
$ rpki-client -vvf rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
File: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft (raw, json)
Hash identifier: ZBVzTNk72qN4iOJlhM3F9M4elc/lWasCwZGJDyR/8bM=
Subject key identifier: BE:D7:20:22:C2:78:5D:DD:B7:0F:40:AD:2B:92:AA:AD:1F:0E:69:A1
Authority key identifier: 40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4
Certificate issuer: /CN=A913089B/serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4
Certificate serial: BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
Manifest number: B9
Signing time: Mon 29 Jun 2026 07:45:49 +0000
Manifest this update: Mon 29 Jun 2026 07:45:49 +0000
Manifest next update: Mon 06 Jul 2026 07:45:49 +0000
Files and hashes: 1: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl (hash: fH/obpxAFx+UC8dViqPc2PqDELh59kiTkk8CQxtZ4bM=)
2: AE811872614711F0B811645EC4F9AE02.roa (hash: CEPtXkuVKx6QKp3MVtGTrXzO5plriy+U5ciLSfemG7A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl
rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 06 Jul 2026 07:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188 (0xbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913089B, serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4
Validity
Not Before: Jun 29 07:45:49 2026 GMT
Not After : Jul 6 07:45:49 2026 GMT
Subject: CN=6a4222ad-80e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:64:f8:5b:7a:8e:5d:fe:c4:bb:a2:06:ab:39:
47:36:c0:da:c3:2a:32:33:7e:28:ed:0a:30:95:19:
87:e8:fd:bf:25:fb:1e:2b:fe:58:a4:b5:00:83:a5:
92:66:9f:e1:8b:98:7b:32:c0:36:ca:0c:1d:33:71:
ba:83:19:43:07:a3:47:6f:9e:12:42:47:62:97:43:
e7:61:0c:77:d3:80:4c:fc:7b:0e:75:45:d6:fb:aa:
53:73:c7:73:76:c3:07:ac:ba:da:9c:8e:22:34:57:
92:85:ea:a2:7a:3e:8d:f1:91:c9:eb:0e:98:df:6f:
c4:39:a0:d8:79:c8:94:d8:d3:89:d9:77:8f:31:75:
c2:a2:25:e7:29:2b:04:56:70:70:f6:d1:a6:ea:10:
f3:6e:cf:eb:ce:7e:65:d6:4b:da:99:bd:ae:e8:9b:
51:21:2e:69:c0:bb:96:5a:97:a4:e3:5c:d2:6e:cc:
7c:a9:b6:a1:87:ee:0b:c2:b5:b2:fc:76:d5:02:85:
8f:47:e1:6d:2b:2e:4e:2e:85:76:06:8f:3e:71:27:
80:53:cc:4c:a7:0f:b8:09:bf:df:ac:97:ea:b8:a0:
41:da:4c:a7:42:62:7b:14:5d:8f:bc:9c:67:a9:99:
52:c8:0a:54:a8:81:68:93:31:f6:13:64:23:8e:07:
c7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D7:20:22:C2:78:5D:DD:B7:0F:40:AD:2B:92:AA:AD:1F:0E:69:A1
X509v3 Authority Key Identifier:
keyid:40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b9:38:c8:20:1d:39:eb:c8:9a:a1:bd:10:0b:32:c3:a0:20:
73:a9:43:f1:66:3a:7a:74:fe:08:45:7c:87:71:8c:07:ca:db:
a8:e9:df:de:eb:fc:11:e6:67:91:7f:ca:2e:91:d5:07:66:4c:
89:ca:df:09:8f:c7:3f:b4:9f:82:0f:6c:28:4d:7b:8e:b9:14:
5d:45:ee:b0:41:fb:bb:e2:19:c9:16:a3:b9:36:0f:35:3d:f4:
a5:85:e2:eb:3c:1f:e5:2b:87:be:35:28:b5:86:1f:6c:b8:c0:
e3:f7:4d:78:9c:cc:a2:62:36:0d:75:66:fc:db:64:4d:46:9d:
cd:5c:22:23:bc:8f:b5:70:73:09:c0:db:51:de:94:30:a5:2e:
ec:2d:eb:23:dd:21:0f:c2:a7:1d:7c:7b:7b:e7:1e:91:7b:d8:
28:6e:ad:62:dd:2a:15:9d:8b:6e:e8:f6:a8:c6:ec:2a:2b:6f:
40:c0:f8:21:7b:ac:54:b2:62:60:f8:b2:c9:32:a8:51:f5:7b:
db:3a:49:cf:cf:33:8a:36:a0:e6:c8:d8:0c:d4:be:30:e9:64:
62:14:06:5c:31:3b:01:8d:6c:ac:02:c5:26:92:15:ec:08:e9:
5c:aa:61:68:71:50:95:b8:33:e9:3b:ee:f2:f0:0a:57:e9:d2:
48:3b:9d:8c
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzA4OUIxMTAvBgNVBAUTKDQwM0YyRTdFNERBQjEzQzQxOUM2ODY5MEM5NDk5NTQ3
RjJDNThGQzQwHhcNMjYwNjI5MDc0NTQ5WhcNMjYwNzA2MDc0NTQ5WjAYMRYwFAYD
VQQDEw02YTQyMjJhZC04MGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAumT4W3qOXf7Eu6IGqzlHNsDawyoyM34o7QowlRmH6P2/JfseK/5YpLUAg6WS
Zp/hi5h7MsA2ygwdM3G6gxlDB6NHb54SQkdil0PnYQx304BM/HsOdUXW+6pTc8dz
dsMHrLranI4iNFeSheqiej6N8ZHJ6w6Y32/EOaDYeciU2NOJ2XePMXXCoiXnKSsE
VnBw9tGm6hDzbs/rzn5l1kvamb2u6JtRIS5pwLuWWpek41zSbsx8qbahh+4LwrWy
/HbVAoWPR+FtKy5OLoV2Bo8+cSeAU8xMpw+4Cb/frJfquKBB2kynQmJ7FF2PvJxn
qZlSyApUqIFokzH2E2QjjgfHtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL7XICLC
eF3dtw9ArSuSqq0fDmmhMB8GA1UdIwQYMBaAFEA/Ln5NqxPEGcaGkMlJlUfyxY/E
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDg5Qi81NDRDMjA1MDYx
NDYxMUYwQjQ4NjRFNUFDNEY5QUUwMi9RRDh1ZmsyckU4UVp4b2FReVVtVlJfTEZq
OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1FEOHVmazJyRThRWnhvYVF5VW1WUl9MRmo4US5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
MDg5Qi81NDRDMjA1MDYxNDYxMUYwQjQ4NjRFNUFDNEY5QUUwMi9RRDh1ZmsyckU4
UVp4b2FReVVtVlJfTEZqOFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAfrk4yCAdOevImqG9EAsyw6Agc6lD8WY6enT+CEV8h3GMB8rbqOnf3uv8EeZn
kX/KLpHVB2ZMicrfCY/HP7Sfgg9sKE17jrkUXUXusEH7u+IZyRajuTYPNT30pYXi
6zwf5SuHvjUotYYfbLjA4/dNeJzMomI2DXVm/NtkTUadzVwiI7yPtXBzCcDbUd6U
MKUu7C3rI90hD8KnHXx7e+cekXvYKG6tYt0qFZ2Lbuj2qMbsKitvQMD4IXusVLJi
YPiyyTKoUfV72zpJz88zijag5sjYDNS+MOlkYhQGXDE7AY1srALFJpIV7AjpXKph
aHFQlbgz6Tvu8vAKV+nSSDudjA==
-----END CERTIFICATE-----
Generated at Wed Jul 1 08:27:12 2026 by rpki-client