
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft
File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json)
Hash identifier: axU+39d8vBW2oUj4ji9RYj/DitPlZyio6gSXuLWpoNk=
Subject key identifier: 03:D1:BF:68:2C:44:FA:48:A1:E7:B5:1D:BE:DB:DE:A0:43:8D:16:4E
Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89
Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89
Certificate serial: 024D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft
Manifest number: 0247
Signing time: Fri 17 Jul 2026 03:15:40 +0000
Manifest this update: Fri 17 Jul 2026 03:15:39 +0000
Manifest next update: Fri 24 Jul 2026 03:15:39 +0000
Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: K3xhDHegwnOcI9gyyQnOPv5086OXcG1ElziUhrpmddM=)
2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: BQffJWUhC3MFwSjvVuhP9nq/ZEQ/mBQ35OQP2zYEaDA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl
rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:15:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 589 (0x24d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89
Validity
Not Before: Jul 17 03:15:39 2026 GMT
Not After : Jul 24 03:15:39 2026 GMT
Subject: CN=6a599e5c-fec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a2:65:d2:68:34:1c:f5:af:b7:8e:29:74:d0:
39:89:06:fc:1d:da:0e:93:a4:77:8c:65:38:c6:bf:
98:c0:19:a5:8e:0c:57:29:a4:f6:57:94:67:2b:10:
b7:af:fb:08:a0:6c:2a:eb:8d:09:a2:3e:99:36:72:
57:e8:da:48:ba:54:e0:0d:03:6f:6c:9c:69:ff:9a:
5f:3e:7e:16:ed:77:60:33:19:e4:27:31:fa:74:19:
5c:66:d8:16:87:b1:82:40:52:2c:f3:42:e3:b7:ee:
67:aa:fc:cf:73:7b:b4:eb:a2:a3:08:cd:7f:d4:51:
86:3b:f2:1e:54:95:6b:c9:b4:a1:91:e1:6e:3c:a8:
28:23:63:05:36:90:9c:8d:81:1b:c8:ca:5a:ba:73:
a7:4f:c5:01:28:79:00:ab:a2:ce:d9:6c:3b:7d:e9:
7c:76:23:d0:0f:25:1d:9d:91:a6:84:bb:29:a1:82:
6f:2a:6d:99:a4:39:d9:6b:8e:10:e2:2f:6a:91:42:
8e:85:75:ef:e2:b8:de:6c:88:1b:70:e3:11:7c:45:
db:f6:f3:d7:d9:d0:4f:66:fd:84:46:17:e5:53:56:
e0:0d:6c:96:33:dc:8a:8e:97:5c:f6:d9:a5:10:b8:
00:eb:7a:0d:24:b3:e3:df:19:61:40:4d:8f:83:6b:
c0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D1:BF:68:2C:44:FA:48:A1:E7:B5:1D:BE:DB:DE:A0:43:8D:16:4E
X509v3 Authority Key Identifier:
keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
46:24:7b:70:58:58:e7:5f:6c:65:a3:c1:28:f4:18:80:1c:b5:
40:b8:5b:6d:4f:5e:4e:50:fa:fa:76:2e:fb:e1:02:f6:f5:c8:
03:4b:73:3e:6b:3f:a2:f4:a1:c8:95:0b:89:f8:99:62:04:aa:
37:74:c7:cb:0d:4f:9b:52:0b:26:8a:f5:1b:a0:8a:87:2c:32:
08:4b:ee:2a:f0:a3:51:f7:b7:9c:84:9b:6c:2f:9b:3b:19:ac:
e5:14:6a:aa:57:df:1c:88:8a:1b:95:9e:fb:fc:a9:7a:23:ca:
a6:c5:f1:89:ad:45:d5:26:34:5f:f7:31:ab:d1:ad:3a:e9:d3:
d6:0f:be:56:f7:70:ef:74:cc:7f:75:46:8b:c5:5f:03:90:bb:
fa:aa:08:d3:55:41:8f:ab:9c:bf:ef:8c:2d:8c:6d:01:e1:2d:
97:3e:a9:9e:2f:5a:95:4f:c3:82:5c:7a:a1:06:17:81:26:8e:
90:7c:52:1b:6b:af:dd:75:89:ad:fa:16:46:81:f8:7a:b1:a5:
fe:75:16:1d:15:56:99:c2:d6:7d:98:32:6f:f7:d9:97:61:db:
6f:44:c1:8c:cc:a2:f3:61:a5:5d:0f:74:42:54:d9:39:1a:5a:
06:15:06:0e:94:1a:34:fd:92:8e:c0:d9:07:97:4e:9d:04:14:
5d:3e:12:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:35 2026 by rpki-client