
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json)
Hash identifier: /5/+rbWU6b2aWVm7yg7jPYA/3d0yiFx7MYzjj4+9+FY=
Subject key identifier: C8:A8:BF:1F:75:6F:AA:AF:D3:18:B8:38:2C:D1:D2:AE:59:E9:52:05
Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F
Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F
Certificate serial: 03A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
Manifest number: 039A
Signing time: Wed 15 Jul 2026 01:24:07 +0000
Manifest this update: Wed 15 Jul 2026 01:24:06 +0000
Manifest next update: Wed 22 Jul 2026 01:24:06 +0000
Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: UyxWyZ9t+KkM6Pa6MjtvdqYLr50yOPPP+1XlLawLrFk=)
2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: 8YdQLsUZCKBzraMiXXqY3e6CtfbysTpmjgszsI0exrg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl
rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Jul 2026 01:24:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931 (0x3a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F
Validity
Not Before: Jul 15 01:24:06 2026 GMT
Not After : Jul 22 01:24:06 2026 GMT
Subject: CN=6a56e137-ae93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:95:61:3f:5a:51:85:e5:c7:93:fc:65:11:0c:
b2:c0:b9:e2:63:d3:9c:3d:23:f0:e4:7a:74:be:aa:
bc:eb:61:58:9e:3a:f0:aa:49:dd:9d:3d:f3:46:bf:
b9:3a:bb:33:53:04:b4:cd:8a:fb:7b:ba:98:29:ef:
5b:b4:c0:87:2b:d7:99:80:35:e5:45:c1:83:a7:ab:
da:cb:c7:ef:b9:3f:9f:f9:cb:fd:e1:34:61:b8:f9:
12:a9:bf:41:82:fc:8c:27:36:52:fb:6d:68:8c:70:
92:13:0f:20:2b:a0:d7:94:b6:94:bd:9d:96:30:ce:
33:6a:ea:53:2a:ca:68:5a:44:fd:3a:ae:57:13:95:
c7:53:88:7c:72:b7:dd:9c:b9:fd:3b:56:b0:ec:79:
93:39:ae:2d:01:fd:e7:26:22:b3:fb:65:fa:86:75:
cf:ec:08:d9:9c:10:5d:e2:d7:d2:3d:08:b9:61:43:
f7:fb:08:4b:6f:42:7f:44:6a:84:63:e7:56:da:59:
12:c0:a0:0f:07:3d:f3:b6:4f:2b:ac:a0:08:09:da:
a3:57:d5:9c:2d:f1:5a:4e:57:9b:95:c2:6f:9f:ee:
8b:f3:d9:1c:eb:d7:42:5e:26:ae:a8:77:4f:5e:98:
a3:14:d3:67:0c:91:72:97:92:aa:df:63:3c:6d:4e:
11:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A8:BF:1F:75:6F:AA:AF:D3:18:B8:38:2C:D1:D2:AE:59:E9:52:05
X509v3 Authority Key Identifier:
keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
01:09:42:70:f4:d5:45:26:97:85:15:2c:7e:d7:7e:4a:7d:a5:
40:e2:eb:ce:00:e7:a1:25:1b:86:b6:b3:ce:e1:57:23:c1:57:
c6:54:25:94:b7:b2:e3:13:0a:ae:7b:d4:38:2d:2e:64:c6:43:
fa:e4:c8:ee:86:2b:26:e1:d1:5f:8f:8f:e9:fc:2b:2d:df:06:
72:f1:4f:b9:9d:08:b2:a8:8b:01:c3:03:47:dd:49:8e:4c:5f:
91:e3:da:17:6c:e4:17:26:47:8c:73:fa:aa:16:06:5c:aa:66:
f7:5f:36:ca:d4:d7:cc:11:7d:df:81:5a:c0:38:b0:01:c4:85:
ce:a4:8e:b2:3e:38:02:90:a0:b1:51:ae:72:8c:86:f8:05:29:
3e:85:c4:ee:3b:21:1d:86:1f:2b:86:fc:71:31:48:4f:ac:2e:
2a:f6:f5:6c:41:2d:26:d3:40:8d:55:80:0f:e5:c5:72:0a:cd:
76:95:e2:ca:25:24:b2:90:1e:bc:fe:ee:c6:ff:54:02:a1:36:
bd:dc:21:ad:84:61:b3:58:9a:e8:ec:a3:6d:d4:a0:41:8e:d1:
e7:00:b1:5c:d0:17:da:4f:a2:1d:8a:2c:93:46:34:47:39:92:
5d:97:32:90:66:1d:e5:f9:d2:cd:9a:fd:aa:c1:19:5d:38:42:
2c:63:91:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 14:33:30 2026 by rpki-client