
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json)
Hash identifier: g8whddRi3IGd6oB+HpSzcjymSH6pkWxJywAnQhQaBb8=
Subject key identifier: 84:D4:A1:74:16:65:7B:12:FB:74:93:FC:90:CE:46:72:7B:C5:59:5C
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 239E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
Manifest number: 231D
Signing time: Thu 16 Jul 2026 15:53:36 +0000
Manifest this update: Thu 16 Jul 2026 15:53:35 +0000
Manifest next update: Thu 23 Jul 2026 15:53:35 +0000
Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: 1MaTuytWhsxWrj3CYTCU2tEYAlAUX+f1yO0QUpfxXTQ=)
2: 007F2494585411F192FCAD7CB9833773.roa (hash: xHSN/5VXM9FybISBlJ/UROWiMLQHMMCa7pw46pb3EWg=)
3: B77C6462487411F1984AD6F3A8833773.roa (hash: RddRSM+tZhwgqkgFCGkOz9Gfn0He2cvwXMCg9NReMjo=)
4: A44814E8EF8411F087F172675F6F56BC.roa (hash: FAPPLKPyuVPEstzxKhq8xMCTFyCQPBtS0uf8CxBtLms=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 15:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9118 (0x239e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: Jul 16 15:53:35 2026 GMT
Not After : Jul 23 15:53:35 2026 GMT
Subject: CN=6a58fe7f-5907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:f0:d2:64:56:fd:4c:7e:7e:f2:41:5f:18:
b3:71:57:5b:9d:12:d0:e1:28:42:03:57:aa:43:fc:
72:5b:80:4a:69:4c:d9:18:7f:b7:66:50:90:c2:88:
b8:15:15:72:ae:a7:66:0a:6a:dd:2f:41:cb:62:54:
54:54:25:a4:39:8d:2d:ed:87:69:6c:15:74:00:56:
6e:57:ff:4d:0e:e3:98:3e:5d:13:6d:da:48:f5:91:
03:69:4c:35:7e:bd:1d:ea:66:07:41:c8:90:72:7e:
32:03:c2:15:f4:2a:1c:fa:aa:8e:99:61:6c:9c:94:
ff:39:4b:29:9b:e7:b1:0c:e9:81:c3:94:b5:2d:fe:
d3:a8:31:55:ed:6d:f9:d0:ee:3e:e7:d2:49:98:2c:
84:43:f1:0c:f5:b0:83:ad:8d:08:56:81:7d:f8:b0:
8e:7a:bd:1d:82:0c:5a:97:ed:44:19:f3:b3:b5:40:
86:f4:4c:2c:a5:0a:f9:9f:23:1b:58:19:2b:cd:51:
bf:fd:2e:cd:9b:d5:3e:60:3e:39:2e:a2:5a:21:fe:
94:06:ef:ee:01:f6:38:0b:34:b6:5e:eb:a5:e7:ec:
c7:f1:95:ee:ed:89:f0:86:1c:cf:a7:ff:b5:52:9b:
b4:5c:25:f1:d2:e9:5f:53:08:33:28:97:88:2d:4f:
28:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D4:A1:74:16:65:7B:12:FB:74:93:FC:90:CE:46:72:7B:C5:59:5C
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
2e:4e:6c:34:d3:4b:11:0e:e7:3e:31:50:3b:0a:9f:f2:7d:d3:
39:34:2e:0e:78:05:a8:b1:84:66:d1:93:25:99:cb:ae:fd:0a:
0d:29:d6:7d:4a:cc:87:dc:ed:9b:43:ce:7d:10:83:16:96:28:
21:d0:2e:ae:bb:5f:40:53:81:69:3e:17:7b:2a:48:17:ee:2f:
93:ec:cc:53:e9:42:5d:bc:22:e8:14:91:7f:4c:c5:dd:1d:9e:
bf:41:8b:cc:ab:8a:c6:9f:83:c9:f5:3d:4e:8e:62:4f:b0:28:
91:58:5b:c5:78:67:ef:32:18:45:30:b1:f5:86:5c:d8:53:f8:
90:3f:13:3d:25:2d:18:71:dc:9b:99:ff:39:3f:27:8c:3e:41:
8d:98:44:27:5e:2e:c0:c0:a1:c7:ec:c8:54:f0:71:34:7a:f8:
df:a3:ff:a9:d2:0b:49:86:74:32:f4:49:8d:d6:db:52:4e:32:
62:0c:ba:ef:2e:16:60:2c:fe:45:8b:cc:61:b7:16:0f:8c:12:
46:9f:fa:08:d6:90:97:64:f3:15:0e:54:23:8b:65:59:eb:26:
53:b0:42:6b:3e:5b:ea:64:d2:91:28:a1:59:f2:21:a8:cf:72:
da:a5:f7:91:df:87:ba:a5:0f:32:24:97:a9:08:9d:16:9d:ae:
ba:ed:49:73
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICI54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2
OEY2OTg1M0IwHhcNMjYwNzE2MTU1MzM1WhcNMjYwNzIzMTU1MzM1WjAYMRYwFAYD
VQQDEw02YTU4ZmU3Zi01OTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAus/w0mRW/Ux+fvJBXxizcVdbnRLQ4ShCA1eqQ/xyW4BKaUzZGH+3ZlCQwoi4
FRVyrqdmCmrdL0HLYlRUVCWkOY0t7YdpbBV0AFZuV/9NDuOYPl0TbdpI9ZEDaUw1
fr0d6mYHQciQcn4yA8IV9Coc+qqOmWFsnJT/OUspm+exDOmBw5S1Lf7TqDFV7W35
0O4+59JJmCyEQ/EM9bCDrY0IVoF9+LCOer0dggxal+1EGfOztUCG9EwspQr5nyMb
WBkrzVG//S7Nm9U+YD45LqJaIf6UBu/uAfY4CzS2Xuul5+zH8ZXu7YnwhhzPp/+1
Upu0XCXx0ulfUwgzKJeILU8oXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFITUoXQW
ZXsS+3ST/JDORnJ7xVlcMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy
RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo
VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy
RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0
N09GTlFFV2JxNXhvOXBoVHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEALk5sNNNLEQ7nPjFQOwqf8n3TOTQuDngFqLGEZtGTJZnLrv0KDSnWfUrMh9zt
m0POfRCDFpYoIdAurrtfQFOBaT4XeypIF+4vk+zMU+lCXbwi6BSRf0zF3R2ev0GL
zKuKxp+DyfU9To5iT7AokVhbxXhn7zIYRTCx9YZc2FP4kD8TPSUtGHHcm5n/OT8n
jD5BjZhEJ14uwMChx+zIVPBxNHr436P/qdILSYZ0MvRJjdbbUk4yYgy67y4WYCz+
RYvMYbcWD4wSRp/6CNaQl2TzFQ5UI4tlWesmU7BCaz5b6mTSkSihWfIhqM9y2qX3
kd+HuqUPMiSXqQidFp2uuu1Jcw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:16:42 2026 by rpki-client