
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json)
Hash identifier: GWhwDKWOVjf+Eoxw3/xokpI+oDO/EN0/BOWNhTWJtJQ=
Subject key identifier: 81:E2:8E:2E:E4:C3:F7:D7:19:DC:C2:7D:3C:9F:94:7F:70:50:37:C9
Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA
Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA
Certificate serial: 0E62
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
Manifest number: 0E58
Signing time: Sat 28 Feb 2026 17:55:09 +0000
Manifest this update: Sat 28 Feb 2026 17:55:08 +0000
Manifest next update: Sat 07 Mar 2026 17:55:08 +0000
Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: QLhZAa7DTKJJF5VR0u4sQniHJaWc6fBs7o1WIiKrhWI=)
2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl
rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 07 Mar 2026 17:55:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3682 (0xe62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA
Validity
Not Before: Feb 28 17:55:08 2026 GMT
Not After : Mar 7 17:55:08 2026 GMT
Subject: CN=69a32bfc-1b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d5:d6:84:8a:94:b8:00:f2:2c:f8:f6:cc:8b:
21:89:94:c4:e5:0d:18:cf:7a:7e:18:db:c6:c2:ee:
79:71:cc:de:d3:fb:0b:8c:3a:4d:d2:03:35:8a:68:
05:2c:b0:c9:2c:ef:34:4f:dd:25:d8:60:12:b3:69:
07:db:13:f3:e5:aa:87:58:f3:7c:05:16:43:6d:b4:
28:04:12:34:e6:68:4c:e3:87:1b:e1:7d:33:a3:47:
0a:7e:d7:41:d3:93:e5:25:9f:be:8b:49:b4:b9:2b:
80:c3:84:83:ee:07:5a:83:22:db:54:c5:fe:ba:9b:
09:66:d1:86:90:ef:5c:ea:a7:e4:f0:29:bd:fc:ff:
ad:17:55:1c:2e:06:18:10:25:9f:d6:0f:5a:68:25:
6f:32:5c:25:15:b6:eb:c6:b1:14:27:05:5b:12:5b:
74:00:16:61:e3:0b:30:07:84:6a:c4:47:0b:74:8b:
e8:6f:1b:ac:c0:14:fe:d4:35:69:37:8d:92:4a:46:
c9:75:da:d3:aa:a2:79:be:40:80:f9:f3:8e:02:c2:
19:bb:6e:e9:f8:07:39:b6:05:c3:3a:b4:f4:45:d6:
8d:67:5c:fb:24:98:d1:50:b1:ff:4d:e7:cc:a6:42:
9c:76:f9:39:26:99:08:1c:de:28:cc:a5:f8:95:2a:
93:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E2:8E:2E:E4:C3:F7:D7:19:DC:C2:7D:3C:9F:94:7F:70:50:37:C9
X509v3 Authority Key Identifier:
keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1c:7f:16:8f:96:6a:4d:b2:1a:ec:90:f3:ce:53:1b:e9:f0:34:
bc:e9:07:17:14:7d:15:4c:66:14:74:15:f1:54:ac:9a:6f:41:
41:01:64:64:e7:cd:7d:5d:d4:1d:02:5d:29:a5:20:8f:ca:89:
bc:c6:83:4a:8d:19:0d:da:28:8b:e2:b0:2e:b6:1e:24:22:8e:
e7:b3:6e:bb:33:dc:6a:53:0e:8c:34:88:69:26:4b:5e:df:e5:
16:e6:c6:17:4d:f5:4d:3c:3f:d1:64:e4:69:da:e9:02:d8:06:
2b:a3:8a:0d:4f:e9:39:51:7c:c4:21:a9:7c:8f:ab:44:b3:bc:
4e:87:61:8b:8e:2c:b6:59:3d:5a:f8:90:b9:13:b8:ca:25:7e:
6a:e9:ec:c3:d2:c5:01:06:d9:b5:40:1b:c1:b5:f4:49:1d:58:
d8:cb:d7:a9:61:ff:e8:8a:55:4e:32:22:43:3f:fd:66:cc:f0:
cc:aa:13:9a:6f:69:c5:53:53:37:7d:2c:07:a7:6f:5b:aa:48:
a4:0a:de:cd:6f:ec:7b:a1:ca:91:73:5a:83:5c:99:77:f8:ca:
c5:c9:de:f6:ab:4e:f6:8a:14:67:56:7c:93:2c:83:41:22:60:
21:91:dc:0f:52:02:39:a3:97:2e:1a:3b:43:5d:b9:21:6f:a1:
dd:88:8e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:15:41 2026 by rpki-client