
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
File: NQgZehD-pGpxhGMxT-upOUS2JIs.mft (raw, json)
Hash identifier: tTSppl9AbbgdKpM1pel5maJ/4yYwL0c8hyoauYfnWbs=
Subject key identifier: CC:AE:CA:89:FD:A9:DE:0B:4C:93:2A:8A:E4:3D:29:64:64:F4:6F:7C
Authority key identifier: 35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B
Certificate issuer: /CN=A912B666/serialNumber=3508197A10FEA46A718463314FEBA93944B6248B
Certificate serial: 83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
Manifest number: 7D
Signing time: Thu 09 Jul 2026 09:49:28 +0000
Manifest this update: Thu 09 Jul 2026 09:49:27 +0000
Manifest next update: Thu 16 Jul 2026 09:49:27 +0000
Files and hashes: 1: NQgZehD-pGpxhGMxT-upOUS2JIs.crl (hash: lVrqQ5ta1yTB/cmWijymv2sK34oCrtRPVEAiRBEqNU0=)
2: F084D9AADF1B11F0BDFBE1B1616F56BC.roa (hash: CpQzWFpl+Gw/RBNLdgsUn2ZniQcwnVLZoguxqXTYKyI=)
3: 86227722C92A11F0872AB883C4F9AE02.roa (hash: OntMkkZwdIbl5SrNRK1u5UfChSdJYJCs+EVkHCslByQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl
rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 16 Jul 2026 09:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131 (0x83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912B666, serialNumber=3508197A10FEA46A718463314FEBA93944B6248B
Validity
Not Before: Jul 9 09:49:27 2026 GMT
Not After : Jul 16 09:49:27 2026 GMT
Subject: CN=6a4f6ea8-ec6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:e1:43:9b:d7:2d:7c:e3:ab:c7:3e:3f:cc:
93:94:16:06:f4:86:b3:f1:dd:44:d4:35:54:fb:b0:
8d:13:ff:c5:aa:d2:c9:09:36:55:e1:4c:77:84:ee:
e6:7d:f9:90:66:be:f7:89:91:06:bc:a4:de:a0:7f:
05:17:75:dc:8a:9b:e4:25:df:ef:8c:c2:60:0c:ba:
89:7a:0e:33:ff:8e:af:8c:e4:ca:ab:fa:9d:98:fc:
1d:94:0d:92:36:8e:bf:97:b9:49:45:6a:c9:46:53:
1a:e6:62:43:36:b7:a5:ea:1a:95:c9:24:b9:73:3e:
23:1f:36:11:2c:9e:21:0a:5c:10:d7:bf:b1:8c:53:
35:46:49:ba:90:a5:6a:c5:95:fb:d5:f3:73:ad:2e:
24:f4:1b:86:dc:7e:b4:93:70:6d:71:be:e4:83:a1:
03:d7:17:5a:8b:66:b3:7d:fa:79:18:71:30:ad:70:
93:b2:a4:04:97:f0:43:4d:36:52:a5:42:9f:3d:a9:
e1:05:5e:a0:ac:f2:fe:a2:7f:a1:79:94:49:dd:cf:
b4:08:47:31:65:9f:6b:d2:a6:f0:0e:b4:2a:a4:d5:
fe:98:9b:b3:de:ae:b8:dc:06:36:13:f3:b6:55:cf:
83:2d:45:4d:31:96:3e:31:52:27:5a:40:18:dc:e4:
c8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AE:CA:89:FD:A9:DE:0B:4C:93:2A:8A:E4:3D:29:64:64:F4:6F:7C
X509v3 Authority Key Identifier:
keyid:35:08:19:7A:10:FE:A4:6A:71:84:63:31:4F:EB:A9:39:44:B6:24:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NQgZehD-pGpxhGMxT-upOUS2JIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B666/99361A7CC92911F0B238F281C4F9AE02/NQgZehD-pGpxhGMxT-upOUS2JIs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
02:57:08:dd:0f:cd:cb:66:e5:0f:ad:fa:87:78:d4:14:ed:46:
c9:1b:64:04:92:1e:e9:d3:e0:b0:1c:48:ea:71:36:0e:7d:31:
57:a4:8a:19:c8:27:1f:87:cd:47:f0:72:d0:3c:2c:56:6a:d2:
45:a1:b0:a7:0f:93:c9:c8:ab:86:99:11:7f:66:10:2f:71:8b:
c6:bf:29:8d:67:96:89:f1:61:b6:f0:00:6b:0f:83:6e:ed:7c:
4c:79:b9:74:e7:79:4b:42:6e:c1:c6:29:e0:99:ee:5a:ff:5f:
fc:16:69:8d:2e:ff:7b:75:47:8a:68:77:11:96:56:79:70:35:
82:b5:a9:9d:1a:16:fb:aa:2c:f7:68:68:a4:37:b8:56:b3:c3:
23:50:c6:32:4e:bb:59:2a:08:d4:6d:f1:52:6f:c8:2c:4a:dc:
57:7a:92:4e:20:03:c2:ca:7b:d6:3d:b9:c3:37:c7:ef:55:50:
15:f5:20:47:bd:e2:66:56:47:7f:f5:6a:ce:fa:c2:2e:fa:2e:
4a:bf:c0:e0:0b:60:c4:82:bd:6e:32:b7:b9:c3:48:f6:36:89:
ea:02:e0:e2:38:51:4e:08:ea:63:c8:4c:87:a7:78:44:c4:16:
8c:4c:00:46:f0:05:5c:a0:e9:36:ff:75:09:84:2a:11:5b:54:
b6:ea:b6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 20:38:22 2026 by rpki-client