
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json)
Hash identifier: 0WY9LVZ63F9Hnbyx/taOXiaPyTB6mVaejeXw/drA1Xs=
Subject key identifier: 06:FF:08:BF:BC:B1:6A:CB:58:ED:20:8B:26:62:2E:C4:18:22:50:AC
Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5
Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5
Certificate serial: 0152
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
Manifest number: 014A
Signing time: Fri 17 Jul 2026 06:21:21 +0000
Manifest this update: Fri 17 Jul 2026 06:21:21 +0000
Manifest next update: Fri 24 Jul 2026 06:21:21 +0000
Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: YEF0AFWDdeumU8F6tA2dFMXcM0+6IxgA/rz0EKFqvGg=)
2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: /iUDR+GzejkmITAmPKgcB03fXiVvkAuvv4cWd5x9948=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl
rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:21:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338 (0x152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911CB05, serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5
Validity
Not Before: Jul 17 06:21:21 2026 GMT
Not After : Jul 24 06:21:21 2026 GMT
Subject: CN=6a59c9e1-8ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cf:9c:59:ad:70:d9:29:45:25:ae:03:57:d6:
4f:32:ea:03:ab:da:a2:c0:87:6e:0a:d6:d7:83:1a:
35:2a:d8:ca:89:1b:17:5d:5f:87:a4:a8:1e:4d:d4:
48:d5:e2:5e:e4:69:54:91:c3:1a:da:f2:98:73:f0:
b8:f6:6e:bb:7f:a3:7e:24:50:11:8e:fb:b3:b9:71:
79:87:cd:69:4c:d2:92:5f:c5:ec:6b:88:82:41:3f:
63:42:df:8d:1f:86:5f:1c:17:30:14:b1:99:18:ef:
01:05:eb:89:be:06:97:11:bd:df:ce:74:4b:28:54:
12:d1:d7:9e:94:41:47:a1:9b:dd:59:4c:28:9a:6d:
0a:4e:f3:85:01:49:b0:1a:ad:7f:2e:a8:15:c1:cf:
ed:32:ff:93:c1:de:dd:53:74:ad:37:8e:fe:fb:f9:
0e:59:ee:c3:c5:21:88:c2:06:e4:8d:76:0e:7d:e7:
94:54:eb:c0:a6:09:64:5b:c5:8a:97:e9:c1:2f:b6:
00:31:1a:c1:e0:26:74:5b:04:44:3f:bf:9b:42:93:
af:9a:96:2e:9d:e4:de:50:d6:4b:89:1a:09:17:fb:
a4:78:d5:7f:95:de:e9:63:97:a8:14:8b:f3:50:27:
ed:8f:f4:f9:19:50:25:9a:20:c8:17:81:0f:6d:1c:
17:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FF:08:BF:BC:B1:6A:CB:58:ED:20:8B:26:62:2E:C4:18:22:50:AC
X509v3 Authority Key Identifier:
keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:f3:13:b7:7a:63:12:28:bf:1f:98:68:16:c7:9e:9d:86:81:
32:ec:0d:b7:e2:6a:65:4d:5c:30:78:bb:80:b4:8d:d3:bc:d3:
23:63:a4:a9:a8:db:96:9c:0f:04:94:de:20:04:23:92:8a:16:
15:aa:60:c7:9a:f0:41:db:96:1a:86:5a:b0:09:e8:5d:ac:2c:
59:d7:72:b8:17:b3:f2:97:8f:58:cf:3c:d6:6e:dd:d5:37:11:
aa:b3:84:35:ac:05:bf:a4:8e:17:0c:3a:74:3d:ce:5a:81:5b:
a8:8f:ba:20:e0:c7:6a:c9:4c:fc:bc:74:a8:17:33:84:54:13:
d8:2b:84:49:68:5c:52:6d:46:55:1d:1b:4c:41:84:ff:a1:f3:
cd:ce:b4:51:fa:11:df:70:a9:c3:77:5b:8a:73:c4:39:eb:99:
70:41:06:be:0a:63:9b:c6:0b:03:d7:43:d7:fb:cc:03:1d:d7:
e7:fe:9d:78:89:6f:4b:ce:a0:46:bd:f5:d7:04:1f:97:e4:8f:
4a:92:70:e3:e3:0f:2e:8a:8d:df:41:02:47:52:b3:0e:cb:44:
c4:39:30:f8:57:a6:f5:8a:08:fc:a5:d7:46:e7:16:fe:d0:86:
12:e0:3b:aa:0c:47:dd:30:c8:d4:27:ea:27:72:3d:0e:5b:5a:
3a:9a:92:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:58 2026 by rpki-client