
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft
File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json)
Hash identifier: 3TQFMGaoWG5wsIxsxtTGbfqZf28+xuIrgABP4jP8YdA=
Subject key identifier: 7D:79:05:55:57:07:67:E4:14:3F:D1:31:91:C5:5E:55:E1:4F:C8:AE
Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF
Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF
Certificate serial: 0142
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft
Manifest number: 013F
Signing time: Sun 01 Mar 2026 06:18:57 +0000
Manifest this update: Sun 01 Mar 2026 06:18:57 +0000
Manifest next update: Sun 08 Mar 2026 06:18:57 +0000
Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: G92T91VIttT2HTqPeh/v+Q0mX0TN0TSbu9nNTDWm4cg=)
2: F67388B8C8EE11F0B296D571C4F9AE02.roa (hash: c5ZB2ZHBUWip+FpUZrCGdjuP34/HCD1gUejKT/4LLsI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl
rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 06:18:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 322 (0x142)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF
Validity
Not Before: Mar 1 06:18:57 2026 GMT
Not After : Mar 8 06:18:57 2026 GMT
Subject: CN=69a3da51-5008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:24:e8:83:06:51:1f:02:36:4b:08:19:88:da:
00:59:c5:42:c6:47:83:ea:41:c9:24:e1:1c:9b:06:
f9:4b:9e:f3:e9:04:f7:c5:32:12:d4:c8:ba:8f:43:
4b:bf:3f:84:93:d2:db:b1:8f:e5:37:7d:60:61:2d:
e9:fa:37:d7:b3:cb:25:2b:95:05:dd:65:c9:bd:d4:
c7:bd:86:75:0a:00:40:bc:42:59:24:7b:f7:f6:53:
07:83:4e:be:8e:90:08:6c:5c:a8:47:9d:ce:a5:3d:
67:27:cb:26:5d:01:a1:13:3d:8d:7f:4d:f6:8f:9d:
a9:c7:40:91:44:af:b5:9a:32:81:eb:59:10:6c:a4:
42:1f:79:17:9c:47:50:6e:cc:d2:02:e4:96:1e:7c:
82:7e:61:42:ee:ec:35:c6:eb:67:58:46:9a:b0:c7:
2d:3d:dc:6b:df:45:89:7b:70:6a:b1:ac:f4:f4:6d:
34:8e:87:47:7a:6c:b9:0c:e6:a1:8b:d2:81:0f:3e:
2a:f1:1c:09:ae:82:d2:3f:45:14:f8:99:b5:fd:0a:
82:93:e8:66:90:b4:ef:32:98:30:37:e1:8a:08:31:
38:5b:e0:14:52:8e:41:c1:8e:86:ea:08:0c:1a:0d:
d3:21:0d:ea:47:9b:3e:a0:7f:45:d1:bd:9e:ab:70:
66:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:79:05:55:57:07:67:E4:14:3F:D1:31:91:C5:5E:55:E1:4F:C8:AE
X509v3 Authority Key Identifier:
keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:f4:f1:1e:2f:56:f4:8a:2f:4e:20:56:f4:92:72:df:e9:e8:
1e:df:4f:12:e4:f4:5f:85:aa:7a:2b:65:71:5b:ae:1f:0a:f9:
e2:40:b0:6f:8c:ba:8f:b8:a4:4f:14:cb:95:30:e4:ec:3b:1d:
f8:ef:ae:d1:0a:f9:e9:19:41:ab:cc:08:b3:56:f2:f3:34:08:
01:db:33:0c:09:e7:aa:de:a0:54:9b:9a:75:3e:18:7e:0c:5f:
47:c1:cf:7c:2b:78:d5:43:8d:83:46:75:37:aa:e8:7f:55:1f:
12:73:f7:56:62:cf:78:27:5d:ed:f6:84:8f:d0:14:33:89:99:
a4:99:f5:2d:85:09:ca:ee:16:8a:a8:8b:b5:80:eb:9b:a3:c8:
0b:9c:67:0a:93:e7:5c:3b:85:ff:ba:99:df:09:45:fa:93:23:
fe:4b:81:6b:2c:15:d0:c5:f1:a5:db:88:a7:41:13:4f:ba:74:
5a:53:fe:fb:b0:ff:f7:c9:71:28:ec:cc:da:b1:2a:d8:91:2f:
f8:c6:95:1b:29:3a:38:e3:99:67:1a:18:47:cc:75:55:3d:5e:
5f:03:4c:0d:83:72:ae:80:cc:6e:64:81:62:95:f7:dc:94:30:
ad:9d:63:e1:c2:26:e7:55:08:3d:c4:55:5c:d9:3e:40:b7:f4:
e2:c2:e4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:13:05 2026 by rpki-client