
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft
File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json)
Hash identifier: vpTNS1cYgUpxgp8TVGCzli4lk2stLZ2YiDbIilYGeRI=
Subject key identifier: 6A:AA:C7:09:0B:82:0E:F6:98:E7:F1:FA:2C:CF:E1:A8:C4:DC:F8:21
Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B
Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B
Certificate serial: 0170
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft
Manifest number: 0168
Signing time: Fri 17 Jul 2026 05:53:52 +0000
Manifest this update: Fri 17 Jul 2026 05:53:51 +0000
Manifest next update: Fri 24 Jul 2026 05:53:51 +0000
Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: e4CyTv5ZX1gEJPj/rVclmr5bcdaTXmnm7KczLhmTIlE=)
2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: 4qI4Ml9uIYG2SLfkLkYCessVGIjFflva1W8j/+okM6Q=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl
rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:53:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368 (0x170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B
Validity
Not Before: Jul 17 05:53:51 2026 GMT
Not After : Jul 24 05:53:51 2026 GMT
Subject: CN=6a59c370-5704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cb:8e:ee:0f:62:d8:8e:0e:02:f1:fb:bb:a3:
3b:d5:a5:53:bd:4a:20:be:5e:05:89:63:18:65:62:
ac:ee:44:ab:55:89:27:4c:f5:d4:64:6e:97:35:af:
7b:82:6a:ea:c6:e3:5b:f9:41:a1:31:2b:e1:a8:1a:
85:39:2d:72:f6:2a:57:a0:4e:25:b2:59:5f:6e:d5:
44:ea:f1:b8:ba:55:0a:ea:53:8c:e3:33:8c:99:b5:
8d:63:67:d7:33:76:07:20:c6:f3:e9:08:bb:c7:54:
0d:23:e8:06:49:ea:cd:bf:b5:3e:26:3d:7e:28:c7:
3b:36:7b:4a:1c:b3:7b:bc:1f:fe:b7:80:00:da:66:
31:ff:ea:81:39:3a:1a:b9:96:f0:99:2c:46:0d:69:
89:9d:4a:09:32:c9:ff:93:85:6b:26:fd:91:5d:07:
36:4a:fd:40:54:35:9d:2e:65:bb:65:68:9c:25:25:
5e:1f:f6:9d:55:fe:d1:35:c9:ce:75:6c:14:17:65:
61:e5:33:ae:10:2d:49:aa:a3:9c:44:81:94:68:04:
f9:ea:4a:a2:28:39:9f:d6:2d:d3:8c:f5:90:17:e1:
d5:61:37:9f:7a:9f:0d:7a:6f:42:d3:86:b4:5b:7c:
1f:8a:03:48:c2:75:ec:57:74:86:bc:d4:3f:25:9f:
2d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:AA:C7:09:0B:82:0E:F6:98:E7:F1:FA:2C:CF:E1:A8:C4:DC:F8:21
X509v3 Authority Key Identifier:
keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
10:ea:53:54:b4:12:26:ad:8a:45:ea:df:8d:dd:39:7c:36:51:
a4:c9:bd:8f:76:00:b6:c3:52:a4:1a:0b:14:64:06:ad:0c:df:
ba:09:ea:d1:35:9c:14:46:e7:75:78:30:d7:91:30:10:d2:84:
c8:95:ae:6a:fc:7c:48:98:6e:c4:e9:24:dc:02:f6:64:4f:97:
5b:50:d4:98:4b:2e:f7:61:ee:b5:38:b7:f2:11:7a:fd:dd:30:
a8:f2:98:49:63:e1:db:65:36:44:f1:71:27:2b:72:1b:df:95:
33:10:4d:4e:4a:72:86:9a:9a:40:92:7a:9e:76:3a:32:52:1e:
e3:e8:ac:e1:5d:8a:3b:68:49:7f:2b:f3:e6:f1:dd:04:33:26:
b7:c3:e5:a4:15:1c:5f:67:8a:49:86:7f:fd:a6:6e:79:3e:f7:
e0:1a:47:12:0f:50:6e:b4:1a:8c:d1:68:e4:e1:91:5b:e1:0b:
90:94:31:98:99:98:65:9f:5b:f9:af:98:fc:c8:3c:72:7d:57:
4d:b8:fa:72:11:8e:45:4e:62:c9:20:6c:be:91:f2:7b:93:aa:
82:73:8b:25:44:b9:4a:76:87:71:46:76:56:9d:53:6a:75:9f:
71:4c:23:1e:43:af:4b:6e:2d:4f:bd:47:64:ba:0c:50:41:25:
c4:dc:b8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:25 2026 by rpki-client