
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json)
Hash identifier: dCb1ro73bWXmjGSJ9RTElycyP7p3JN2U9odcHx49+0s=
Subject key identifier: 04:CB:A1:2C:51:BB:70:7B:D9:A0:09:2E:C1:B5:27:D3:31:64:2F:25
Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B
Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B
Certificate serial: 0672
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
Manifest number: 0648
Signing time: Tue 07 Jul 2026 07:51:28 +0000
Manifest this update: Tue 07 Jul 2026 07:51:27 +0000
Manifest next update: Tue 14 Jul 2026 07:51:27 +0000
Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: VlzvdB9SXlOsWsUORUhJNeJLO8R7E7lIIpEcAFg1bBY=)
2: 5AF5468879D811F18B1076AA62A30FBC.roa (hash: Txk3oJfW8oIUxGfHQSNc17ubTWdL39XUVrUs5+VxnYc=)
3: 8192DC9279D811F1ABEE2BAB62A30FBC.roa (hash: lzRS46VNGCFR6mmK03gAm8rTcOnzGRW+6BC889P7ELo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl
rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 07:51:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1650 (0x672)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B
Validity
Not Before: Jul 7 07:51:27 2026 GMT
Not After : Jul 14 07:51:27 2026 GMT
Subject: CN=6a4cb000-f627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3f:94:cc:c2:c6:a5:e5:9c:5b:29:b2:55:6c:
9c:0f:61:fe:1f:7e:20:4c:3a:bc:e0:47:6a:cf:5d:
00:38:9c:a5:af:21:3d:a9:f7:9a:7b:7a:29:3f:54:
36:6e:06:ae:de:e9:fb:31:eb:e2:8f:69:19:2a:b4:
aa:43:f1:06:4c:db:e2:46:50:24:14:7b:f5:4e:85:
c2:38:bf:fc:8d:ff:f7:3e:52:db:f3:67:10:bd:1d:
f9:e7:b8:2a:1f:00:23:8e:0b:22:6b:e4:5b:e6:16:
f8:41:08:32:c4:f5:73:d6:0a:6f:99:29:5b:48:3b:
e6:3a:58:e1:43:72:fb:fb:38:09:7e:f8:8c:7d:6a:
d5:c6:c5:c0:31:92:50:76:4f:cf:0d:c8:34:6b:24:
af:66:64:e3:92:49:f5:bf:c8:76:da:33:5e:d7:09:
f6:85:64:e9:f6:17:c6:b4:4f:4e:ff:b8:e3:5d:24:
39:21:96:38:4b:7d:67:df:ff:c1:e1:ff:fe:18:61:
53:c4:a6:c3:fe:c8:bc:82:77:f4:3d:eb:ac:e1:b9:
ad:2b:69:9c:4e:ec:04:4b:d9:e3:f7:1d:63:0b:a6:
5e:fe:c3:1a:19:dc:25:f1:49:3e:b6:ec:d4:e8:27:
24:da:64:69:23:18:d6:6e:63:46:12:9b:d4:6b:a0:
b0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CB:A1:2C:51:BB:70:7B:D9:A0:09:2E:C1:B5:27:D3:31:64:2F:25
X509v3 Authority Key Identifier:
keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
01:f9:88:07:39:ea:15:4b:a3:e1:2c:a1:c3:f0:f1:6e:7d:10:
86:58:01:14:a4:19:1f:06:7f:a0:56:57:45:92:62:90:7b:99:
09:4e:11:82:96:8d:6e:28:81:6b:4f:02:7e:9c:d6:eb:df:0c:
34:19:9a:5e:f3:65:f7:16:21:78:84:0f:58:08:88:70:71:e9:
d9:47:39:42:69:dd:e5:21:f7:5a:f1:93:b5:35:84:e5:38:39:
59:63:b9:20:b4:ec:fb:44:cf:ca:ad:7d:91:ea:fb:97:f7:50:
9d:3b:3d:5f:32:19:c9:4d:ad:d2:9a:9b:ee:e1:81:0c:91:01:
4d:a0:66:0a:6a:42:dc:30:4a:59:6c:59:8c:dc:11:6e:55:a6:
ce:5e:41:a7:c4:d2:be:b7:53:91:8c:2a:e9:13:8f:a1:83:f3:
de:17:91:8c:43:24:ae:f2:8b:14:8c:0c:8e:e6:f9:cc:82:8a:
a6:9d:29:b7:56:bd:25:08:db:71:4e:a5:34:ae:22:a0:a1:04:
8d:7a:79:79:54:8a:a3:46:cc:0b:b5:eb:86:21:5a:9e:ad:a6:
c9:d8:b3:89:f0:99:63:6d:b3:97:c4:56:0a:08:f7:18:a6:18:
8d:5e:23:d0:23:79:ec:5d:5e:ac:d1:93:36:77:55:32:ed:ff:
a0:b8:47:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 07:21:24 2026 by rpki-client