
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft
File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json)
Hash identifier: esA29rTo3PrUkg9+gIg7D0zCyppe6pJh7kM9zsIWk5E=
Subject key identifier: C7:BC:1A:BC:56:21:5C:B3:8B:D2:92:95:D4:C5:54:D8:0B:55:87:78
Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF
Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF
Certificate serial: DE
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft
Manifest number: DC
Signing time: Sun 19 Oct 2025 08:33:39 +0000
Manifest this update: Sun 19 Oct 2025 08:33:39 +0000
Manifest next update: Sun 26 Oct 2025 08:33:39 +0000
Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: g7DD91T7dTPAyGbqMJsavDdDwsCXo+hZYjVHa39QRiA=)
2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: nTbnCk4P5H9oOH4eL195jhnWczLlGOgjmjreKYWM0EU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl
rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 08:33:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222 (0xde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF
Validity
Not Before: Oct 19 08:33:39 2025 GMT
Not After : Oct 26 08:33:39 2025 GMT
Subject: CN=68f4a263-5681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7a:a8:5b:77:e2:b6:cd:4b:61:8f:31:4f:b1:
c0:fe:50:00:3c:03:c6:2c:8d:e8:a6:bf:f3:00:22:
97:ee:f0:57:16:a1:8f:51:1c:a5:58:8c:3d:25:05:
a5:ab:4c:e1:8a:32:55:ec:a6:b0:24:59:44:0d:fc:
c1:6e:b8:50:b8:a1:1d:3f:0c:97:bd:c4:d6:8f:1e:
ea:8f:17:f9:4c:f7:8f:3d:b4:9e:4b:b6:46:a2:1c:
76:28:ab:32:9a:5a:ff:2d:1a:a6:02:22:f8:f6:28:
46:e5:e7:d3:7e:93:b9:33:6d:a4:ff:f2:42:63:e6:
e5:95:88:c8:75:77:4c:2a:ab:be:e6:bd:f8:4b:90:
6e:57:e3:0b:be:db:01:57:53:21:9e:e9:6a:36:1d:
88:7a:05:f4:b5:2a:a5:7a:0a:97:2f:f6:8e:c6:74:
5c:3e:77:34:36:7d:ff:85:dc:b9:48:0a:ae:81:a8:
b7:7a:62:e8:7d:46:0b:a6:53:47:26:20:81:df:80:
98:8b:af:d3:4e:56:a0:91:e0:e3:68:5f:15:04:0f:
cd:04:cf:d0:b7:ae:ad:50:02:d5:70:75:73:2a:97:
4c:b0:19:7d:c2:fb:1b:ae:20:c5:ef:13:74:15:9e:
92:70:0b:76:4e:b1:9f:c3:83:6b:63:5c:18:85:84:
ef:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:BC:1A:BC:56:21:5C:B3:8B:D2:92:95:D4:C5:54:D8:0B:55:87:78
X509v3 Authority Key Identifier:
keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
9b:78:99:20:77:e1:07:d5:9c:54:69:33:cc:87:91:b7:f1:88:
08:07:49:96:f2:fb:a6:bc:6e:16:4c:05:a8:8f:bd:66:c3:80:
9f:48:2d:4e:6d:0d:6c:92:77:54:ac:26:ed:f5:e3:5d:ba:24:
08:b7:bd:ca:d2:22:b0:e5:06:e8:c1:12:4b:58:6a:bb:27:42:
6e:28:1f:51:e5:e9:d9:45:5a:14:ac:3d:eb:ba:fb:a6:f3:e4:
73:db:cd:44:05:5e:8f:04:be:a5:c9:82:8f:82:30:18:c5:84:
1e:6f:f7:07:9e:ec:db:f9:48:14:a2:a5:54:87:79:e0:0e:15:
70:d3:4e:bf:2e:b0:fd:43:8d:7f:63:bf:1e:d0:c7:17:68:c2:
b6:2f:e8:c6:5f:94:e8:c6:db:5a:52:d1:9a:8c:1a:f1:01:c3:
e8:fd:c6:2a:88:be:05:2f:ca:a3:df:15:f4:d1:5e:2f:8c:e2:
2c:bf:6c:4e:28:11:bb:49:52:d2:76:8b:50:9a:2d:81:b5:5a:
2a:46:98:62:ef:9f:67:f9:25:8a:aa:7f:f4:3b:be:b1:03:ce:
dd:6e:77:5d:26:76:9e:dc:02:1a:24:de:11:d5:4d:92:75:4e:
7e:aa:31:d1:8f:75:8a:53:bb:bc:d5:3b:71:69:74:59:3c:01:
10:1d:cc:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:27:25 2025 by rpki-client