
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
File: IsfsPNntTFDolKEbzXDQMQzV-Fk.mft (raw, json)
Hash identifier: 8rhlG1hXj8Rz+xA0HsKV/QKOTQSoBjleJ2XhqXe7FLs=
Subject key identifier: B4:77:6A:D2:E3:27:8C:31:EC:54:6B:07:BD:02:30:5D:01:DA:8F:78
Authority key identifier: 22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59
Certificate issuer: /CN=A91EC225/serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859
Certificate serial: 0130
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
Manifest number: 012C
Signing time: Thu 16 Jul 2026 17:36:00 +0000
Manifest this update: Thu 16 Jul 2026 17:36:00 +0000
Manifest next update: Thu 23 Jul 2026 17:36:00 +0000
Files and hashes: 1: IsfsPNntTFDolKEbzXDQMQzV-Fk.crl (hash: +OgQ5PSP0IQZmnixkYRC4HGpwTL9Sa9ESLsRe4N2Vt8=)
2: 25D2B94CDECD11EFA79E4065C4F9AE02.roa (hash: akLA24IwRVeRV87VrcCP9mJOdJA7ntWRSTCaXT2ZWc8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl
rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 17:35:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304 (0x130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EC225, serialNumber=22C7EC3CD9ED4C50E894A11BCD70D0310CD5F859
Validity
Not Before: Jul 16 17:36:00 2026 GMT
Not After : Jul 23 17:36:00 2026 GMT
Subject: CN=6a591680-f5e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:55:8e:f0:8c:b9:8c:31:ea:6d:88:18:e6:
44:d4:b7:57:52:5f:3a:7b:bc:76:99:b4:b8:5a:87:
b5:02:c9:8d:55:5f:a9:bb:c9:31:ea:b9:b4:82:f1:
71:71:d3:1c:3c:1e:49:7a:5c:6a:e2:17:c4:a2:39:
c5:b2:15:f5:bf:44:31:ea:cf:f4:98:00:ac:33:70:
07:7e:62:d7:10:21:70:da:04:69:dd:37:7b:6b:8f:
c1:be:a5:25:41:1b:fc:26:82:c4:f5:7e:29:a0:aa:
a4:e6:c8:d0:6f:90:07:a1:ed:6d:fb:54:b5:38:e8:
40:e6:5c:88:48:b6:7b:d1:72:91:a0:32:f9:17:71:
f4:3f:f4:f8:2f:53:85:a1:ed:ba:aa:ae:bf:b8:70:
ea:60:83:73:7c:5f:ef:6d:2c:9b:62:fa:61:f0:09:
26:34:0b:7d:d9:22:77:12:dc:89:8f:be:86:44:72:
f4:91:2d:31:81:31:dc:7a:22:a0:de:d7:58:65:83:
0b:8b:68:8b:63:db:2f:b8:4a:29:7a:05:cc:8d:3d:
e6:e5:00:92:84:0c:8a:5e:0b:d3:ad:ab:3c:8a:0e:
55:fe:2a:82:fb:f2:23:aa:36:77:05:94:70:3f:cd:
4f:2d:4b:6f:cf:38:12:0c:ed:21:d6:1d:f1:6c:b4:
a9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:77:6A:D2:E3:27:8C:31:EC:54:6B:07:BD:02:30:5D:01:DA:8F:78
X509v3 Authority Key Identifier:
keyid:22:C7:EC:3C:D9:ED:4C:50:E8:94:A1:1B:CD:70:D0:31:0C:D5:F8:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IsfsPNntTFDolKEbzXDQMQzV-Fk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/C9447FF0BEF911EFBCF68944C4F9AE02/IsfsPNntTFDolKEbzXDQMQzV-Fk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6e:09:0a:ba:e5:44:38:06:52:a8:a6:67:80:34:0c:d3:2e:36:
5a:90:9c:d9:09:74:2f:83:a8:70:ac:da:aa:8f:83:94:05:cd:
85:70:87:13:ad:98:a3:ae:80:1d:b6:cd:8a:7d:e1:97:1f:46:
00:7b:2c:fd:4f:0a:61:74:13:d1:36:f5:70:ba:e8:a2:23:78:
9a:8e:1a:b0:79:6e:89:44:37:de:c3:c6:6f:78:e9:5d:65:e5:
c7:f9:c3:c4:a5:a8:67:26:5a:c1:63:19:ab:b8:ff:e5:6f:68:
fd:20:1f:f2:2e:3b:2f:5f:c0:c0:26:78:c4:ff:6c:63:fb:bf:
b4:b5:fe:8b:78:8f:8c:05:5f:20:06:be:40:33:89:69:22:2c:
6d:43:d8:52:7c:89:81:3e:03:8e:d8:9f:98:f0:20:a4:50:7e:
37:e7:fd:e1:ce:67:38:d5:ae:51:70:cc:69:6e:01:bb:bc:97:
63:f1:17:63:1b:48:49:b2:fb:7e:c4:19:38:1e:e3:cc:86:49:
0a:d6:f3:a9:8c:3e:93:57:a1:ee:e0:c9:74:e6:0d:b3:bc:16:
23:a2:6e:fa:1e:6e:cb:d4:f3:c2:a3:c9:11:b6:bf:d8:73:4a:
22:6c:b0:4d:52:80:41:04:06:3b:92:61:2d:0d:a9:56:83:7a:
08:e7:3a:4e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUMyMjUxMTAvBgNVBAUTKDIyQzdFQzNDRDlFRDRDNTBFODk0QTExQkNENzBEMDMx
MENENUY4NTkwHhcNMjYwNzE2MTczNjAwWhcNMjYwNzIzMTczNjAwWjAYMRYwFAYD
VQQDEw02YTU5MTY4MC1mNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAto9VjvCMuYwx6m2IGOZE1LdXUl86e7x2mbS4Woe1AsmNVV+pu8kx6rm0gvFx
cdMcPB5Jelxq4hfEojnFshX1v0Qx6s/0mACsM3AHfmLXECFw2gRp3Td7a4/BvqUl
QRv8JoLE9X4poKqk5sjQb5AHoe1t+1S1OOhA5lyISLZ70XKRoDL5F3H0P/T4L1OF
oe26qq6/uHDqYINzfF/vbSybYvph8AkmNAt92SJ3EtyJj76GRHL0kS0xgTHceiKg
3tdYZYMLi2iLY9svuEopegXMjT3m5QCShAyKXgvTras8ig5V/iqC+/IjqjZ3BZRw
P81PLUtvzzgSDO0h1h3xbLSpSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLR3atLj
J4wx7FRrB70CMF0B2o94MB8GA1UdIwQYMBaAFCLH7DzZ7UxQ6JShG81w0DEM1fhZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS9DOTQ0N0ZGMEJF
RjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRGRG9sS0VielhEUU1RelYt
RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0lzZnNQTm50VEZEb2xLRWJ6WERRTVF6Vi1Gay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QzIyNS9DOTQ0N0ZGMEJFRjkxMUVGQkNGNjg5NDRDNEY5QUUwMi9Jc2ZzUE5udFRG
RG9sS0VielhEUU1RelYtRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAbgkKuuVEOAZSqKZngDQM0y42WpCc2Ql0L4OocKzaqo+DlAXNhXCHE62Yo66A
HbbNin3hlx9GAHss/U8KYXQT0Tb1cLrooiN4mo4asHluiUQ33sPGb3jpXWXlx/nD
xKWoZyZawWMZq7j/5W9o/SAf8i47L1/AwCZ4xP9sY/u/tLX+i3iPjAVfIAa+QDOJ
aSIsbUPYUnyJgT4DjtifmPAgpFB+N+f94c5nONWuUXDMaW4Bu7yXY/EXYxtISbL7
fsQZOB7jzIZJCtbzqYw+k1eh7uDJdOYNs7wWI6Ju+h5uy9TzwqPJEba/2HNKImyw
TVKAQQQGO5JhLQ2pVoN6COc6Tg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:37 2026 by rpki-client