
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft
File: JCq5H6fHpkrOd9m09mHijAsVuOA.mft (raw, json)
Hash identifier: cWdk+IrnWGKbsOX0IA/X8IH5vYia9cJRFrvnthyd2Vo=
Subject key identifier: 5D:DE:E9:8F:F9:55:5B:FD:57:8A:9B:18:22:EB:C6:A1:FF:32:7A:38
Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0
Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0
Certificate serial: 018E
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft
Manifest number: 0185
Signing time: Fri 17 Jul 2026 05:36:43 +0000
Manifest this update: Fri 17 Jul 2026 05:36:43 +0000
Manifest next update: Fri 24 Jul 2026 05:36:43 +0000
Files and hashes: 1: JCq5H6fHpkrOd9m09mHijAsVuOA.crl (hash: W+D5QyoRDTfdyw0W+bjeglUeL90AM1i/LXoRwYFFf7I=)
2: 79A1CFF0F2F311F08CC9D9AA476F56BC.roa (hash: ImLzfO9eYPkP8TeOeHFGuBUxwADU7Ur8U4TyxjSkGl0=)
3: AE82DA3CCA3711F09D02C15BC4F9AE02.roa (hash: M6ls0jXTH4pUjtm2iE2jOj7mJz7/jJFkAHSHdBjdY6o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl
rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:36:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398 (0x18e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B22E, serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0
Validity
Not Before: Jul 17 05:36:43 2026 GMT
Not After : Jul 24 05:36:43 2026 GMT
Subject: CN=6a59bf6b-b17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:4a:9f:0e:fa:db:4b:c8:d7:c9:e7:3b:45:
02:1b:b2:02:d1:6c:2b:8e:f7:57:60:25:d4:ef:61:
bc:d9:49:bb:da:34:26:96:83:a3:fa:3b:91:1e:45:
d1:bc:61:7d:12:80:9b:7f:9d:a9:22:e6:30:b3:48:
79:19:36:b8:40:b7:34:68:38:f3:8e:73:9e:6c:06:
fa:94:a1:bb:63:35:d3:4c:49:f1:27:0a:12:76:ca:
af:8e:a6:8a:a6:72:59:c2:d4:a9:56:eb:1f:49:2b:
66:d0:bd:18:c1:36:ad:87:f3:c7:8c:0f:da:4e:b4:
fd:51:84:3e:ee:b9:a1:0c:cc:30:bf:8d:03:d6:25:
8d:47:f1:21:9f:90:43:78:d0:a4:f3:f2:b9:35:dd:
f3:73:0f:1e:07:c1:24:ad:68:26:2e:15:2e:cb:7c:
35:31:91:df:3f:3a:37:4e:da:5c:44:8b:8b:bb:6a:
08:15:31:22:8d:eb:ba:ac:3e:29:1b:54:3b:65:c0:
11:49:ba:f0:72:34:22:88:49:fd:fb:45:a2:23:a2:
be:4e:8f:00:27:15:36:b8:76:5b:5b:fd:6f:db:32:
d6:22:e9:be:04:fe:ca:c9:9f:ac:50:e7:37:98:85:
42:96:77:60:9f:6f:7f:75:57:57:f7:5f:9e:c7:d0:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DE:E9:8F:F9:55:5B:FD:57:8A:9B:18:22:EB:C6:A1:FF:32:7A:38
X509v3 Authority Key Identifier:
keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
5f:43:c4:0c:53:f9:c0:b0:3c:5e:13:ce:b5:10:88:9c:49:0b:
f5:e6:2c:09:35:1f:55:a3:4a:23:fd:88:be:d1:f4:89:1c:3d:
03:92:2b:dc:6e:33:48:d6:35:1c:d3:59:ed:61:d7:8f:f6:04:
55:d0:05:f0:8c:25:02:6d:b0:a4:1d:42:ed:de:03:cb:9b:bc:
d5:7c:fe:8d:4e:60:cd:af:38:37:23:eb:ea:7d:60:bf:ac:de:
ac:f8:f5:2b:fa:66:33:90:e9:14:56:82:ab:c3:14:b3:e2:22:
f7:4b:99:7d:92:0d:c5:0a:b7:6d:31:5f:ae:b6:4e:bf:4e:c1:
4d:93:ed:13:d1:89:7f:4d:da:d9:77:f9:24:7d:88:3e:95:37:
dd:a1:f4:c3:b9:95:b0:12:7a:95:d1:4f:d9:93:48:c6:4f:b4:
51:25:ad:37:ea:c8:cf:35:07:4e:66:4c:4b:82:f6:38:a3:e0:
ab:47:c3:66:07:d8:46:e4:6e:35:59:ce:c2:3e:67:72:c5:4a:
8f:87:ea:39:07:c7:fd:09:e5:ee:f8:a6:ae:b8:3d:6b:59:17:
c7:06:62:7c:0e:6f:c2:ce:09:33:05:f0:6e:c9:84:a7:21:6d:
19:fe:88:ea:53:c2:26:ad:fc:78:c9:23:1c:0e:8e:1c:90:19:
8b:5a:bf:45
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUIyMkUxMTAvBgNVBAUTKDI0MkFCOTFGQTdDN0E2NEFDRTc3RDlCNEY2NjFFMjhD
MEIxNUI4RTAwHhcNMjYwNzE3MDUzNjQzWhcNMjYwNzI0MDUzNjQzWjAYMRYwFAYD
VQQDEw02YTU5YmY2Yi1iMTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyPlKnw7620vI18nnO0UCG7IC0WwrjvdXYCXU72G82Um72jQmloOj+juRHkXR
vGF9EoCbf52pIuYws0h5GTa4QLc0aDjzjnOebAb6lKG7YzXTTEnxJwoSdsqvjqaK
pnJZwtSpVusfSStm0L0YwTath/PHjA/aTrT9UYQ+7rmhDMwwv40D1iWNR/Ehn5BD
eNCk8/K5Nd3zcw8eB8EkrWgmLhUuy3w1MZHfPzo3TtpcRIuLu2oIFTEijeu6rD4p
G1Q7ZcARSbrwcjQiiEn9+0WiI6K+To8AJxU2uHZbW/1v2zLWIum+BP7KyZ+sUOc3
mIVClndgn29/dVdX91+ex9CNBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3e6Y/5
VVv9V4qbGCLrxqH/Mno4MB8GA1UdIwQYMBaAFCQquR+nx6ZKznfZtPZh4owLFbjg
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84MzQxNUIzNjM3
OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBrck9kOW0wOW1IaWpBc1Z1
T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVPQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
QjIyRS84MzQxNUIzNjM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBr
ck9kOW0wOW1IaWpBc1Z1T0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAX0PEDFP5wLA8XhPOtRCInEkL9eYsCTUfVaNKI/2IvtH0iRw9A5Ir3G4zSNY1
HNNZ7WHXj/YEVdAF8IwlAm2wpB1C7d4Dy5u81Xz+jU5gza84NyPr6n1gv6zerPj1
K/pmM5DpFFaCq8MUs+Ii90uZfZINxQq3bTFfrrZOv07BTZPtE9GJf03a2Xf5JH2I
PpU33aH0w7mVsBJ6ldFP2ZNIxk+0USWtN+rIzzUHTmZMS4L2OKPgq0fDZgfYRuRu
NVnOwj5ncsVKj4fqOQfH/Qnl7vimrrg9a1kXxwZifA5vws4JMwXwbsmEpyFtGf6I
6lPCJq38eMkjHA6OHJAZi1q/RQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:33 2026 by rpki-client