
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft
File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json)
Hash identifier: M+9g4yejrikedAwkTftX+/jMNZIwUvxFtHSjSpyvS+g=
Subject key identifier: 8C:C8:AF:29:D4:83:2D:60:C1:EB:7A:CA:4A:7C:EC:57:0D:E2:10:A4
Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4
Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4
Certificate serial: 22CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft
Manifest number: 2272
Signing time: Wed 08 Jul 2026 16:00:22 +0000
Manifest this update: Wed 08 Jul 2026 16:00:21 +0000
Manifest next update: Wed 15 Jul 2026 16:00:21 +0000
Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: LYzn/OxB+VojnmIZQrgzghDeCIW3JB4D3wxaZK6J9sQ=)
2: 2D477384D9C711F098E1B70271D3641D.roa (hash: GJ6jqaxX7BHT2XHEY46Q7jZx0gkdB0fTcOfm2Nfw3us=)
3: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: mJF9eHW945FqOhcOebNZDCr93WVmTQPVaMtl9lfF/sA=)
4: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: MfV4ukOu3FWI/jsl4kHuM58dQAKJFj/LhFrUhOuLtaI=)
5: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 9Wh8912cu3W7SvBPurOS5rCjf4J0gjpN7uj92f3pmsg=)
6: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9WmU8Y4ZcOpIMboLEtIMfgE7BVSSzD6O48vbK37ECCM=)
7: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: fTK97vrMBpL2ZoSynxsGZ4U3KEvxzaz+0BewP/ZQJbc=)
8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: sVanteUBCWSFVUaHrZ5yntV/JIzyhq/72ORLRX744ZU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl
rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8908 (0x22cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4
Validity
Not Before: Jul 8 16:00:21 2026 GMT
Not After : Jul 15 16:00:21 2026 GMT
Subject: CN=6a4e7416-ebe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f5:e0:ec:63:19:c0:11:7b:ff:40:56:b5:c5:
15:95:f5:78:7c:6e:41:8d:b0:af:57:e7:52:ea:73:
25:ab:14:81:2a:46:5c:25:5c:45:b6:6e:52:86:d4:
69:66:6c:2d:8f:80:54:48:69:23:eb:74:e6:d4:21:
42:b9:1f:da:f3:84:ee:6e:16:b1:44:03:f2:ba:d2:
df:de:91:34:d9:e4:e5:22:3c:36:6a:b1:cb:18:a1:
1e:0a:5d:de:e3:1b:7d:b6:22:0c:78:38:d2:8f:17:
ac:fc:18:37:13:62:2f:ce:d5:ed:5f:90:6e:73:92:
ae:2e:ef:96:ee:9f:b1:ad:63:e8:7b:5e:5a:e2:e3:
5c:9b:43:af:0c:8f:ea:0e:58:8c:e0:9d:9f:a8:d6:
eb:27:40:32:59:87:ae:66:8c:25:83:eb:b2:42:e5:
55:76:28:39:c4:1d:70:51:d6:14:bf:8c:22:4f:10:
42:75:21:5b:ae:56:c1:09:5a:d2:94:d1:b4:f2:23:
21:ff:cd:80:78:27:76:16:9f:dc:6f:8a:38:ac:66:
fc:4f:d8:c5:b4:06:84:91:9f:1b:70:40:e7:8a:b0:
38:44:7d:20:ce:2e:70:b4:0f:7b:01:fb:1b:f7:e0:
69:7b:8f:11:57:dd:33:f1:d5:a7:69:f6:7a:df:b8:
f6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C8:AF:29:D4:83:2D:60:C1:EB:7A:CA:4A:7C:EC:57:0D:E2:10:A4
X509v3 Authority Key Identifier:
keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b0:b0:04:ed:2f:c8:28:30:f9:0a:02:59:d5:7b:a2:0d:ef:bb:
ea:b8:f6:15:1c:b7:29:a6:e6:06:da:88:fd:3c:84:68:3e:75:
aa:31:2d:72:da:f1:06:de:28:68:16:0e:51:18:a3:aa:60:6c:
df:ea:ac:a3:c3:7b:24:ff:a2:29:89:9c:92:81:f7:7c:b3:ba:
2d:a9:48:17:c4:6c:f6:c0:15:63:27:ac:aa:e4:53:4b:04:99:
0e:34:d4:28:5e:b1:09:a7:c6:fd:2d:72:6c:12:2c:da:d8:bc:
fe:90:3b:f0:26:05:7e:5f:ba:ae:0f:f7:eb:59:12:e1:63:0a:
a5:3e:14:f7:13:5d:fe:f2:c3:3d:f5:ea:ad:9f:4b:ed:b9:44:
db:28:a0:93:f5:0c:a4:19:2a:5a:e4:58:4f:52:eb:3a:1b:b2:
f4:6d:fb:a8:fb:38:a8:d5:cc:cc:db:cd:4d:ae:4c:77:7c:0b:
67:ec:9c:7b:cd:f5:50:f8:6b:03:b8:2f:7b:e5:87:e8:3e:5e:
99:4a:02:f3:9d:b9:0a:f6:28:88:fb:82:8b:b1:cc:3d:03:48:
3d:15:5e:1b:05:db:75:fd:7b:5a:8c:49:e5:05:de:c5:4e:72:
d2:44:75:05:97:98:c1:74:a2:6c:97:e7:ee:7b:f6:ac:06:f1:
72:e8:77:4e
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICIswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1
OTJGNTQwRDQwHhcNMjYwNzA4MTYwMDIxWhcNMjYwNzE1MTYwMDIxWjAYMRYwFAYD
VQQDEw02YTRlNzQxNi1lYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvPXg7GMZwBF7/0BWtcUVlfV4fG5BjbCvV+dS6nMlqxSBKkZcJVxFtm5ShtRp
Zmwtj4BUSGkj63Tm1CFCuR/a84TubhaxRAPyutLf3pE02eTlIjw2arHLGKEeCl3e
4xt9tiIMeDjSjxes/Bg3E2IvztXtX5Buc5KuLu+W7p+xrWPoe15a4uNcm0OvDI/q
DliM4J2fqNbrJ0AyWYeuZowlg+uyQuVVdig5xB1wUdYUv4wiTxBCdSFbrlbBCVrS
lNG08iMh/82AeCd2Fp/cb4o4rGb8T9jFtAaEkZ8bcEDnirA4RH0gzi5wtA97Afsb
9+Bpe48RV90z8dWnafZ637j2owIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIzIrynU
gy1gwet6ykp87FcN4hCkMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC
ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR
TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w
S0l2TkR3cFVKUTFaTDFRTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAsLAE7S/IKDD5CgJZ1XuiDe+76rj2FRy3KabmBtqI/TyEaD51qjEtctrxBt4o
aBYOURijqmBs3+qso8N7JP+iKYmckoH3fLO6LalIF8Rs9sAVYyesquRTSwSZDjTU
KF6xCafG/S1ybBIs2ti8/pA78CYFfl+6rg/361kS4WMKpT4U9xNd/vLDPfXqrZ9L
7blE2yigk/UMpBkqWuRYT1LrOhuy9G37qPs4qNXMzNvNTa5Md3wLZ+yce831UPhr
A7gve+WH6D5emUoC8525CvYoiPuCi7HMPQNIPRVeGwXbdf17WoxJ5QXexU5y0kR1
BZeYwXSibJfn7nv2rAbxcuh3Tg==
-----END CERTIFICATE-----
Generated at Fri Jul 10 16:39:25 2026 by rpki-client