
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
File: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft (raw, json)
Hash identifier: qANaZuaYKc7v41lOOa1A3qoLrywR5dQNCMmKC4wUCO4=
Subject key identifier: 67:6B:C3:08:C5:B8:34:D7:88:73:26:BC:3B:12:A5:CB:4E:25:25:D7
Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9
Certificate issuer: /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9
Certificate serial: 63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
Manifest number: 5D
Signing time: Fri 03 Jul 2026 09:02:58 +0000
Manifest this update: Fri 03 Jul 2026 09:02:58 +0000
Manifest next update: Fri 10 Jul 2026 09:02:58 +0000
Files and hashes: 1: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl (hash: 0YtFWCL+CfdsxVgEDPnTXrR7RegjforFRD9A7CUZJhM=)
2: F5568448F11C11F0AC52AD484D6F56BC.roa (hash: FSRnxAS3d/oxWCt/mXgTvn1rm5+e0wMamnNqPiiIkGI=)
3: 2235EF78F12011F0BFBF3F154E6F56BC.roa (hash: PdAz+4W9gV7DG5blKrt0fnM9lwbclCTxlZE4svm7VgA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl
rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 09:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99 (0x63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9
Validity
Not Before: Jul 3 09:02:58 2026 GMT
Not After : Jul 10 09:02:58 2026 GMT
Subject: CN=6a477ac2-420e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6a:7e:54:ae:d9:55:31:ea:56:07:da:d8:6c:
14:4d:a2:86:f4:97:b8:95:a5:b8:1d:d3:bd:00:57:
0e:b2:5c:ca:5b:72:42:4f:db:20:b6:aa:34:ff:d9:
3b:ed:3f:91:78:64:7a:cc:30:c4:36:6c:bd:1d:b7:
e9:70:da:7a:3f:07:50:ec:71:35:59:2e:82:d4:ff:
5e:0e:34:3e:d1:36:18:fc:42:27:c9:a6:34:5e:63:
1a:78:f4:ad:68:02:ce:21:30:30:8b:9f:cb:a5:96:
ec:f0:4d:a2:48:f5:d4:96:e7:4d:e6:f3:41:88:50:
8c:e6:bb:2b:0a:ae:76:54:3a:48:1e:5a:28:7f:0f:
3d:32:f1:44:63:22:c7:91:38:f3:fe:d3:97:87:d4:
e4:3c:ec:c4:dd:2a:c8:d0:46:00:1e:60:e8:8f:71:
a0:35:56:b8:02:5e:6c:90:96:69:dd:2c:84:38:ce:
fa:93:55:42:ed:4b:9a:09:f3:87:52:2b:10:36:01:
9e:c7:25:b4:af:a0:74:ee:b6:4a:64:25:14:36:22:
d0:7e:f3:28:7b:4f:92:2f:43:43:14:26:a7:07:57:
32:c1:d9:14:f9:83:5c:7f:d4:1d:78:49:8f:9a:1b:
53:8b:9c:52:58:d6:cc:a4:ae:78:b2:a3:5e:b6:77:
32:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6B:C3:08:C5:B8:34:D7:88:73:26:BC:3B:12:A5:CB:4E:25:25:D7
X509v3 Authority Key Identifier:
keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
42:e1:d7:14:0f:9e:24:0a:23:00:01:65:6b:57:03:85:8a:43:
89:47:77:b1:53:4e:b7:18:82:f8:5f:90:b2:44:9e:c6:6e:ee:
20:ef:ff:a9:d5:50:25:6d:c6:9d:31:85:f8:8b:48:60:75:9a:
0f:34:50:54:e4:68:fe:1b:e3:74:54:21:69:eb:e2:4c:7f:b9:
da:1a:ed:de:34:56:aa:74:c7:7a:f5:19:74:4b:70:f8:e6:6a:
59:2c:a4:84:69:30:f0:67:a1:cb:1f:98:00:bd:44:18:37:c0:
07:0b:f5:6f:6d:3d:61:1e:5e:e0:6b:72:7b:0c:55:7e:31:79:
f2:a7:de:4c:c6:32:a1:3e:26:0d:42:a9:cb:b2:13:ea:1a:ce:
ff:98:ba:7a:3a:04:dd:43:35:2c:e8:8a:2a:02:7b:54:8b:55:
0b:c6:3c:e5:07:cc:b5:f5:71:0e:4b:6c:9d:91:23:ed:f9:f6:
02:2b:af:71:be:ca:e1:3d:b8:d8:06:72:e0:a7:cc:c5:5b:02:
fb:64:e3:8f:79:01:b4:da:73:bd:05:27:93:de:4c:82:33:9f:
3d:ec:32:be:76:b9:07:21:ae:c5:38:e9:4b:20:b0:9f:b8:e0:
2c:62:e8:b3:f8:f0:bc:0c:bb:de:4d:fc:97:bd:68:b0:47:0b:
95:95:7d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:48:41 2026 by rpki-client