
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json)
Hash identifier: GMuueWom8GYETghmLd/NL7yzc3nP9dZm6KcSWE+nOXw=
Subject key identifier: 9B:7B:92:15:B7:7A:80:FC:8B:6B:69:A4:2B:06:C7:2A:5E:F2:36:36
Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC
Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
Certificate serial: 011E
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
Manifest number: 0112
Signing time: Sun 05 Jul 2026 06:42:09 +0000
Manifest this update: Sun 05 Jul 2026 06:42:09 +0000
Manifest next update: Sun 12 Jul 2026 06:42:09 +0000
Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: xPgsoZL93RV1FOzlW6yFdVtSLIND4ctL9A4Bp8Gg1mA=)
2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: Nuy8wkTfNQsDA+tWgvTQcyjhbo91R+mIegI98+xjZxA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl
rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 06:42:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286 (0x11e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC
Validity
Not Before: Jul 5 06:42:09 2026 GMT
Not After : Jul 12 06:42:09 2026 GMT
Subject: CN=6a49fcc1-58d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:08:46:dd:1d:35:00:88:1b:5e:f6:84:a0:69:
86:19:03:8e:d0:95:f0:6d:6f:38:2f:51:fc:cb:b1:
fe:16:8a:99:24:59:ee:33:54:ba:a1:01:e9:fe:d6:
98:48:a8:36:cc:7c:df:bb:32:16:e6:03:11:a1:97:
8a:9f:0a:07:e1:80:e7:2f:71:09:af:00:e2:0c:c6:
04:2d:01:86:82:2b:a2:f5:02:f9:4d:9c:b5:94:4c:
72:2f:df:c5:53:bb:8b:7b:79:f5:7b:2b:57:df:c3:
1b:d7:b3:b5:2e:aa:22:92:f7:99:01:b5:d9:84:50:
c4:8b:75:9e:82:05:5e:b5:d1:7a:be:76:8a:7a:32:
da:ee:f5:19:a0:e9:31:b0:05:49:b5:7b:34:d0:ef:
0f:53:31:ba:d2:6d:9c:90:0f:32:7f:dc:6f:37:01:
e6:9e:f9:65:99:38:52:15:f3:2a:42:e3:a0:e2:f1:
00:fe:5a:aa:bf:b0:e4:ee:47:a1:85:87:04:c4:96:
c8:a7:e8:82:dc:02:60:9e:9f:8a:25:92:1f:19:46:
59:db:14:34:cb:41:c5:07:9a:62:72:d3:1d:92:72:
7b:7e:75:d2:d8:2a:bb:77:6a:96:4b:42:9d:32:f8:
ef:49:3e:1a:6d:8d:5c:7a:79:67:62:25:be:57:32:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7B:92:15:B7:7A:80:FC:8B:6B:69:A4:2B:06:C7:2A:5E:F2:36:36
X509v3 Authority Key Identifier:
keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:85:f0:58:09:09:1d:f1:3a:8d:09:6b:1e:b9:b9:c5:eb:62:
3b:8e:d3:44:eb:83:86:23:d5:69:37:b9:9c:35:11:37:d1:d8:
0a:67:45:4b:9d:a8:4c:b2:fb:60:79:55:69:be:31:7b:36:bb:
17:86:b5:be:b4:f0:b2:eb:a9:96:d3:0c:1a:6a:de:23:3e:f6:
2b:34:31:fd:b7:f1:0c:39:c3:c4:28:79:07:1a:ec:ed:e7:96:
8c:2b:73:be:62:8a:98:8a:05:dd:39:a8:b4:9b:48:02:3a:34:
3c:75:fd:91:7c:70:1d:1d:1a:bc:48:4a:63:23:56:59:2b:a5:
f4:95:6c:19:90:9d:34:52:03:c2:40:8e:27:48:c1:8b:7f:6a:
a7:e5:4c:c6:e7:f9:4f:99:f3:fe:11:05:7f:b6:72:f0:46:eb:
e1:79:be:df:e9:38:46:c0:31:d0:d1:ed:6b:36:e5:26:8d:95:
ed:de:2b:0d:c3:bd:2e:74:d3:f2:d6:28:b7:b1:ea:7c:56:aa:
c2:5c:27:a2:d0:fe:56:2f:f4:45:cf:a8:d4:c2:7d:c1:af:9e:
b5:da:21:bc:1a:8d:8f:9a:e5:8d:5f:be:d7:13:14:3c:3f:7e:
87:c8:a5:f8:0c:27:3f:1b:3f:20:34:8f:0f:99:1a:47:28:c6:
bc:84:57:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 01:19:16 2026 by rpki-client