
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json)
Hash identifier: Fu5ha7jWyYgQCXBzsZ9msRNvzOzvm2scOhJtAscsL04=
Subject key identifier: 6C:5F:1C:89:CB:85:13:70:C5:A4:D3:F0:9D:FB:FE:11:11:7D:14:E5
Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66
Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66
Certificate serial: 015F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
Manifest number: 015B
Signing time: Fri 17 Jul 2026 06:06:32 +0000
Manifest this update: Fri 17 Jul 2026 06:06:32 +0000
Manifest next update: Fri 24 Jul 2026 06:06:32 +0000
Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: OHNZIe54VosPB/jGPa4102Ojz9YOGylYFA7Wqrw0IiI=)
2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: jZ7jlvG+kbpMf5yr4kDr9NTPJvX7t9Ub5k4dGFxMqwU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl
rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351 (0x15f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66
Validity
Not Before: Jul 17 06:06:32 2026 GMT
Not After : Jul 24 06:06:32 2026 GMT
Subject: CN=6a59c668-7d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1d:4e:16:6e:2e:d0:1d:e4:50:83:74:14:3b:
d6:ee:2f:c1:4f:a1:9e:c4:58:30:a1:e3:ce:2b:34:
67:15:1a:07:c8:30:b4:14:0a:42:bb:21:bb:af:17:
e5:19:a2:7c:0d:a0:30:86:5c:5a:e6:dd:df:63:79:
1f:b8:6d:82:1f:e0:87:6f:39:0e:e5:1e:71:cb:0a:
14:d7:67:49:86:10:4d:47:e9:79:9c:a5:df:13:74:
00:c6:c8:5f:41:13:bf:6d:ad:02:34:c6:2b:bc:2a:
72:76:83:9f:1b:0b:cf:e8:49:b5:97:ab:06:31:c1:
7f:16:ee:69:00:8e:78:0b:33:27:e7:7e:61:88:79:
af:ef:69:6e:20:20:a7:38:61:5a:f5:4a:05:de:26:
02:7b:eb:cd:64:57:e8:b4:09:de:47:36:ce:59:05:
1a:87:7a:0a:b1:e6:a0:60:be:66:ea:75:23:55:8a:
ed:d8:0a:ab:5b:5f:1d:2a:5c:82:3f:a4:e3:13:c9:
a7:5e:81:20:dd:c6:48:fa:e4:e6:17:a7:c4:89:23:
27:cd:6d:95:c2:47:b4:05:87:63:64:2d:be:4c:a5:
01:73:9f:0d:f4:e9:a5:d1:e2:0f:00:5a:f1:76:54:
f8:e3:99:b2:5e:25:58:53:c0:70:ac:ec:83:bb:90:
32:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5F:1C:89:CB:85:13:70:C5:A4:D3:F0:9D:FB:FE:11:11:7D:14:E5
X509v3 Authority Key Identifier:
keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
bc:83:e8:e1:5e:c1:a9:33:f0:45:6b:aa:ba:d5:eb:a8:ea:f2:
0b:bd:58:11:c2:30:3c:4a:ed:de:01:ae:ff:4e:74:ea:e0:c1:
96:f5:c8:c1:cb:a0:1f:2a:4f:22:4d:ae:a0:7c:53:41:b0:ea:
39:f2:e1:30:8c:df:71:c3:8b:a5:54:7f:7d:1b:38:d3:01:58:
2d:6d:33:e5:4b:35:fe:8d:57:10:be:8f:04:f8:dd:93:77:e9:
1c:14:4d:c6:ec:9d:59:02:65:2f:73:06:3a:86:ce:ff:e6:00:
ad:81:7c:29:53:5d:b8:58:30:7a:d0:d3:15:84:8f:23:da:8c:
3e:f2:1d:cb:da:d1:80:a1:b3:5b:84:95:0f:02:1c:e2:00:6e:
54:29:b2:da:20:3d:0a:d9:4f:f9:63:25:2a:15:b6:a0:ce:79:
55:a8:77:b1:a0:92:0e:14:c3:e2:65:aa:c9:cf:b8:80:05:00:
80:24:23:d5:a4:0e:13:10:05:bd:7f:72:16:a0:7d:76:16:b8:
da:74:fc:26:5d:07:c1:07:79:cd:77:78:f4:0f:f7:56:62:63:
7e:5d:d6:a4:e5:3b:3f:7f:8b:c9:b9:00:c5:b7:bc:eb:0b:0d:
4e:a5:13:50:95:a8:ab:38:57:7b:c3:54:d3:bf:08:6e:1d:8e:
a7:07:09:10
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz
MDAzMUNGNjYwHhcNMjYwNzE3MDYwNjMyWhcNMjYwNzI0MDYwNjMyWjAYMRYwFAYD
VQQDEw02YTU5YzY2OC03ZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1x1OFm4u0B3kUIN0FDvW7i/BT6GexFgwoePOKzRnFRoHyDC0FApCuyG7rxfl
GaJ8DaAwhlxa5t3fY3kfuG2CH+CHbzkO5R5xywoU12dJhhBNR+l5nKXfE3QAxshf
QRO/ba0CNMYrvCpydoOfGwvP6Em1l6sGMcF/Fu5pAI54CzMn535hiHmv72luICCn
OGFa9UoF3iYCe+vNZFfotAneRzbOWQUah3oKseagYL5m6nUjVYrt2AqrW18dKlyC
P6TjE8mnXoEg3cZI+uTmF6fEiSMnzW2Vwke0BYdjZC2+TKUBc58N9Oml0eIPAFrx
dlT445myXiVYU8BwrOyDu5Ay7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGxfHInL
hRNwxaTT8J37/hERfRTlMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD
N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6
MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS
WjM2REFUZkJCbGN3QXh6MlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAvIPo4V7BqTPwRWuqutXrqOryC71YEcIwPErt3gGu/0506uDBlvXIwcugHypP
Ik2uoHxTQbDqOfLhMIzfccOLpVR/fRs40wFYLW0z5Us1/o1XEL6PBPjdk3fpHBRN
xuydWQJlL3MGOobO/+YArYF8KVNduFgwetDTFYSPI9qMPvIdy9rRgKGzW4SVDwIc
4gBuVCmy2iA9CtlP+WMlKhW2oM55Vah3saCSDhTD4mWqyc+4gAUAgCQj1aQOExAF
vX9yFqB9dha42nT8Jl0HwQd5zXd49A/3VmJjfl3WpOU7P3+LybkAxbe86wsNTqUT
UJWoqzhXe8NU078Ibh2OpwcJEA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 10:13:07 2026 by rpki-client