
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json)
Hash identifier: tf0vZVLc3jsj7bmg3QTIjgf50G/pbo90uKKgPK4zOcg=
Subject key identifier: 09:B8:B7:89:D2:BD:81:1C:F9:3C:A4:7C:C2:CC:9F:FB:8D:AF:74:0B
Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E
Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E
Certificate serial: 359E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
Manifest number: 357A
Signing time: Mon 06 Jul 2026 14:19:41 +0000
Manifest this update: Mon 06 Jul 2026 14:19:41 +0000
Manifest next update: Mon 13 Jul 2026 14:19:41 +0000
Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: te0aKXyco4zkKJa7euKwu9azgtFMQjy9KD47Y+BGWeY=)
2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: XQiiRoZi6pRqCcdlCvd3IdGsHWdpm/jnCGN7DrFAwWE=)
3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: dh5lUduMwHSl3wThPTXL9P/yi+GXIfLIHScJbSj8Rp0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl
rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 14:19:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13726 (0x359e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E
Validity
Not Before: Jul 6 14:19:41 2026 GMT
Not After : Jul 13 14:19:41 2026 GMT
Subject: CN=6a4bb97d-758c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:91:b9:a4:ba:81:7d:f5:3c:53:bf:97:c7:
4b:ae:78:25:51:83:13:a1:f9:80:7b:13:3c:04:be:
83:20:6e:08:d0:b6:b2:5e:75:37:03:be:78:ce:ca:
07:90:d3:63:80:be:fd:a4:69:d3:c8:f5:c5:44:d3:
1b:2f:9d:e7:11:22:72:7e:7b:fa:37:29:6f:61:24:
c4:1e:ae:fa:a0:df:aa:fd:79:45:ae:d6:15:c8:c5:
f8:95:4a:03:46:08:41:a9:36:56:76:a4:b2:cc:1c:
5a:30:07:44:0a:60:1d:ba:ed:70:ea:38:5c:ab:48:
ba:77:99:7c:67:67:3d:ee:6e:5d:9e:5d:cd:e8:54:
44:36:bd:04:b7:27:64:8b:fa:33:6b:bc:77:3f:45:
82:6c:8a:31:dd:fd:e8:8a:9f:c2:91:dc:b3:26:fa:
99:5c:09:54:37:6f:33:fb:e2:03:1d:93:05:8d:48:
3b:d1:76:f0:82:eb:18:dd:58:96:57:2e:e4:f9:0a:
e1:6c:b9:e7:e1:4c:77:16:70:f7:34:e6:94:1a:7b:
15:55:0f:49:f9:39:45:74:3c:c6:58:e8:39:85:54:
b5:36:61:84:fc:c1:8a:e0:24:54:82:97:e4:ca:20:
27:14:65:fa:5a:fe:e8:c5:f3:c3:08:fa:1e:37:0a:
1a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B8:B7:89:D2:BD:81:1C:F9:3C:A4:7C:C2:CC:9F:FB:8D:AF:74:0B
X509v3 Authority Key Identifier:
keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
01:a6:a7:77:d0:66:20:53:23:84:50:32:b1:ba:b6:05:07:ca:
92:f6:ac:c3:4f:26:7a:b4:26:28:47:13:0c:bf:53:b3:05:8e:
83:3d:90:90:96:61:54:1a:69:19:09:a2:14:42:88:b4:24:63:
47:dc:e2:32:0d:31:35:07:d7:8d:65:32:b6:d5:7a:d3:c0:de:
8b:fa:73:cb:e3:6c:23:7e:3c:fc:10:10:89:24:09:66:08:57:
f9:c5:0d:a4:08:78:f6:9e:45:0b:9a:0f:c7:a7:2b:ef:31:42:
f2:0a:2f:d2:95:ba:89:dc:7a:c9:1b:45:70:41:e7:9e:60:73:
a6:69:1f:46:16:af:41:02:a7:1b:a9:f6:59:94:3d:6b:b4:1f:
ac:9d:a2:b1:d4:5e:f0:e4:52:a1:cc:e5:70:a3:c9:af:a3:8f:
6b:31:11:19:99:ff:ff:fa:c8:56:f4:93:3f:b7:2d:49:82:e2:
3c:63:98:19:07:d8:e1:ee:71:37:0e:38:7c:aa:6d:03:0c:01:
97:cb:18:14:17:49:d1:82:73:38:ab:b6:ca:39:10:19:12:2b:
45:bd:80:18:5a:a0:45:bb:26:df:1b:92:2c:76:b4:a3:ee:bd:
37:2f:7c:ad:c2:d5:ff:e2:a8:57:b6:8f:22:2a:a9:89:b0:e6:
fd:6c:f7:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 11:49:21 2026 by rpki-client