
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json)
Hash identifier: UnN1ySHxwZfy+M6q7BxxJyRWDgmd3Ht6NSPw5gRMn6A=
Subject key identifier: 67:2B:6A:23:0F:82:7A:1C:7D:31:D8:76:B1:1C:2C:C7:6F:F5:0C:E0
Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3
Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3
Certificate serial: 01CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
Manifest number: 01CB
Signing time: Fri 17 Jul 2026 04:44:02 +0000
Manifest this update: Fri 17 Jul 2026 04:44:01 +0000
Manifest next update: Fri 24 Jul 2026 04:44:01 +0000
Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: EA173Mn2nTzd5qr9gI6+w3jS2sS6cNTLIL+INF98B/4=)
2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: b/pfyAz5rp6mzw6WWGb7CmVVosPd7X9N4rdBir+XR2M=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl
rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:44:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463 (0x1cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3
Validity
Not Before: Jul 17 04:44:01 2026 GMT
Not After : Jul 24 04:44:01 2026 GMT
Subject: CN=6a59b311-5c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d2:6a:3d:98:0c:57:1d:4c:02:61:41:fc:37:
f0:53:17:61:d5:00:0e:4f:b4:07:13:44:df:4a:5b:
bc:a8:0f:59:85:ad:3f:08:b6:e6:49:da:f1:35:29:
2c:5b:c5:0b:42:bb:2c:d0:8d:da:99:a4:17:93:3c:
f8:f6:41:e5:b0:f5:95:90:82:4c:80:71:d8:b3:d9:
7b:04:4c:2d:85:b1:6f:a7:a0:0c:7f:12:c8:c7:4f:
ac:8a:df:3a:42:e7:8f:14:59:78:3a:d9:5c:0d:25:
37:08:9f:97:eb:08:63:f3:a0:24:35:7a:1e:1f:af:
24:e1:a4:30:fa:2c:6b:e3:7f:4d:e3:8d:d1:79:2b:
41:05:d5:39:fa:60:8e:4a:eb:da:71:84:24:68:94:
76:04:da:30:38:bf:65:c7:44:fc:2d:31:24:a2:64:
2a:80:f3:ea:82:62:64:28:b9:37:11:91:8b:db:e9:
71:48:3a:16:68:2f:85:f7:7e:3b:10:8b:b5:90:7d:
46:a5:a1:f1:9f:f6:e6:16:a0:4f:19:e9:ae:8b:e1:
20:36:f0:57:38:5a:b2:22:72:95:de:3b:fb:42:a2:
a9:24:95:33:f8:0f:6a:d2:f0:16:73:06:ee:19:67:
e8:8d:1e:90:eb:2b:e3:07:ff:5c:79:42:60:2e:35:
45:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:2B:6A:23:0F:82:7A:1C:7D:31:D8:76:B1:1C:2C:C7:6F:F5:0C:E0
X509v3 Authority Key Identifier:
keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a2:33:46:22:50:96:19:b8:aa:98:b8:87:30:4a:53:01:78:0e:
45:40:5d:a8:22:48:22:8f:7b:64:7b:4f:01:ad:39:c6:24:4c:
5c:83:3e:d9:10:34:1b:64:bd:d0:8c:69:b1:42:11:67:60:aa:
98:7f:a1:d4:63:23:43:57:c1:86:42:a5:d0:f2:ed:1e:1d:03:
fc:72:71:b7:a6:fb:1d:c0:ba:dd:b2:85:87:67:28:ff:8c:ea:
61:fb:e8:59:f6:ec:e0:44:a0:30:47:3c:79:d9:36:0a:de:ea:
a1:ad:29:9f:37:54:6b:34:dd:dc:6d:64:1e:fb:70:0b:13:c3:
6c:c5:63:2a:e3:36:3d:cb:10:f8:63:95:d7:14:7e:ef:1c:7a:
27:f9:9f:92:6f:dd:59:6a:97:00:3c:34:de:74:48:55:8a:e9:
dd:f0:e0:17:58:3c:b1:11:31:c9:37:c6:99:3a:a7:98:db:b1:
31:a8:ec:8a:1b:96:e4:3c:5d:2f:74:d1:37:c4:87:9f:75:0d:
a5:f1:8f:0f:ee:c9:01:7b:0e:c8:73:d0:56:37:cf:32:f1:2a:
15:66:81:17:1f:c4:07:bd:f5:db:92:b0:a4:b7:95:ba:0b:b2:
9b:33:a6:1a:cb:6a:41:ca:c7:91:b7:3e:55:0f:14:18:c3:46:
fa:18:2a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:15:19 2026 by rpki-client