
$ rpki-client -vvf rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
File: EMpiwqdJv5H1YirewPGWGEk8u6k.mft (raw, json)
Hash identifier: ALt5iVD3s7K7zF1EvbyaNxHlAYTtEb5U5NJvL0oOWR0=
Subject key identifier: 9C:A1:91:D4:7C:EF:81:1C:A2:52:79:B1:0D:61:EB:F1:9A:3C:48:21
Authority key identifier: 10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9
Certificate issuer: /CN=A91306B2/serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9
Certificate serial: 02CA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
Manifest number: 02BE
Signing time: Fri 17 Jul 2026 02:04:22 +0000
Manifest this update: Fri 17 Jul 2026 02:04:21 +0000
Manifest next update: Fri 24 Jul 2026 02:04:21 +0000
Files and hashes: 1: EMpiwqdJv5H1YirewPGWGEk8u6k.crl (hash: cWGwoK0JYM8Q4JZXOOyRggIIW0Ujwpmg0RsIK9uYivE=)
2: 695CA6D414BF11EEB8B95B7FC4F9AE02.roa (hash: 7oAXnZAUBtQjX3ZHXMNMC7v8KvbechSNV9axONzAjso=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl
rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 02:04:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 714 (0x2ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91306B2, serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9
Validity
Not Before: Jul 17 02:04:21 2026 GMT
Not After : Jul 24 02:04:21 2026 GMT
Subject: CN=6a598da6-3d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:ab:f7:e7:bd:2c:b6:aa:19:a7:70:6c:10:
a2:50:d0:44:0b:3b:f4:29:69:3b:ea:41:6f:e8:a5:
c8:1a:6a:68:74:ce:07:bb:af:e6:12:75:ff:78:a5:
cf:1b:a0:7b:27:5e:81:18:e5:c4:57:0a:62:f5:aa:
b8:77:ea:8e:a7:b7:61:c2:dd:d4:14:59:fe:1e:32:
ad:2f:35:97:98:f6:f9:c9:37:0c:83:91:71:c7:ca:
9c:42:06:d3:45:cd:f9:da:bc:d8:a5:0d:10:1b:05:
4e:d1:ea:1d:fd:67:d5:c3:76:7f:ad:c9:19:5c:e9:
60:88:71:82:17:24:d8:b6:71:e6:16:2c:fd:4d:40:
21:8a:b0:e3:5f:77:56:1e:0a:0b:d9:a4:76:f6:8b:
49:1e:94:c7:45:6b:85:5e:25:28:07:e1:39:07:e4:
76:5d:dc:43:b1:4c:d4:29:87:0c:cc:8c:89:91:a5:
1d:8c:02:83:2b:84:74:67:25:6f:f6:89:f5:59:70:
69:3f:29:c6:c2:85:b1:5d:83:1e:88:66:23:f2:b4:
02:4c:9c:3c:12:b6:73:d2:f5:e8:d3:85:b4:e4:f7:
54:ff:2c:57:3b:37:96:b6:03:4c:40:61:f0:25:1b:
2b:de:a7:61:ba:e3:ed:e0:83:db:fa:c8:1f:a7:4b:
43:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A1:91:D4:7C:EF:81:1C:A2:52:79:B1:0D:61:EB:F1:9A:3C:48:21
X509v3 Authority Key Identifier:
keyid:10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
71:4c:52:70:52:6a:8c:82:00:4e:cf:ff:b8:11:b5:54:7e:e2:
d5:ad:34:3b:3a:b0:5b:34:27:40:29:2c:67:7a:12:9b:18:f1:
c8:e4:07:1c:b3:9f:05:2a:c5:62:82:6d:65:73:bd:7c:e4:ac:
57:f9:2e:f6:74:e3:9f:45:14:d5:e7:6c:38:ab:f4:9e:e7:84:
44:88:a4:fc:6b:0a:d3:55:fd:5d:38:aa:16:27:2c:40:40:76:
15:29:e8:c3:f9:14:41:28:5c:6d:aa:a8:66:6d:a5:4f:36:a5:
66:08:b6:9f:d8:1d:2d:5b:ac:d0:69:d5:30:c9:71:6a:0e:92:
d8:f4:af:56:22:e2:0b:39:1a:21:f6:55:f7:6b:8a:8b:77:56:
a9:59:66:4e:d6:82:c2:87:9d:3d:56:cb:f8:60:d2:ff:e1:ae:
1f:06:dc:ec:c0:15:c2:30:9a:e0:e5:d9:15:e1:71:49:6a:24:
7c:e9:04:ed:29:2b:f6:6b:8d:d0:34:5e:06:4c:42:63:bf:30:
77:3f:71:58:99:ea:9d:be:b3:ac:b5:8b:1b:42:ad:7d:aa:e7:
fc:5c:ae:73:8f:97:9d:be:38:d6:90:ec:ab:8c:b3:87:7c:bc:
58:44:da:3b:14:2c:cd:cb:af:63:e8:3d:e5:03:76:9d:84:b6:
5a:d1:40:be
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzA2QjIxMTAvBgNVBAUTKDEwQ0E2MkMyQTc0OUJGOTFGNTYyMkFERUMwRjE5NjE4
NDkzQ0JCQTkwHhcNMjYwNzE3MDIwNDIxWhcNMjYwNzI0MDIwNDIxWjAYMRYwFAYD
VQQDEw02YTU5OGRhNi0zZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAycer9+e9LLaqGadwbBCiUNBECzv0KWk76kFv6KXIGmpodM4Hu6/mEnX/eKXP
G6B7J16BGOXEVwpi9aq4d+qOp7dhwt3UFFn+HjKtLzWXmPb5yTcMg5Fxx8qcQgbT
Rc352rzYpQ0QGwVO0eod/WfVw3Z/rckZXOlgiHGCFyTYtnHmFiz9TUAhirDjX3dW
HgoL2aR29otJHpTHRWuFXiUoB+E5B+R2XdxDsUzUKYcMzIyJkaUdjAKDK4R0ZyVv
9on1WXBpPynGwoWxXYMeiGYj8rQCTJw8ErZz0vXo04W05PdU/yxXOzeWtgNMQGHw
JRsr3qdhuuPt4IPb+sgfp0tDgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJyhkdR8
74EcolJ5sQ1h6/GaPEghMB8GA1UdIwQYMBaAFBDKYsKnSb+R9WIq3sDxlhhJPLup
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDZCMi8zMjFGREQzRTRE
ODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1SDFZaXJld1BHV0dFazh1
NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0VNcGl3cWRKdjVIMVlpcmV3UEdXR0VrOHU2ay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MDZCMi8zMjFGREQzRTREODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1
SDFZaXJld1BHV0dFazh1NmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAcUxScFJqjIIATs//uBG1VH7i1a00OzqwWzQnQCksZ3oSmxjxyOQHHLOfBSrF
YoJtZXO9fOSsV/ku9nTjn0UU1edsOKv0nueERIik/GsK01X9XTiqFicsQEB2FSno
w/kUQShcbaqoZm2lTzalZgi2n9gdLVus0GnVMMlxag6S2PSvViLiCzkaIfZV92uK
i3dWqVlmTtaCwoedPVbL+GDS/+GuHwbc7MAVwjCa4OXZFeFxSWokfOkE7Skr9muN
0DReBkxCY78wdz9xWJnqnb6zrLWLG0Ktfarn/Fyuc4+Xnb441pDsq4yzh3y8WETa
OxQszcuvY+g95QN2nYS2WtFAvg==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:12:56 2026 by rpki-client