
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json)
Hash identifier: 9SCO1QOpbkzykuWarM0N67v6OwrAE4HFYBNTUF0KL6U=
Subject key identifier: 34:58:0A:4E:C5:B9:84:55:F9:A1:C7:7F:43:AF:1B:27:79:5C:3F:05
Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61
Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661
Certificate serial: 01B5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
Manifest number: 01AA
Signing time: Fri 17 Jul 2026 05:14:16 +0000
Manifest this update: Fri 17 Jul 2026 05:14:15 +0000
Manifest next update: Fri 24 Jul 2026 05:14:15 +0000
Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: kS7mK15EfzFB9Q52K4n8vf4hAUWlgIMz7j5I3tQuXQk=)
2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4eeNf5jC2Mk+3sdc5Wmsh3IL+6DgzipfF5IlQKuRXx0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl
rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:14:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437 (0x1b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661
Validity
Not Before: Jul 17 05:14:15 2026 GMT
Not After : Jul 24 05:14:15 2026 GMT
Subject: CN=6a59ba28-2b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:69:38:ae:5e:47:a2:d9:5a:18:94:1e:88:4e:
0b:2f:3c:0e:28:b8:e0:7e:8a:e3:5c:ab:12:8a:02:
c3:7f:0b:ae:ee:3f:f9:89:af:f5:50:d2:31:11:f0:
2a:30:10:d5:26:fa:c1:ee:7f:e2:0b:87:42:fc:ee:
80:45:53:75:2d:cc:da:b5:93:13:d0:01:27:38:14:
7f:f8:73:c7:12:4f:10:77:26:ab:3f:d3:08:a0:65:
7c:35:0e:99:03:a1:8b:92:e8:dc:06:4a:42:f2:55:
4b:9b:7d:3b:73:be:af:af:79:c7:27:c0:14:18:09:
88:e2:d4:e9:ff:bc:f8:12:03:a2:05:7e:3f:e9:72:
56:62:db:3c:ca:c6:04:21:4a:47:54:f8:50:8b:1c:
c1:00:7a:ae:07:7f:33:a2:21:7c:8e:e4:a4:8e:fc:
0a:21:8c:87:d9:f5:72:6d:51:6f:4d:18:dd:17:d3:
22:e3:88:0b:52:da:87:55:14:5c:e8:80:22:07:23:
8d:13:cf:9f:4c:d8:91:c0:52:cb:32:a5:3c:c8:99:
9b:b4:64:e5:79:67:27:dc:be:a1:fe:5f:cd:47:09:
da:b3:4b:96:7a:3e:60:53:f7:c1:61:86:f3:08:59:
08:3a:d5:bb:d5:34:0f:55:46:63:64:41:2b:91:bd:
b5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:58:0A:4E:C5:B9:84:55:F9:A1:C7:7F:43:AF:1B:27:79:5C:3F:05
X509v3 Authority Key Identifier:
keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:65:2c:0b:58:02:de:57:56:69:b9:26:62:d2:25:25:58:c6:
5e:39:2a:c4:af:b7:6a:23:df:eb:19:04:18:55:1e:5b:3a:1b:
9d:d4:70:f8:f0:52:e8:3a:9f:aa:35:2a:89:e1:09:6d:3e:de:
e5:ee:76:ae:bd:4b:91:3b:4f:0a:85:51:46:e7:6a:c1:25:84:
13:58:bc:0e:e1:3e:74:6e:d5:b5:50:75:5d:ac:f8:83:65:e4:
60:46:41:93:ad:ce:11:40:25:c2:41:53:c7:ce:64:25:c5:8e:
9a:60:83:29:81:29:8d:59:84:6b:a0:c4:c6:0e:8e:c9:cf:e8:
e5:1f:aa:93:7a:a1:55:11:66:26:0e:35:c3:87:df:50:5e:0d:
6f:ba:09:f1:7f:56:1f:4b:8d:4d:74:aa:73:f6:f9:56:24:3f:
00:73:f4:81:11:42:41:34:f9:cb:10:21:48:99:d4:b2:58:d3:
a4:f2:3e:a5:35:c9:7b:02:ae:2a:2e:fd:c5:b2:79:fb:d6:89:
67:c6:4b:16:b5:47:36:68:ff:14:d5:6d:12:89:4b:cb:be:32:
fe:d3:fd:a6:d5:98:fd:9d:94:3a:f1:f2:ea:7d:e9:75:76:3e:
ab:43:07:85:6a:97:ae:2f:f1:9d:3c:9c:de:d7:d6:79:5b:40:
50:34:0b:c7
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB
REFDMDU2NjEwHhcNMjYwNzE3MDUxNDE1WhcNMjYwNzI0MDUxNDE1WjAYMRYwFAYD
VQQDEw02YTU5YmEyOC0yYjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAimk4rl5HotlaGJQeiE4LLzwOKLjgforjXKsSigLDfwuu7j/5ia/1UNIxEfAq
MBDVJvrB7n/iC4dC/O6ARVN1LczatZMT0AEnOBR/+HPHEk8QdyarP9MIoGV8NQ6Z
A6GLkujcBkpC8lVLm307c76vr3nHJ8AUGAmI4tTp/7z4EgOiBX4/6XJWYts8ysYE
IUpHVPhQixzBAHquB38zoiF8juSkjvwKIYyH2fVybVFvTRjdF9Mi44gLUtqHVRRc
6IAiByONE8+fTNiRwFLLMqU8yJmbtGTleWcn3L6h/l/NRwnas0uWej5gU/fBYYbz
CFkIOtW71TQPVUZjZEErkb21CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDRYCk7F
uYRV+aHHf0OvGyd5XD8FMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3
M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW
bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh
MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAPmUsC1gC3ldWabkmYtIlJVjGXjkqxK+3aiPf6xkEGFUeWzobndRw+PBS6Dqf
qjUqieEJbT7e5e52rr1LkTtPCoVRRudqwSWEE1i8DuE+dG7VtVB1Xaz4g2XkYEZB
k63OEUAlwkFTx85kJcWOmmCDKYEpjVmEa6DExg6Oyc/o5R+qk3qhVRFmJg41w4ff
UF4Nb7oJ8X9WH0uNTXSqc/b5ViQ/AHP0gRFCQTT5yxAhSJnUsljTpPI+pTXJewKu
Ki79xbJ5+9aJZ8ZLFrVHNmj/FNVtEolLy74y/tP9ptWY/Z2UOvHy6n3pdXY+q0MH
hWqXri/xnTyc3tfWeVtAUDQLxw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 01:49:48 2026 by rpki-client