
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json)
Hash identifier: fFlzqXBqlOlhyE+Kn5Z/NqjIR2JBATE40m7d2/KVRZs=
Subject key identifier: 9C:4C:DF:76:D9:AE:D3:CC:09:16:96:9A:F2:B7:AC:8B:E9:D1:5D:F0
Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99
Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999
Certificate serial: 010B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
Manifest number: 0106
Signing time: Fri 17 Jul 2026 07:20:24 +0000
Manifest this update: Fri 17 Jul 2026 07:20:23 +0000
Manifest next update: Fri 24 Jul 2026 07:20:23 +0000
Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: Aorqh/iQtITzZGOX+/6rhcSMUvvwO1MMWEOBkdy76V0=)
2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: E47slZkZUSxL3blqpxWmejtiKRk74l+RdUUIQ3bo/bo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl
rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 07:20:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267 (0x10b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999
Validity
Not Before: Jul 17 07:20:23 2026 GMT
Not After : Jul 24 07:20:23 2026 GMT
Subject: CN=6a59d7b8-fe91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a2:e9:7c:29:23:df:f8:4b:06:3b:2c:72:91:
d9:05:7a:5b:bc:cd:d8:51:e8:77:a7:96:c7:54:c1:
15:fb:25:59:ed:bc:92:ac:d5:4d:ed:2e:f9:47:51:
4d:4a:20:db:1f:b6:bb:db:41:a6:c4:4a:d9:01:00:
ca:42:66:fa:50:94:9e:dc:a0:5f:cc:9b:9a:e4:16:
ff:a0:73:42:3b:38:b9:c1:57:17:37:3a:d9:9d:80:
43:e8:d2:d2:56:d4:f6:bf:ae:1f:3a:77:87:be:ca:
19:d3:eb:33:cd:12:29:ed:ae:d6:27:34:97:cf:ce:
bc:97:3d:d0:c2:88:e2:c2:99:3b:45:ba:19:c7:db:
f3:fd:ce:7a:4d:c8:55:9f:7f:06:e3:39:54:24:d5:
50:7a:a0:f5:c4:4e:a3:e5:34:08:70:42:16:c9:ae:
9a:d2:2d:95:66:6a:53:3d:d9:3e:9c:3a:d6:95:6a:
13:20:3a:1a:01:9c:f9:ca:c9:6b:ef:51:54:c2:c2:
73:0f:13:9e:c8:6d:55:43:85:5c:84:ae:de:2d:49:
b2:a9:12:36:8f:39:c6:4f:e0:54:68:e9:26:e2:58:
9b:f7:2f:7a:0c:d5:28:29:00:17:ad:46:95:1d:15:
65:23:6b:d2:1f:b0:62:67:f7:a8:23:a7:0d:5e:34:
1f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:4C:DF:76:D9:AE:D3:CC:09:16:96:9A:F2:B7:AC:8B:E9:D1:5D:F0
X509v3 Authority Key Identifier:
keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b0:0b:36:6a:81:8d:1b:60:cc:10:f6:a4:1d:8c:c7:aa:54:
26:43:12:9c:73:2e:ea:39:30:99:24:99:83:5d:0e:fc:20:3c:
a6:5b:75:83:97:ff:fc:33:bf:75:fc:4b:bf:4d:7f:04:47:72:
97:cb:e1:25:bf:96:e1:6e:41:a5:78:db:0f:3d:0f:c4:15:34:
c8:39:29:0b:40:60:e7:a2:48:22:67:f9:f6:ce:d7:99:e0:2c:
6d:be:82:3c:2e:bc:b6:d5:ab:b0:8a:c9:69:4d:bf:68:9b:27:
eb:a2:e2:2c:ac:1e:5e:64:5d:40:94:d9:91:44:f5:83:d0:af:
bb:74:b5:8a:7c:f6:2f:e5:4a:93:d9:a2:96:7d:9b:6f:d0:e9:
16:af:a1:a6:1a:d7:a0:34:17:6a:ab:1d:9d:5f:9d:8f:ec:e1:
61:cb:9a:ef:eb:18:b8:0a:3b:b7:36:c4:62:e7:8f:bf:3c:c8:
1b:e8:36:d1:89:58:40:2b:4c:0c:94:bc:20:1a:fa:59:3a:9b:
c7:77:b4:23:85:e9:96:ff:8e:19:25:25:43:ae:23:ef:ab:d5:
75:9b:7c:3c:9e:b6:17:bc:5a:84:75:7e:c5:38:af:d4:98:81:
ea:9b:a5:90:ae:ad:4e:a7:c3:27:49:9c:41:79:14:02:7c:5f:
5e:18:29:f0
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx
Njk2RTc5OTkwHhcNMjYwNzE3MDcyMDIzWhcNMjYwNzI0MDcyMDIzWjAYMRYwFAYD
VQQDEw02YTU5ZDdiOC1mZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAiKLpfCkj3/hLBjsscpHZBXpbvM3YUeh3p5bHVMEV+yVZ7bySrNVN7S75R1FN
SiDbH7a720GmxErZAQDKQmb6UJSe3KBfzJua5Bb/oHNCOzi5wVcXNzrZnYBD6NLS
VtT2v64fOneHvsoZ0+szzRIp7a7WJzSXz868lz3Qwojiwpk7RboZx9vz/c56TchV
n38G4zlUJNVQeqD1xE6j5TQIcEIWya6a0i2VZmpTPdk+nDrWlWoTIDoaAZz5yslr
71FUwsJzDxOeyG1VQ4VchK7eLUmyqRI2jznGT+BUaOkm4lib9y96DNUoKQAXrUaV
HRVlI2vSH7BiZ/eoI6cNXjQfnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJxM33bZ
rtPMCRaWmvK3rIvp0V3wMB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5
QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl
WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw
RjdtWExoMUtEMlFXbHVlWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAarALNmqBjRtgzBD2pB2Mx6pUJkMSnHMu6jkwmSSZg10O/CA8plt1g5f//DO/
dfxLv01/BEdyl8vhJb+W4W5BpXjbDz0PxBU0yDkpC0Bg56JIImf59s7XmeAsbb6C
PC68ttWrsIrJaU2/aJsn66LiLKweXmRdQJTZkUT1g9Cvu3S1inz2L+VKk9miln2b
b9DpFq+hphrXoDQXaqsdnV+dj+zhYcua7+sYuAo7tzbEYuePvzzIG+g20YlYQCtM
DJS8IBr6WTqbx3e0I4Xplv+OGSUlQ64j76vVdZt8PJ62F7xahHV+xTiv1JiB6pul
kK6tTqfDJ0mcQXkUAnxfXhgp8A==
-----END CERTIFICATE-----
Generated at Sat Jul 18 10:14:19 2026 by rpki-client