
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json)
Hash identifier: pElSUF+n0yPyUO2DICUQNUq75YsECSSzPjviLXIH2yI=
Subject key identifier: 26:E2:5A:52:26:7B:58:9E:BA:DE:9B:2B:8A:20:CD:74:50:00:A3:B3
Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0
Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0
Certificate serial: 0D71
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
Manifest number: 0D62
Signing time: Thu 16 Jul 2026 18:19:16 +0000
Manifest this update: Thu 16 Jul 2026 18:19:15 +0000
Manifest next update: Thu 23 Jul 2026 18:19:15 +0000
Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: MvlOYurPa53riKJsLFH4mZRPtXTGxquKwZIRR3UQxsE=)
2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: 9a0DmjZ9WtrPbMbEmNnoQ2iB4wOKOazyVMvcL5JNv20=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl
rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:19:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3441 (0xd71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0
Validity
Not Before: Jul 16 18:19:15 2026 GMT
Not After : Jul 23 18:19:15 2026 GMT
Subject: CN=6a5920a4-8e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:2f:f8:f2:5f:b2:4d:ff:82:55:6d:39:b9:
7b:2b:04:aa:41:b4:ea:0e:86:8c:f0:b2:4d:6f:5d:
ad:61:a2:47:91:8f:60:8a:86:5f:d5:9b:91:14:3c:
4e:8f:0b:81:24:8b:b1:8b:95:29:41:7d:8b:d4:c7:
c2:29:d7:dd:b2:4a:cb:91:48:06:d8:12:b3:bb:d6:
16:8a:46:8e:4b:3e:d9:2a:89:08:5c:a6:e6:62:c5:
0c:33:08:f6:ba:ed:e0:a3:a3:d7:ce:f2:39:05:1c:
61:3d:f7:85:8c:cb:e4:cf:b3:a4:05:bb:be:60:f8:
fb:9a:20:01:6a:05:21:ab:1c:e3:97:8d:a9:82:dc:
e7:c8:ef:87:3f:5b:c9:7e:ee:92:dd:a5:19:c3:8d:
4c:76:e6:b9:ce:4b:92:b0:7f:f9:de:41:8f:bb:8f:
66:80:43:36:2b:0a:2b:4e:be:a5:34:38:e8:6b:51:
96:30:ba:e1:1a:de:aa:7d:e9:1d:5b:2a:c8:59:3c:
88:55:6c:4c:1b:b0:89:f0:5d:92:46:a3:9e:76:62:
68:fa:29:55:f7:5d:08:2c:45:0d:68:a1:61:2f:59:
54:31:e0:de:62:27:c4:0a:aa:d5:80:8f:17:7d:b7:
bb:e8:ba:12:d8:b3:1f:86:b7:52:98:8a:a4:fc:0a:
20:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E2:5A:52:26:7B:58:9E:BA:DE:9B:2B:8A:20:CD:74:50:00:A3:B3
X509v3 Authority Key Identifier:
keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
20:ee:a1:ad:b5:94:47:1c:7b:d7:48:ba:7a:f1:94:fa:16:b2:
b0:71:bd:b9:db:a2:27:73:72:b4:a7:a9:24:78:75:ed:cc:ad:
fe:ea:5d:e6:f4:58:6e:c2:84:b4:bb:16:1c:e1:ef:88:6d:64:
11:91:3f:b7:9a:28:29:67:d7:e4:14:19:2e:61:46:60:00:0e:
da:90:9e:13:c9:4b:32:51:81:30:64:61:d5:a7:bc:63:cf:96:
7f:98:ae:c9:cb:f2:ec:6f:8d:2c:b3:0f:56:b9:3f:6c:e4:a6:
b8:fb:30:e3:ba:11:8b:8b:9f:c6:9e:da:7c:04:22:52:49:b4:
25:61:32:d1:2f:19:86:dd:23:2d:25:16:7c:37:5b:c6:c9:03:
35:87:6f:16:eb:6d:ab:39:f7:b6:f9:a2:57:99:2d:d6:40:65:
d1:a6:c1:2b:79:e4:7b:ed:83:2b:e7:81:ca:44:30:2d:ce:31:
fa:ae:fb:1b:99:5c:a7:09:94:9c:f7:fb:82:bc:bb:46:1b:b0:
98:83:57:72:7d:f0:d8:1d:61:90:39:3f:e3:48:24:6b:b3:16:
9d:4c:86:3b:37:d2:4e:d4:35:03:18:d9:8f:18:43:3b:60:fc:
1f:f6:16:eb:d1:b3:52:0d:07:6c:f1:e8:00:d6:f5:3c:ef:03:
2e:68:09:3c
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw
QjJCQTNGQzAwHhcNMjYwNzE2MTgxOTE1WhcNMjYwNzIzMTgxOTE1WjAYMRYwFAYD
VQQDEw02YTU5MjBhNC04ZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArikv+PJfsk3/glVtObl7KwSqQbTqDoaM8LJNb12tYaJHkY9gioZf1ZuRFDxO
jwuBJIuxi5UpQX2L1MfCKdfdskrLkUgG2BKzu9YWikaOSz7ZKokIXKbmYsUMMwj2
uu3go6PXzvI5BRxhPfeFjMvkz7OkBbu+YPj7miABagUhqxzjl42pgtznyO+HP1vJ
fu6S3aUZw41Mdua5zkuSsH/53kGPu49mgEM2KworTr6lNDjoa1GWMLrhGt6qfekd
WyrIWTyIVWxMG7CJ8F2SRqOedmJo+ilV910ILEUNaKFhL1lUMeDeYifECqrVgI8X
fbe76LoS2LMfhrdSmIqk/AoguQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCbiWlIm
e1ieut6bK4ogzXRQAKOzMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4
N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ
OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v
M2RhX0xUMkV4N3dMSzZQOEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAIO6hrbWURxx710i6evGU+haysHG9uduiJ3NytKepJHh17cyt/upd5vRYbsKE
tLsWHOHviG1kEZE/t5ooKWfX5BQZLmFGYAAO2pCeE8lLMlGBMGRh1ae8Y8+Wf5iu
ycvy7G+NLLMPVrk/bOSmuPsw47oRi4ufxp7afAQiUkm0JWEy0S8Zht0jLSUWfDdb
xskDNYdvFuttqzn3tvmiV5kt1kBl0abBK3nke+2DK+eBykQwLc4x+q77G5lcpwmU
nPf7gry7RhuwmINXcn3w2B1hkDk/40gka7MWnUyGOzfSTtQ1AxjZjxhDO2D8H/YW
69GzUg0HbPHoANb1PO8DLmgJPA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:19:16 2026 by rpki-client