
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
File: 8ItqFjLJysLoaI3qSIfZMC6VYBA.mft (raw, json)
Hash identifier: Q0i8PoCSEpAUzDzwjt8LCaDnm0Om+RSjiq89ozzE164=
Subject key identifier: 7C:9D:F8:C0:7F:A9:58:50:63:2F:20:B7:10:18:A7:A9:4E:09:B3:0A
Authority key identifier: F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10
Certificate issuer: /CN=A911FFAB/serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010
Certificate serial: 085B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
Manifest number: 0847
Signing time: Mon 06 Jul 2026 21:28:41 +0000
Manifest this update: Mon 06 Jul 2026 21:28:41 +0000
Manifest next update: Mon 13 Jul 2026 21:28:41 +0000
Files and hashes: 1: 8ItqFjLJysLoaI3qSIfZMC6VYBA.crl (hash: 9StUwWU358wOk9GCxhRvlp50BlBXV5SkYXxZvrDZ49Q=)
2: B5DC8802169411EBBEBD9A23C4F9AE02.roa (hash: bNwR09y5zMMM14ZXXZzaqooJdRynsIYvdb/mm7Q6iWE=)
3: 7E18ACF0C66811F084C00543C4F9AE02.roa (hash: 7XFhCYpRi5MWgMi60pgzWpPeSkzwa4nMJXrUSx4/k1M=)
4: B54C3DBA169411EBBEBD9A23C4F9AE02.roa (hash: NghPk/wVq3Vd7LHngXkzOUMOG/RNZ/zYTp/fCWTTyU4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl
rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 20:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2139 (0x85b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911FFAB, serialNumber=F08B6A1632C9CAC2E8688DEA4887D9302E956010
Validity
Not Before: Jul 6 21:28:41 2026 GMT
Not After : Jul 13 21:28:41 2026 GMT
Subject: CN=6a4c1e09-b007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:65:27:ac:58:0f:c1:15:1c:72:55:ad:d3:43:
aa:f6:e8:bd:c6:93:4f:f7:86:e8:f6:31:9e:f0:0c:
10:40:f3:22:ea:40:2b:e2:bf:67:77:37:f4:05:a5:
c9:67:93:2f:fe:7d:a3:10:ac:cf:87:5f:4f:a4:4f:
17:23:02:a7:52:05:c5:61:a8:d3:6a:51:f7:17:8d:
da:77:7e:34:89:5c:7d:39:ae:7a:87:61:30:26:a4:
7e:d8:9e:da:51:af:c7:8e:23:aa:72:66:d3:42:10:
13:bb:0a:91:0c:f7:f5:4d:bd:65:87:f2:46:2e:b9:
c4:f5:7c:35:a9:48:0a:96:20:17:9c:62:d4:a9:2d:
37:f2:ee:f5:71:42:b1:40:fe:87:89:c9:53:56:8e:
a1:d4:23:cb:db:26:a2:a1:58:e8:43:a5:9a:de:d4:
4a:bf:9d:07:a9:1c:12:9c:b0:a9:13:d1:e8:10:48:
01:02:a6:8e:10:1b:18:83:c2:e0:78:dc:97:d9:09:
75:74:7e:7d:c6:93:ec:68:a2:5b:d7:c2:c8:55:5e:
d9:5f:a2:6f:b3:2d:e8:41:73:1f:b1:b4:10:3d:63:
4d:a8:37:4b:18:ae:03:c6:0f:2c:2a:5f:cb:83:49:
d8:c9:44:7f:0f:2b:a6:ae:9e:18:ca:9e:34:91:69:
d3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9D:F8:C0:7F:A9:58:50:63:2F:20:B7:10:18:A7:A9:4E:09:B3:0A
X509v3 Authority Key Identifier:
keyid:F0:8B:6A:16:32:C9:CA:C2:E8:68:8D:EA:48:87:D9:30:2E:95:60:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ItqFjLJysLoaI3qSIfZMC6VYBA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FFAB/AA7FA400169211EBB45D891DC4F9AE02/8ItqFjLJysLoaI3qSIfZMC6VYBA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4b:58:20:75:ed:4c:e4:26:fa:22:07:09:dd:dd:d7:37:d4:a5:
c8:e4:75:d2:46:96:ee:bc:a5:39:9b:61:5f:8a:4d:d8:40:b0:
31:06:e5:54:6b:4a:c0:24:91:d2:8e:ce:11:92:92:8a:62:74:
fc:31:e4:bb:af:ff:5d:76:21:e1:18:06:52:a8:2d:04:db:77:
0f:c5:50:f7:69:03:7b:8e:1f:49:58:53:45:da:c3:c9:fd:48:
66:6e:a4:ff:7a:4e:87:73:b9:c5:f1:1c:2a:c5:b7:0b:64:c5:
a6:d9:4c:0f:71:d0:e9:6c:ba:bf:d1:96:49:2a:72:e0:bc:ca:
79:7a:85:27:22:cc:68:96:f3:b1:35:48:9a:ac:01:cd:3c:ce:
6a:c7:c9:2d:d7:75:10:19:c3:02:38:4b:cd:64:f3:2b:93:1b:
46:f9:ae:f7:1c:89:9c:eb:2e:63:72:61:63:c2:23:04:a8:93:
59:49:83:ab:2a:27:b4:eb:f8:c6:03:43:4a:6b:83:53:4a:19:
ff:dc:aa:b6:6f:71:0c:60:2f:fe:39:c8:8a:71:2a:a1:15:04:
0b:cd:0a:64:44:e2:10:84:f4:f4:bb:e3:83:3f:a8:b7:f3:82:
c8:5c:24:e1:e4:07:67:ea:94:93:dd:34:6e:b3:55:ec:36:3d:
c6:f3:7c:8a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUZGQUIxMTAvBgNVBAUTKEYwOEI2QTE2MzJDOUNBQzJFODY4OERFQTQ4ODdEOTMw
MkU5NTYwMTAwHhcNMjYwNzA2MjEyODQxWhcNMjYwNzEzMjEyODQxWjAYMRYwFAYD
VQQDEw02YTRjMWUwOS1iMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1WUnrFgPwRUcclWt00Oq9ui9xpNP94bo9jGe8AwQQPMi6kAr4r9ndzf0BaXJ
Z5Mv/n2jEKzPh19PpE8XIwKnUgXFYajTalH3F43ad340iVx9Oa56h2EwJqR+2J7a
Ua/HjiOqcmbTQhATuwqRDPf1Tb1lh/JGLrnE9Xw1qUgKliAXnGLUqS038u71cUKx
QP6HiclTVo6h1CPL2yaioVjoQ6Wa3tRKv50HqRwSnLCpE9HoEEgBAqaOEBsYg8Lg
eNyX2Ql1dH59xpPsaKJb18LIVV7ZX6Jvsy3oQXMfsbQQPWNNqDdLGK4Dxg8sKl/L
g0nYyUR/Dyumrp4Yyp40kWnTnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHyd+MB/
qVhQYy8gtxAYp6lOCbMKMB8GA1UdIwQYMBaAFPCLahYyycrC6GiN6kiH2TAulWAQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkZBQi9BQTdGQTQwMDE2
OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlzTG9hSTNxU0lmWk1DNlZZ
QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzhJdHFGakxKeXNMb2FJM3FTSWZaTUM2VllCQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
RkZBQi9BQTdGQTQwMDE2OTIxMUVCQjQ1RDg5MURDNEY5QUUwMi84SXRxRmpMSnlz
TG9hSTNxU0lmWk1DNlZZQkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAS1ggde1M5Cb6IgcJ3d3XN9SlyOR10kaW7rylOZthX4pN2ECwMQblVGtKwCSR
0o7OEZKSimJ0/DHku6//XXYh4RgGUqgtBNt3D8VQ92kDe44fSVhTRdrDyf1IZm6k
/3pOh3O5xfEcKsW3C2TFptlMD3HQ6Wy6v9GWSSpy4LzKeXqFJyLMaJbzsTVImqwB
zTzOasfJLdd1EBnDAjhLzWTzK5MbRvmu9xyJnOsuY3JhY8IjBKiTWUmDqyontOv4
xgNDSmuDU0oZ/9yqtm9xDGAv/jnIinEqoRUEC80KZETiEIT09Lvjgz+ot/OCyFwk
4eQHZ+qUk900brNV7DY9xvN8ig==
-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:49 2026 by rpki-client