85:ea:56:9f:
2b:e3:6e:10:97:0f:e0:12:62:0f:9a:c8:16:5b:73:
f6:5c:c1:7f:5e:fe:9b:7e:cf:c1:f5:e9:39:9b:cf:
19:61:03:7c:fe:db:4a:29:e0:69:d3:66:2a:04:f7:
4f:f6:f5:a8:08:87:96:77:b9:d0:a6:39:8f:59:ec:
9c:3a:0e:c7:f4:be:8c:3e:ac:ec:72:13:54:1d:45:
7b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:46:E3:7F:99:07:77:20:AA:49:21:EF:5D:5D:34:0E:06:EF:2D:7D
X509v3 Authority Key Identifier:
keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
15:e8:f5:53:58:bd:14:7b:4c:80:ca:59:66:b8:fb:d0:33:12:
06:42:c9:f5:60:d2:f0:ea:bf:08:7c:82:8f:6e:cc:5a:8b:a8:
16:c9:b8:f4:e0:6d:3d:f7:c6:dd:7c:68:d3:86:0f:83:af:a1:
8c:9c:0b:0b:cf:4e:89:24:82:11:32:ad:e4:2c:51:0a:98:3f:
64:9e:f1:44:3d:1c:40:a7:ca:de:b1:8f:26:93:4a:e6:a9:b3:
8e:86:d8:56:93:c9:8f:4b:10:03:44:e8:1e:bd:0f:b6:6c:8c:
6e:99:4c:e7:ce:2e:a6:8a:f6:8d:ec:f4:e7:b7:2f:0a:ba:3e:
cc:50:82:e7:d0:a1:ef:87:52:b2:a6:68:c7:c3:48:90:93:89:
37:c7:a0:08:35:2a:43:62:3d:dc:9d:ed:8c:8f:81:98:4b:73:
d7:32:6e:6b:20:e0:09:9a:cc:6a:fd:64:fa:0b:fe:a9:5c:7f:
59:80:07:26:16:12:b8:62:70:25:48:d8:18:09:8d:2f:51:d8:
cb:72:5a:93:30:64:24:e2:e4:f8:02:75:e0:f4:e5:13:01:64:
bf:2e:10:3f:26:1b:87:29:13:40:93:af:4e:27:b4:e6:e7:c2:
ae:e2:59:72:76:44:70:38:64:35:53:71:50:73:d0:00:53:cd:
69:93:67:70
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy
QjI0RjY4MEIwHhcNMjYwNzE1MDQwNDQ3WhcNMjYwNzIyMDQwNDQ3WjAYMRYwFAYD
VQQDEw02YTU3MDZkZi05MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwBOVAQvvNMDWqjr881y2ZciJl+lqAwYmjdqinoDRIfr21ggoKUehv7lpg9Tj
vdhNyInfUv3OgXKH/wUa8lJ8wyYqbX/jJUJxR0UMh8WPThQNfCTjf9VxLL8QLDaB
ZoxeLeEnaoKd3qOerBGJshXA2lZo3fK6nSMfPh0pAn/eaovf0jIdKfaONaVLaqLC
ATBTI+SGHELdNNuNDSE325vMTXHuuQzZ2tOdubpmjFR7pIXqVp8r424Qlw/gEmIP
msgWW3P2XMF/Xv6bfs/B9ek5m88ZYQN8/ttKKeBp02YqBPdP9vWoCIeWd7nQpjmP
WeycOg7H9L6MPqzschNUHUV7lwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM9G43+Z
B3cgqkkh711dNA4G7y19MB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD
OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh
QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD
WEdyeGRxWHdMNkFySlBhQXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAFej1U1i9FHtMgMpZZrj70DMSBkLJ9WDS8Oq/CHyCj27MWouoFsm49OBtPffG
3Xxo04YPg6+hjJwLC89OiSSCETKt5CxRCpg/ZJ7xRD0cQKfK3rGPJpNK5qmzjobY
VpPJj0sQA0ToHr0PtmyMbplM584upor2jez057cvCro+zFCC59Ch74dSsqZox8NI
kJOJN8egCDUqQ2I93J3tjI+BmEtz1zJuayDgCZrMav1k+gv+qVx/WYAHJhYSuGJw
JUjYGAmNL1HYy3JakzBkJOLk+AJ14PTlEwFkvy4QPyYbhykTQJOvTie05ufCruJZ
cnZEcDhkNVNxUHPQAFPNaZNncA==
-----END CERTIFICATE-----
Generated at Wed Jul 15 10:16:09 2026 by rpki-client