
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft
File: HfNLnj96ONdYmO1LBfntTEAEzrw.mft (raw, json)
Hash identifier: BRfn0fSeGTvQoiTlgZaL3zifUlRGsRONX5ZwXg4WyX8=
Subject key identifier: 74:90:C5:9A:EA:A4:8F:FB:F4:8B:2E:69:5E:98:EA:D1:A5:7D:84:E4
Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC
Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC
Certificate serial: 0ACD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft
Manifest number: 0AC0
Signing time: Sat 04 Jul 2026 19:35:02 +0000
Manifest this update: Sat 04 Jul 2026 19:35:01 +0000
Manifest next update: Sat 11 Jul 2026 19:35:01 +0000
Files and hashes: 1: HfNLnj96ONdYmO1LBfntTEAEzrw.crl (hash: rkKHYRxjiIalxhkiO9dynJ1CiSLWGqaJ06x0Qgp/ZMU=)
2: A23D5DE87A6911EA930EB439C4F9AE02.roa (hash: MObLxHg+0HyslwCyt5x1ibD8HWNnbjOCAqyl5AXJDCE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl
rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 19:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2765 (0xacd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC
Validity
Not Before: Jul 4 19:35:01 2026 GMT
Not After : Jul 11 19:35:01 2026 GMT
Subject: CN=6a496065-d4ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:88:ba:9a:a8:e5:79:dc:dc:19:43:fd:8c:af:
b6:64:7e:aa:62:3a:e0:d4:a7:a2:ea:17:20:03:05:
4e:81:57:22:c6:bc:96:34:3a:08:c4:32:f5:68:4c:
17:c3:88:ac:fb:cc:fe:44:d7:60:41:25:2c:52:0c:
de:d9:82:8f:aa:e5:51:14:39:99:ae:64:9b:74:ce:
47:52:91:b8:a6:04:88:13:b3:cc:d6:24:9e:21:4c:
99:e8:02:84:73:5f:cd:e4:28:56:b0:c5:9a:35:d6:
50:4b:af:40:36:ad:45:e5:d5:ee:01:56:e3:60:6a:
28:d7:0b:4e:36:78:8e:1e:7d:e9:3c:c5:63:08:22:
0b:ae:e7:62:f9:b1:f3:e7:38:6d:69:9f:a8:39:15:
16:0d:76:26:17:06:bc:7e:9d:28:49:f3:49:7c:33:
fb:a6:0b:a4:83:ad:23:9f:b3:70:79:aa:99:6b:9a:
f8:f1:54:b2:2d:10:ba:8e:13:33:f6:36:dc:0b:1d:
a9:4c:e7:3d:94:69:26:8f:62:d6:76:a9:c1:a7:2a:
53:4b:b9:3c:84:ea:1d:f2:f3:e0:38:7f:d3:40:bc:
1f:ed:89:3e:62:5e:9d:8c:6a:7a:0a:ca:0f:ff:90:
f6:43:de:74:7f:62:1f:1d:89:79:2d:c1:db:b4:df:
f3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:90:C5:9A:EA:A4:8F:FB:F4:8B:2E:69:5E:98:EA:D1:A5:7D:84:E4
X509v3 Authority Key Identifier:
keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d4:b6:77:fa:eb:33:a0:7d:0c:19:3f:53:fa:46:8c:40:ce:1d:
43:8d:cf:30:63:4d:eb:14:c0:7d:07:9a:1d:b6:1e:8a:8a:0b:
51:85:a3:01:c2:e3:e3:b1:0b:ec:43:bd:13:0c:f0:b9:59:33:
b7:85:51:49:17:e9:ea:2d:c8:be:d8:27:e8:85:16:90:0d:56:
19:56:81:2a:3c:07:55:e3:88:3c:49:d2:40:48:a0:3f:40:4b:
55:8a:4e:c5:40:e8:83:f3:7b:5a:6c:57:5e:e7:79:24:21:09:
c2:7d:04:1f:8f:04:af:db:22:39:76:5a:66:d4:ce:28:0c:47:
72:60:20:97:74:e9:ea:96:dd:31:d4:df:bc:e5:86:37:c2:a5:
ea:4a:35:2f:07:94:10:a0:8e:c5:2b:ef:70:45:eb:0e:9d:fe:
1e:ff:21:70:5d:bc:37:50:d7:b0:b1:24:ca:3d:fa:72:05:23:
30:02:55:fb:35:b1:b2:da:06:33:91:f4:10:c7:fa:64:de:36:
fb:8f:a4:32:9b:9d:9a:d9:ae:07:74:84:a6:5a:cf:ab:76:4d:
b9:50:48:af:60:c4:52:03:82:97:af:d5:69:a0:63:9e:1c:9c:
19:9a:fb:a5:cb:77:2a:ee:cf:a4:c2:17:81:9e:ed:14:a7:ae:
86:07:9d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:45 2026 by rpki-client