
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json)
Hash identifier: 4ywRatoiYcE/qvou1y1RqGo0EGS0aOsbcHyHxJh07I4=
Subject key identifier: 7E:B5:D0:6F:16:2C:F0:8A:5C:88:93:B1:9B:1E:D2:28:1F:1B:D5:23
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: 053C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
Manifest number: 051A
Signing time: Sat 11 Jul 2026 00:13:01 +0000
Manifest this update: Sat 11 Jul 2026 00:13:00 +0000
Manifest next update: Sat 18 Jul 2026 00:13:00 +0000
Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: AeljKFVwzN++uMis+awXdauT8cSV56W5MtOtQ/7wTAI=)
2: 693FD0A8127911F18FB8754C353D8C67.roa (hash: 2vsh9mlCd8KP8ShN9kNL1OPBZD5VxMSn/p2bSQnyh44=)
3: CF78AD96127811F183C0012F353D8C67.roa (hash: yTs4slfJUp8xAoMRVrm1EmE1KgWXBTMHYKJoI1jT1pE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 00:12:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1340 (0x53c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Jul 11 00:13:00 2026 GMT
Not After : Jul 18 00:13:00 2026 GMT
Subject: CN=6a518a8d-2b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:92:d8:e9:4b:07:cb:b3:ec:ae:45:9d:d8:3b:
4d:23:97:c4:ca:9b:2b:a9:ab:5e:e3:f8:0f:3a:29:
30:3d:4a:fc:a4:14:ba:ce:51:cc:d7:c1:85:cf:d0:
5c:5d:ba:68:7d:7e:39:96:91:0e:eb:47:5b:cf:cf:
2a:9e:ab:fc:0d:91:e9:a1:63:7e:11:ef:96:8a:65:
ef:97:5c:f5:d7:e3:32:bb:f0:b6:86:ca:c1:5d:fd:
03:49:c8:f1:f2:d0:2f:5e:07:63:e4:bf:1b:51:95:
01:24:92:71:f9:5b:ed:fd:76:a8:41:ef:b5:92:d9:
5f:14:8b:4c:91:bf:2c:e0:94:a7:d6:58:c8:42:68:
10:dc:cb:8b:43:d9:71:06:01:6c:71:ee:c5:98:33:
8c:2c:2b:b5:55:cb:57:29:0f:54:be:28:e0:26:70:
e3:19:07:1b:5e:d4:6c:99:51:8e:5a:b9:77:3f:ef:
18:23:44:f0:67:0e:aa:17:cf:e6:14:35:aa:79:8b:
86:1f:ea:c6:18:a0:57:ba:27:24:95:9c:7e:18:a8:
77:a5:73:0d:bc:76:27:38:7c:e8:ad:91:d7:a9:fd:
a9:a2:50:fc:42:c1:e7:0f:87:24:d6:70:cd:6b:b5:
3f:ff:96:48:d3:43:11:fc:39:32:30:d6:b0:93:31:
0e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B5:D0:6F:16:2C:F0:8A:5C:88:93:B1:9B:1E:D2:28:1F:1B:D5:23
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7d:fe:6d:29:f4:6f:3c:83:a7:60:9d:b8:60:35:86:4e:a6:d7:
04:e8:41:72:b5:09:98:8b:0a:24:67:f3:13:82:b9:5e:92:bb:
2a:53:63:d6:73:3d:36:e9:fd:5b:98:b8:3d:b6:e7:62:d5:fe:
13:55:03:9c:de:3e:32:c8:30:45:12:85:d7:2b:73:b0:3f:2a:
a4:d6:e2:73:84:c8:e0:61:c4:13:a2:4c:7d:b5:79:b1:ec:86:
1f:68:66:0f:69:18:07:b1:9e:be:66:07:13:b3:1f:17:f3:99:
3f:f7:c1:ed:d9:77:ff:6f:bf:c2:68:74:8d:42:6d:9a:8b:48:
6f:55:a0:10:23:0a:1b:6d:8d:fd:2c:cb:34:f3:0e:da:a5:ed:
f4:a3:68:ed:96:ce:a3:15:dd:b4:91:93:72:fd:2d:51:b9:74:
57:ef:1f:66:f2:e5:8c:e6:7c:ee:d7:e1:46:1e:71:7d:76:02:
b6:9f:9d:78:35:ba:7a:46:10:34:82:74:6d:19:c1:12:05:47:
68:6a:37:dd:5d:ee:16:2b:b0:2c:53:21:aa:d8:86:65:ea:b1:
02:23:42:99:77:cf:f6:88:1a:14:b3:d2:a5:d4:ef:4a:b6:5e:
6f:8d:63:3e:79:39:27:7d:34:17:a8:89:4a:18:c7:77:39:ee:
2d:a3:07:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 07:45:42 2026 by rpki-client