
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft
File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json)
Hash identifier: dG2tMCAAsrw0CezsbAnV+WX8lhg98ZHHZXlvN/MMd/Q=
Subject key identifier: F4:65:FC:89:6D:B1:26:05:4C:C0:D3:9E:AB:27:25:BD:4A:D1:CE:91
Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30
Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30
Certificate serial: FE
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft
Manifest number: F8
Signing time: Fri 17 Jul 2026 07:34:13 +0000
Manifest this update: Fri 17 Jul 2026 07:34:13 +0000
Manifest next update: Fri 24 Jul 2026 07:34:13 +0000
Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: pNGoawpYt2cLFRtsuVzY1HwTnIWvoUFE/Ll8cRAzVdA=)
2: 938098BE5CFE11F18D5CD5949D833773.roa (hash: YvlCWf4B4N82K2Tsi4Q18rzepQF2VZtfQl38u6FADjY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl
rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:34:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 254 (0xfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30
Validity
Not Before: Jul 17 07:34:13 2026 GMT
Not After : Jul 24 07:34:13 2026 GMT
Subject: CN=6a59daf5-cf12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:aa:f0:ca:0e:c1:d9:e6:e4:00:62:11:4c:88:
d3:fc:a1:ee:49:f7:e9:10:e0:30:ef:9a:56:c5:8b:
b4:3a:eb:30:86:80:08:1e:60:e3:5d:8b:37:68:46:
e5:38:36:70:b3:01:7b:39:67:6a:8a:65:a8:76:ba:
e5:bd:9f:97:d4:fc:ab:19:e4:38:91:13:0d:95:c9:
7c:fb:a9:9c:83:7e:f3:cd:bd:3e:8a:07:0b:df:74:
95:0f:31:d9:7a:de:0f:10:c3:cc:d2:53:fc:3a:5c:
9d:db:96:a5:fe:3b:4b:69:55:fe:f8:f3:59:a3:aa:
dd:e8:a9:54:01:35:b3:29:01:d9:39:8c:90:6d:ef:
c8:7c:66:f1:38:88:d7:5d:f4:29:5a:51:d6:70:96:
cf:ed:b2:11:4f:3b:55:5c:d5:3d:ee:9c:ca:ef:83:
55:5e:74:99:de:2e:0b:4f:89:8f:6a:0a:07:f5:32:
74:16:ae:8d:6f:f0:70:73:86:36:1f:6e:25:5f:f5:
b7:ca:b5:c7:90:4d:d0:80:d6:46:c5:cc:7c:48:7a:
e9:d9:35:93:ac:f0:67:6c:f8:fc:55:35:38:a5:16:
97:ee:7e:3e:07:d1:de:e2:b4:40:70:d1:60:c9:73:
a3:ce:db:4e:ab:a7:d0:0c:44:6d:70:71:c3:41:67:
fd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:65:FC:89:6D:B1:26:05:4C:C0:D3:9E:AB:27:25:BD:4A:D1:CE:91
X509v3 Authority Key Identifier:
keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6b:80:eb:16:0b:27:40:b9:82:de:31:9d:3b:fe:9c:cf:b7:ab:
96:d5:83:72:98:0a:0f:08:0e:53:39:f5:a4:6f:11:fd:2e:a2:
e7:24:81:48:f8:a5:e3:b3:b7:ad:0f:2c:9d:5e:d0:15:a7:ac:
24:25:00:3f:1e:59:1d:cf:38:d2:15:5e:f5:da:35:2f:74:d7:
7a:a3:95:d4:49:1d:97:de:b5:4c:28:88:f2:48:c1:2c:8b:5b:
b2:25:41:a8:35:bf:ad:1d:cd:eb:62:61:07:20:c3:a8:cf:2a:
cf:ed:fb:7c:8e:85:77:99:8e:60:ce:24:11:74:ca:1a:94:59:
89:21:bd:4f:9a:a0:2b:c9:12:9b:4e:41:52:d9:1b:d6:1b:5e:
10:ef:81:53:77:ad:c8:4e:13:e4:d3:30:1b:a6:e1:b7:fb:38:
57:12:e9:cc:b2:a8:8d:af:1b:44:a4:39:31:15:0e:24:df:2d:
c5:9a:46:b4:c5:a6:06:38:28:b6:42:e9:3a:97:99:85:0f:3c:
79:98:31:3e:22:45:8b:e2:a5:bc:ff:1a:7d:e2:e1:47:37:e2:
1d:58:2c:7a:99:35:7e:06:a6:0f:70:dc:fc:91:36:53:95:a6:
27:d8:76:7b:77:be:87:ae:ca:f3:06:d3:f2:12:08:52:7b:16:
f1:48:78:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:59:11 2026 by rpki-client