
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft
File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json)
Hash identifier: H/00W7i3LczPUy8Aog6Et75wtNa4DNw272Fy36+c7Dg=
Subject key identifier: 92:CC:FF:18:1F:66:A0:97:69:FB:B4:FF:12:40:A8:0D:DA:BC:77:58
Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32
Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532
Certificate serial: 08FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft
Manifest number: 08E7
Signing time: Sat 04 Jul 2026 20:32:21 +0000
Manifest this update: Sat 04 Jul 2026 20:32:20 +0000
Manifest next update: Sat 11 Jul 2026 20:32:20 +0000
Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: jxxy67l4F9G0R+I2qWHKIimd1nteBJb7MB3ptMc++6E=)
2: 0694DE925E7011F18D994AD5147AAC22.roa (hash: 1VTps7TMblVtTtQQmFdN1wLLHWYElV09OvYdQPb9W90=)
3: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: j1ZQSkQIYFS+gldnyZ+dTEQnL4DNzl2Ixm3soEFr45s=)
4: CEDD71FAE48811F09BEEC367446F56BC.roa (hash: n4+tu4whf2PQeZcNUGvCEnzwL08T5EGFFqHM2nYkstI=)
5: 57BDB7A85E7011F1A73FCCD7147AAC22.roa (hash: D1vi/CU/2Qa3UAwk8ROF6/81kLEg5XQ0HrFSPG7aFBg=)
6: AF3304C65E6F11F18B912BC3147AAC22.roa (hash: mugZ6N0u6WAwoUu9/alz8CzePymZa9nygy/+jo0Dw6g=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl
rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 20:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2301 (0x8fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532
Validity
Not Before: Jul 4 20:32:20 2026 GMT
Not After : Jul 11 20:32:20 2026 GMT
Subject: CN=6a496dd4-142d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e3:61:06:5e:27:3e:6e:bf:06:91:eb:e8:e5:
40:ba:2e:42:c6:f1:6e:5a:f5:89:f6:86:6c:42:fe:
ea:a5:d9:d6:57:cf:9e:9c:f8:f7:35:65:0e:43:bc:
3d:73:8e:e5:64:4d:10:34:cf:34:05:b1:11:79:49:
4b:f0:4a:f3:0f:7e:6c:9c:9c:01:8d:73:e0:4d:74:
2b:04:20:69:12:91:35:0c:90:1b:e4:46:c5:a9:ba:
56:e1:c3:d5:39:f5:49:2d:c3:65:58:3f:5f:82:ae:
1d:fe:f4:93:65:00:0e:6e:e3:02:76:7a:0c:74:09:
6a:6b:ea:90:2b:de:e8:e5:b2:b7:24:ff:3a:6b:b4:
23:18:43:dd:3e:08:98:4d:30:f2:e6:1a:1a:be:1e:
15:30:16:07:95:3d:f5:a8:17:a9:c1:c6:10:27:fb:
7c:fa:4c:1a:f7:08:d6:d4:e5:93:9b:6b:32:a0:ca:
34:35:19:dc:7b:56:e8:4c:86:77:3c:27:b9:49:00:
8c:21:c8:88:15:e3:a0:9d:19:59:5f:5f:25:6a:80:
c3:e0:bc:c7:b6:a2:99:61:c5:b4:5f:2a:72:ae:46:
d9:5a:5d:65:cd:b5:cc:fb:06:2d:f9:78:cf:36:d7:
25:c5:9d:ad:9a:f8:d5:3f:87:dd:e9:58:6c:a7:9b:
1e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CC:FF:18:1F:66:A0:97:69:FB:B4:FF:12:40:A8:0D:DA:BC:77:58
X509v3 Authority Key Identifier:
keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
67:e6:18:46:df:19:1d:7b:57:81:61:99:4c:2b:f8:e9:66:87:
99:7a:39:0a:a7:65:89:8a:c3:91:b7:25:93:52:77:25:46:47:
7f:3e:15:c5:f1:f4:76:94:62:e0:c9:bc:bd:16:1a:3a:b5:1a:
69:c6:7e:56:c5:fe:16:5c:49:47:6b:95:07:5e:35:bc:60:51:
ee:7f:fe:07:83:b4:99:0d:a1:c2:3e:18:6a:10:19:2d:52:4c:
c9:b1:77:eb:87:76:5e:82:0f:07:95:bd:f1:21:37:ff:d4:e6:
9a:a3:db:d3:f5:b7:53:35:57:21:37:97:a5:b6:d2:df:64:f8:
82:8f:60:0c:11:87:4d:cb:82:b9:8f:08:a0:74:c2:e4:43:66:
3c:3e:97:07:d8:e3:33:ba:6e:54:e5:79:a4:89:37:9d:e1:8f:
07:49:87:ba:3b:2d:41:54:f6:02:f7:7d:86:5e:1a:09:2f:cd:
e3:a7:ab:f6:ab:cb:b2:02:bb:31:47:95:53:6d:4f:87:fb:20:
af:1f:5b:9c:57:24:ca:cd:44:5f:8b:1e:0b:ce:f2:75:96:37:
5f:59:7e:14:35:e4:cd:d1:ad:06:dc:a0:8a:71:b8:0c:4c:5d:
fd:00:8b:0f:0f:89:a8:05:80:c6:cc:12:1b:5f:00:1e:39:2e:
c5:d0:8c:d3
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG
QUQxRDM1MzIwHhcNMjYwNzA0MjAzMjIwWhcNMjYwNzExMjAzMjIwWjAYMRYwFAYD
VQQDEw02YTQ5NmRkNC0xNDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnONhBl4nPm6/BpHr6OVAui5CxvFuWvWJ9oZsQv7qpdnWV8+enPj3NWUOQ7w9
c47lZE0QNM80BbEReUlL8ErzD35snJwBjXPgTXQrBCBpEpE1DJAb5EbFqbpW4cPV
OfVJLcNlWD9fgq4d/vSTZQAObuMCdnoMdAlqa+qQK97o5bK3JP86a7QjGEPdPgiY
TTDy5hoavh4VMBYHlT31qBepwcYQJ/t8+kwa9wjW1OWTm2syoMo0NRnce1boTIZ3
PCe5SQCMIciIFeOgnRlZX18laoDD4LzHtqKZYcW0XypyrkbZWl1lzbXM+wYt+XjP
NtclxZ2tmvjVP4fd6Vhsp5seVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJLM/xgf
ZqCXafu0/xJAqA3avHdYMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE
MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO
VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR
NHo1TXlHcGotODM2MGROVEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAZ+YYRt8ZHXtXgWGZTCv46WaHmXo5CqdliYrDkbclk1J3JUZHfz4VxfH0dpRi
4Mm8vRYaOrUaacZ+VsX+FlxJR2uVB141vGBR7n/+B4O0mQ2hwj4YahAZLVJMybF3
64d2XoIPB5W98SE3/9TmmqPb0/W3UzVXITeXpbbS32T4go9gDBGHTcuCuY8IoHTC
5ENmPD6XB9jjM7puVOV5pIk3neGPB0mHujstQVT2Avd9hl4aCS/N46er9qvLsgK7
MUeVU21Ph/sgrx9bnFckys1EX4seC87ydZY3X1l+FDXkzdGtBtyginG4DExd/QCL
Dw+JqAWAxswSG18AHjkuxdCM0w==
-----END CERTIFICATE-----
Generated at Sun Jul 5 20:48:03 2026 by rpki-client