
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json)
Hash identifier: KB2HyfM5m4D/pp+Np1hbducfQ1MOsHsKRlNRQlEmIps=
Subject key identifier: 42:1A:85:AC:BF:C6:60:EB:BB:9A:B2:8C:93:72:12:6C:DE:50:5B:3F
Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Certificate serial: 0A53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
Manifest number: 0A1D
Signing time: Sat 18 Oct 2025 20:52:12 +0000
Manifest this update: Sat 18 Oct 2025 20:52:11 +0000
Manifest next update: Sat 25 Oct 2025 20:52:11 +0000
Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: Axe6oVNDp4nAPEqwUWbEhmqtQU6NNenpCUy8qMMyWs0=)
2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=)
3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=)
4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=)
5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=)
6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl
rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Oct 2025 20:52:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2643 (0xa53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026
Validity
Not Before: Oct 18 20:52:11 2025 GMT
Not After : Oct 25 20:52:11 2025 GMT
Subject: CN=68f3fdfb-6efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:07:9a:a9:de:35:ca:30:c4:8d:c8:dd:11:e7:
36:94:0c:4b:65:b5:0f:b6:aa:70:a4:66:21:3f:12:
01:3d:1a:6c:11:e0:82:80:46:5e:36:51:8f:c3:d7:
b5:5d:d5:32:da:21:b7:0e:c3:2c:ca:ef:a9:ce:db:
8e:f3:f6:b1:6f:b4:6e:80:8c:85:cf:91:6d:fc:61:
19:d6:fa:4a:72:1e:fa:65:a6:f7:b2:4a:f2:5c:d8:
ff:24:eb:e0:19:37:a3:21:80:9a:cb:e9:08:54:17:
8a:b6:1d:57:26:49:44:fd:73:5d:09:ff:c5:97:40:
73:90:ed:a7:ca:89:cd:63:38:b9:08:c7:0b:44:02:
75:3d:b7:9b:40:d1:f5:0e:73:9e:bd:0f:94:c1:d0:
d2:ef:e2:50:a4:cd:6e:3a:ee:89:b5:ca:8b:06:04:
0a:f2:89:68:82:cc:c7:e8:47:b9:13:a0:6f:bd:c1:
72:6a:ad:c9:07:58:a6:38:ce:0c:73:fd:75:05:1f:
ac:07:ee:b7:42:f1:4f:98:ab:79:ad:3f:ad:79:ee:
e1:32:50:b6:84:6b:aa:e0:a7:4d:df:1f:ea:a5:aa:
db:2f:77:46:f6:b7:42:8f:ca:b5:76:ec:e3:b5:10:
40:cf:e8:8b:5c:9a:62:87:6e:3b:7d:0e:9c:7c:69:
b1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1A:85:AC:BF:C6:60:EB:BB:9A:B2:8C:93:72:12:6C:DE:50:5B:3F
X509v3 Authority Key Identifier:
keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7c:fc:ac:a6:33:cf:d6:be:fe:e3:36:65:4b:66:6a:0c:68:fe:
8e:00:15:d0:a4:04:2e:53:d7:7d:99:01:10:fd:0d:f2:65:c7:
2d:da:db:a6:26:d9:8b:4b:5a:d5:5c:76:14:50:98:d8:1f:e1:
fe:7d:0b:f3:0b:ed:7d:8b:d0:e6:c8:01:2c:1a:2d:07:2f:10:
81:47:bb:4c:db:a8:be:a6:31:d8:45:44:19:32:a9:2f:6a:f9:
01:4c:63:27:9d:dc:68:a4:87:3d:50:af:fc:4c:9b:7a:30:27:
5f:d9:2f:0e:e7:e4:49:ce:43:46:2b:f1:39:f4:e4:e3:93:55:
06:27:3c:34:ee:76:db:59:99:ec:ab:76:fa:21:c5:2b:8a:22:
40:32:e6:b7:41:bf:1c:a5:f4:ee:e7:c0:9a:76:3c:db:2c:77:
4a:54:41:43:fb:8a:75:76:24:9e:fb:50:f6:de:b2:bd:02:38:
ed:a8:cb:06:7d:d6:52:b5:4a:a3:28:03:f4:bd:8d:bc:97:28:
3f:73:c8:08:35:ca:1f:8d:2b:03:97:be:c9:30:b1:16:dc:c7:
b9:5f:9f:d5:e0:5e:1e:e4:45:a5:6e:0d:82:72:68:b2:63:1f:
4e:46:3e:94:92:12:7c:f0:f2:23:1d:53:83:ee:e4:11:98:36:
b7:80:ad:0d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICClMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw
MjgwN0EwMjYwHhcNMjUxMDE4MjA1MjExWhcNMjUxMDI1MjA1MjExWjAYMRYwFAYD
VQQDEw02OGYzZmRmYi02ZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0Qeaqd41yjDEjcjdEec2lAxLZbUPtqpwpGYhPxIBPRpsEeCCgEZeNlGPw9e1
XdUy2iG3DsMsyu+pztuO8/axb7RugIyFz5Ft/GEZ1vpKch76Zab3skryXNj/JOvg
GTejIYCay+kIVBeKth1XJklE/XNdCf/Fl0BzkO2nyonNYzi5CMcLRAJ1PbebQNH1
DnOevQ+UwdDS7+JQpM1uOu6JtcqLBgQK8ologszH6Ee5E6BvvcFyaq3JB1imOM4M
c/11BR+sB+63QvFPmKt5rT+tee7hMlC2hGuq4KdN3x/qparbL3dG9rdCj8q1duzj
tRBAz+iLXJpih247fQ6cfGmxmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIahay/
xmDru5qyjJNyEmzeUFs/MB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz
RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv
Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF
M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQB8/KymM8/Wvv7jNmVLZmoMaP6OABXQpAQuU9d9mQEQ/Q3yZcct2tum
JtmLS1rVXHYUUJjYH+H+fQvzC+19i9DmyAEsGi0HLxCBR7tM26i+pjHYRUQZMqkv
avkBTGMnndxopIc9UK/8TJt6MCdf2S8O5+RJzkNGK/E59OTjk1UGJzw07nbbWZns
q3b6IcUriiJAMua3Qb8cpfTu58CadjzbLHdKVEFD+4p1diSe+1D23rK9AjjtqMsG
fdZStUqjKAP0vY28lyg/c8gINcofjSsDl77JMLEW3Me5X5/V4F4e5EWlbg2Ccmiy
Yx9ORj6UkhJ88PIjHVOD7uQRmDa3gK0N
-----END CERTIFICATE-----
Generated at Mon Oct 20 21:24:00 2025 by rpki-client