
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft
File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json)
Hash identifier: zI3fN3200a1d6hnbN9KB5hpeLmQ3kEj/9322G2B6Xnc=
Subject key identifier: AD:21:5E:64:A1:62:69:69:CA:9D:8E:2F:87:7B:C8:A8:5B:1D:5B:8E
Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F
Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F
Certificate serial: 0492
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft
Manifest number: 0448
Signing time: Mon 02 Mar 2026 12:30:26 +0000
Manifest this update: Mon 02 Mar 2026 12:30:26 +0000
Manifest next update: Mon 09 Mar 2026 12:30:26 +0000
Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: Wt550EKpgkGWwywSzTTBs9/a/Uig7M6yKFUoTRFnWuU=)
2: 06820D08961011ECA540626AC4F9AE02.roa (hash: 3dB0qB5yNmzIvDRiuP2+fGgguKKPz4Cvi65Utf4OECk=)
3: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: PuL+mA1dV7Hh7bENHYnKx3eA2jTd4Smp4c1oR/M4V58=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl
rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 12:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1170 (0x492)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F
Validity
Not Before: Mar 2 12:30:26 2026 GMT
Not After : Mar 9 12:30:26 2026 GMT
Subject: CN=69a582e2-bf7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:70:e5:14:5a:e5:b5:e4:27:19:85:c8:bc:b9:
4d:e8:36:8b:cc:c7:b9:e5:76:f3:00:1f:60:cf:36:
e7:ee:63:e9:80:91:8a:b1:22:52:d5:5a:b5:81:ab:
e0:02:f7:6e:58:23:56:23:13:fc:12:8a:d1:e1:8c:
aa:88:89:1e:7b:60:04:ce:46:89:7f:2b:01:ad:dd:
e8:e8:71:7f:ff:29:65:ad:98:ff:53:a4:ca:76:69:
4c:61:bf:36:ba:46:4d:bf:1f:a5:00:51:76:d1:27:
d5:28:cd:d4:65:da:81:18:e3:1d:f5:4f:05:9c:c6:
8e:bd:d0:d9:28:b9:11:6b:c2:a9:e9:93:15:cd:1f:
9d:1b:ba:03:cc:81:d5:b2:88:1d:2e:f1:40:ae:5e:
bd:07:80:54:18:aa:d7:89:9b:d6:9c:7c:6d:ce:01:
a9:15:fc:7a:d9:89:07:46:47:f3:53:44:4a:e6:cb:
4a:a1:a1:4b:63:2c:91:16:00:74:8d:b6:ec:2b:d5:
78:e6:09:1e:94:17:9a:72:9e:d2:ae:a5:08:de:92:
d5:e1:61:bf:2c:00:3d:bd:0f:15:a2:fe:e7:06:73:
0b:c1:54:89:d7:bb:eb:93:d6:14:83:3d:f4:48:c7:
43:70:d0:59:8b:d7:24:4e:e5:61:ac:34:af:52:79:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:21:5E:64:A1:62:69:69:CA:9D:8E:2F:87:7B:C8:A8:5B:1D:5B:8E
X509v3 Authority Key Identifier:
keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:48:a7:76:13:d6:c6:32:d6:ff:7b:49:2e:2d:78:b6:a2:05:
8f:26:78:e8:16:0e:54:17:36:53:05:49:0c:6a:75:ef:22:ab:
a1:65:c4:6e:7a:fc:e7:bc:ad:85:43:f2:a7:58:55:ed:d4:9c:
93:2f:c4:d9:d5:d6:b7:7b:7e:de:6c:47:2b:ca:2a:17:84:c8:
1b:5d:d6:92:87:08:f7:0a:8b:e2:1f:ad:c9:ff:22:36:c3:81:
a2:a7:f8:af:6b:d6:b9:40:28:ba:49:a9:6e:63:fc:95:6f:10:
db:08:39:da:0a:e2:7b:63:8a:cf:e7:52:ac:09:4f:1e:1d:c9:
42:42:d6:4d:28:44:79:7a:f2:66:ef:dd:ea:36:60:6e:ea:86:
4f:1c:17:5d:2b:a0:01:fd:5b:e9:40:40:49:11:49:6b:3e:52:
94:bc:d1:d6:b9:d3:2b:98:58:31:41:3a:06:bf:22:45:28:c3:
61:41:14:00:38:b6:ea:1d:7d:f9:71:fd:b7:94:05:97:a1:b3:
f3:63:04:ae:c6:b2:9e:46:f7:32:7a:8d:9d:99:b5:3b:e9:d8:
b1:bb:8e:59:19:19:85:b7:a3:23:cf:c2:82:ec:02:04:9f:a1:
44:3c:37:cf:c7:2d:dc:13:49:24:b9:3a:d0:75:04:8a:3a:34:
98:52:7d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:16:31 2026 by rpki-client