
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft
File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json)
Hash identifier: MfVHChhGEwdgDumuKGmT8/9q5X6KerZwC584/7Lg0oU=
Subject key identifier: 92:17:4A:3A:A8:6D:F4:6C:8D:EA:3A:70:4A:BA:BD:47:EE:82:40:D9
Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09
Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09
Certificate serial: C2
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft
Manifest number: BF
Signing time: Fri 17 Jul 2026 08:10:54 +0000
Manifest this update: Fri 17 Jul 2026 08:10:54 +0000
Manifest next update: Fri 24 Jul 2026 08:10:54 +0000
Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: f9nAUnKV05l0DR7K+kpw+IVcOCHvswF0Sj1u6Rc2uBs=)
2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: 1+gWdAZ37YIBU2iFVY3fHe/eCmXpEhHdoc6OKpG9wTE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl
rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:10:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194 (0xc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09
Validity
Not Before: Jul 17 08:10:54 2026 GMT
Not After : Jul 24 08:10:54 2026 GMT
Subject: CN=6a59e38e-d0dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ad:4d:05:e7:8d:cb:e4:a9:1b:7d:96:2e:96:
2b:33:6d:c9:dc:da:71:87:62:5b:ba:6f:bc:16:bf:
68:3b:58:0d:d0:0f:98:0c:5d:04:87:aa:7b:ce:d4:
e5:7b:b5:60:1d:78:93:85:4d:55:06:a1:88:64:27:
bc:ff:f6:0c:cb:ec:35:83:3f:f6:9f:52:52:70:6f:
70:be:3c:e0:81:0b:67:2a:db:52:d8:d4:fd:43:8e:
c6:ef:07:fe:11:e3:b4:b9:4f:0c:6a:9a:68:8b:cf:
cc:0f:c8:30:be:a8:5f:b7:b3:2c:34:6d:5d:44:6c:
e4:58:48:8c:24:c4:2c:e8:46:8e:21:fe:ce:78:b5:
14:67:d7:7e:43:08:66:bd:6d:ce:57:f4:94:07:0d:
03:9d:9c:b0:17:de:81:ae:c3:f6:56:18:e5:b7:ba:
1e:78:b5:ea:3c:6d:07:27:bd:78:e2:72:bd:27:76:
8c:09:c4:65:31:83:3d:b2:52:7a:b1:d4:fc:1e:7f:
33:01:99:6a:6b:23:cf:e0:d4:5e:49:a5:c1:8f:85:
bd:17:e3:21:2f:c1:19:b9:2f:83:50:38:27:d7:02:
46:f1:7f:42:da:5b:0f:8d:74:c6:49:b7:ec:1c:62:
34:a3:b3:47:a4:f1:06:81:68:b8:0c:39:f4:84:d8:
f0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:17:4A:3A:A8:6D:F4:6C:8D:EA:3A:70:4A:BA:BD:47:EE:82:40:D9
X509v3 Authority Key Identifier:
keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
64:08:0b:f1:1b:22:1b:35:48:9a:e9:ce:9f:c3:7f:de:8b:69:
80:84:c0:9a:05:44:49:41:4a:95:7f:1b:7c:6e:5c:10:4b:bf:
83:5c:9c:6f:ad:74:dd:a8:77:28:31:b8:8b:a7:73:a7:15:b1:
e2:04:55:9c:3e:70:69:dc:cb:11:e7:18:e6:f5:52:f6:e9:51:
bb:26:c5:09:86:5d:62:83:26:30:86:00:fc:0b:02:c7:d8:5c:
99:b1:aa:95:51:9e:9b:3f:f4:fb:5a:f1:7f:8e:3a:03:b1:3a:
c5:b9:f9:96:85:ab:b9:7d:0d:01:27:33:cb:d3:75:1e:0c:1e:
11:09:51:fc:01:5a:bd:d0:e6:80:31:c3:cb:d0:a5:29:3b:54:
1b:78:d4:bd:33:28:f0:01:63:9f:a8:11:89:58:6c:b8:9c:2a:
8d:e9:7c:45:18:86:5f:34:ec:76:b7:dd:57:33:72:f6:5d:f7:
5b:76:53:c5:74:22:b2:59:eb:50:ec:92:b0:c6:22:38:a1:24:
2f:b1:80:1e:f9:8c:16:18:9c:25:e4:5a:d3:1b:25:d7:b6:98:
62:0b:86:01:c1:b9:7e:28:ec:56:9f:21:e5:6d:fc:50:4e:b1:
73:f2:67:73:89:8c:77:2b:7b:b2:8f:de:3a:e4:49:bc:b5:1f:
f6:aa:7a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:26:02 2026 by rpki-client