
$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
File: hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json)
Hash identifier: YYZOJBglx4tS2E5PZzn9NrM+fXSp2WisbrtAFoTKFH0=
Subject key identifier: 91:2F:B5:A3:2C:68:E7:FA:39:E8:71:7A:C8:F3:BB:15:AC:DF:D8:B8
Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F
Certificate issuer: /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F
Certificate serial: 01A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
Manifest number: 0390
Signing time: Fri 17 Jul 2026 04:18:50 +0000
Manifest this update: Fri 17 Jul 2026 04:18:49 +0000
Manifest next update: Fri 24 Jul 2026 04:18:49 +0000
Files and hashes: 1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: WKE37JMDQ+g0yZOlH6Y/hbSzxvjhOpr7a0dLH7akkmM=)
2: 65874B72FF1D11F09D5C691B85EE528E.roa (hash: mRk4Fo6iZr93iyaJTrEyOENMDqLXHjjP+xgNzUN6Prs=)
3: 5FAC3CB644CE11F19BD95499BE833773.roa (hash: WkErIMYK/mQSKLc4lnPt53wSfKMo9LaNrKnnlPsS/9g=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl
rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419 (0x1a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F
Validity
Not Before: Jul 17 04:18:49 2026 GMT
Not After : Jul 24 04:18:49 2026 GMT
Subject: CN=6a59ad29-e070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:87:db:8f:9c:89:49:97:63:87:8e:1a:3a:
cf:2e:af:b1:80:7d:5f:15:ef:a1:ce:e0:b2:9b:09:
2b:8d:04:ca:75:2c:6b:a7:b7:94:3f:4d:80:59:b2:
96:10:a9:21:28:ac:59:73:61:c2:d2:7d:3a:11:78:
d4:ae:a3:49:3b:12:a8:ae:99:b1:13:85:ad:83:97:
7e:0a:4b:59:5b:0c:c6:7d:b0:97:87:32:98:3c:b6:
f9:e1:48:d1:af:16:32:e9:3f:fe:38:a5:86:d6:b0:
75:e7:0f:1d:d1:1d:30:38:53:6b:12:fe:00:2f:08:
94:05:6f:02:f2:19:2d:a0:48:a9:42:73:4c:4c:5e:
2f:74:87:b0:68:ce:9c:93:7a:1b:e4:72:f7:ba:f1:
f6:f4:17:e3:c1:e1:06:3b:b3:c3:45:60:e8:ab:98:
38:1d:e4:34:63:fc:5e:e8:43:d4:44:c8:73:47:c3:
9e:0c:d3:45:3f:e7:31:7d:3f:d8:c6:b4:ed:69:39:
aa:2e:38:c9:52:34:e2:61:20:e0:1d:ee:9d:2e:3b:
80:2b:4b:56:5c:5a:83:c4:4d:e1:fd:37:87:73:ce:
78:c8:01:e2:46:46:00:4d:53:b8:40:2c:b3:63:0b:
79:51:df:49:8b:21:3d:36:da:d1:13:ce:d9:45:ee:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:2F:B5:A3:2C:68:E7:FA:39:E8:71:7A:C8:F3:BB:15:AC:DF:D8:B8
X509v3 Authority Key Identifier:
keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
00:e1:f5:90:03:e8:4b:31:e6:22:c5:b0:b1:20:d2:6c:48:ab:
93:4e:a8:f3:bb:af:10:20:ca:aa:57:61:4d:4d:95:c6:83:79:
4e:fd:f2:59:a5:49:73:2d:97:be:64:c4:41:5a:38:a8:90:e9:
8c:d4:4f:f6:c2:71:47:bf:24:15:6f:e6:a9:96:bc:11:2b:8a:
96:43:5a:26:61:4f:a2:47:b3:7b:b0:92:2a:95:03:fb:e9:5b:
38:23:5a:bf:86:82:8a:b8:2c:05:02:14:a4:0e:15:bd:7f:f1:
95:a6:48:cb:39:b3:12:37:9c:ba:f9:10:2f:50:db:7f:7e:02:
d3:c2:b0:f1:23:ce:98:2b:02:f2:2f:0b:6b:03:11:e6:09:9f:
c5:6f:d3:68:83:5f:34:17:1b:03:06:46:7b:12:43:4a:61:b0:
54:b6:f5:fa:8d:19:2e:29:72:7a:5f:22:41:80:0b:f1:37:e8:
cd:55:f3:da:2d:f8:50:55:ce:ea:c0:dc:f5:fc:b0:5e:bd:5d:
f4:0e:ef:1c:fb:05:c5:c3:c3:30:88:74:02:3a:b0:a0:5c:78:
aa:71:0a:20:6e:3c:88:1a:68:1d:8b:38:28:41:7f:40:3f:c9:
cd:ea:92:d9:0c:80:f4:f9:7b:77:d0:ca:d6:c9:d4:85:fb:f0:
38:ea:83:bb
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTk1NEYxMTAvBgNVBAUTKDg1RkZCRTU4REMxQ0Y3RjkxQzJEMzgxMzRFMjBCNkVG
MEIyQzNBNUYwHhcNMjYwNzE3MDQxODQ5WhcNMjYwNzI0MDQxODQ5WjAYMRYwFAYD
VQQDEw02YTU5YWQyOS1lMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAy9uH24+ciUmXY4eOGjrPLq+xgH1fFe+hzuCymwkrjQTKdSxrp7eUP02AWbKW
EKkhKKxZc2HC0n06EXjUrqNJOxKorpmxE4Wtg5d+CktZWwzGfbCXhzKYPLb54UjR
rxYy6T/+OKWG1rB15w8d0R0wOFNrEv4ALwiUBW8C8hktoEipQnNMTF4vdIewaM6c
k3ob5HL3uvH29BfjweEGO7PDRWDoq5g4HeQ0Y/xe6EPURMhzR8OeDNNFP+cxfT/Y
xrTtaTmqLjjJUjTiYSDgHe6dLjuAK0tWXFqDxE3h/TeHc854yAHiRkYATVO4QCyz
Ywt5Ud9JiyE9NtrRE87ZRe5UowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJEvtaMs
aOf6OehxesjzuxWs39i4MB8GA1UdIwQYMBaAFIX/vljcHPf5HC04E04gtu8LLDpf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTU0Ri81OTFBMzIyMDkx
NEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlfa2NMVGdUVGlDMjd3c3NP
bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hmLS1XTndjOV9rY0xUZ1RUaUMyN3dzc09sOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
OTU0Ri81OTFBMzIyMDkxNEExMUVFOTQyQ0M4NzFDNEY5QUUwMi9oZi0tV053Yzlf
a2NMVGdUVGlDMjd3c3NPbDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAAOH1kAPoSzHmIsWwsSDSbEirk06o87uvECDKqldhTU2VxoN5Tv3yWaVJcy2X
vmTEQVo4qJDpjNRP9sJxR78kFW/mqZa8ESuKlkNaJmFPokeze7CSKpUD++lbOCNa
v4aCirgsBQIUpA4VvX/xlaZIyzmzEjecuvkQL1Dbf34C08Kw8SPOmCsC8i8LawMR
5gmfxW/TaINfNBcbAwZGexJDSmGwVLb1+o0ZLilyel8iQYAL8TfozVXz2i34UFXO
6sDc9fywXr1d9A7vHPsFxcPDMIh0AjqwoFx4qnEKIG48iBpoHYs4KEF/QD/JzeqS
2QyA9Pl7d9DK1snUhfvwOOqDuw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 07:28:04 2026 by rpki-client