
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
File: HQSsXQPY72rEMd4aeq57aHaBtjY.mft (raw, json)
Hash identifier: 1L0/arFMEQkyUH58JNd3OINgjj9pxSLQX4QNu9v96Q4=
Subject key identifier: EB:80:30:66:7D:ED:71:0A:F0:3C:6F:12:E4:FB:99:5B:EE:C7:B2:27
Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36
Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636
Certificate serial: 08B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
Manifest number: 089B
Signing time: Tue 30 Jun 2026 21:17:44 +0000
Manifest this update: Tue 30 Jun 2026 21:17:44 +0000
Manifest next update: Tue 07 Jul 2026 21:17:44 +0000
Files and hashes: 1: HQSsXQPY72rEMd4aeq57aHaBtjY.crl (hash: eL609YhC3qFyBmE2FxzFt1UKrhw/cnFVJoVdSukycMk=)
2: 66EE9D94152511ECAD055780C4F9AE02.roa (hash: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0=)
3: 111E53B6152811ECB2C0B70BC4F9AE02.roa (hash: DHN4e0JrosxaWqhhvniYwJn8xIsHqQd0pj3UDSpuBlo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl
rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 Jul 2026 21:17:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2228 (0x8b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636
Validity
Not Before: Jun 30 21:17:44 2026 GMT
Not After : Jul 7 21:17:44 2026 GMT
Subject: CN=6a443278-9b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b4:42:f7:a8:5c:03:7e:6b:79:0b:a5:33:06:
e9:d4:e8:3d:5d:4e:b2:76:20:14:34:a8:d9:8c:0c:
5d:ac:16:85:cc:27:64:30:98:f2:4d:55:88:be:ce:
3c:f9:00:4d:d2:4c:85:e6:50:9e:26:fd:c2:d2:42:
20:84:da:cc:2a:3b:a2:e6:1b:26:1e:fb:92:0d:d8:
d7:2a:7b:74:7b:9f:26:b0:03:d4:4c:5a:44:1d:00:
37:d4:0e:35:e0:22:66:c8:e2:7d:0e:a9:83:50:b2:
59:3d:16:85:ff:a2:31:78:02:bb:1f:3a:e7:eb:25:
55:ac:39:67:23:8d:6e:80:7e:d8:1f:3c:12:50:e6:
35:6f:2f:a5:9c:09:f0:c8:00:e5:a8:39:26:5f:4e:
fc:07:74:c6:c4:e7:3d:30:12:7b:ff:b3:78:e3:50:
fe:c3:19:e4:ce:d9:61:fb:d7:e5:71:85:04:ac:74:
74:7d:37:72:be:60:72:b1:ea:e8:c9:53:ea:91:08:
00:89:50:20:5b:93:9b:d5:f1:d3:e6:6c:ec:cc:eb:
9a:c8:26:05:11:f2:dc:b7:5c:8d:58:50:82:cf:0e:
78:bf:8c:41:9d:b8:70:ee:a0:76:0a:af:3f:64:9b:
7d:46:cc:2f:c4:41:86:8f:4b:dc:10:ba:5b:32:25:
41:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:80:30:66:7D:ED:71:0A:F0:3C:6F:12:E4:FB:99:5B:EE:C7:B2:27
X509v3 Authority Key Identifier:
keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
61:e3:d8:56:88:93:ed:27:08:b4:14:0c:37:ba:50:35:7a:5c:
9f:6f:bc:e3:52:db:77:12:33:0b:8b:3c:cc:14:e1:64:77:44:
3e:a8:d1:d7:9a:72:76:9d:6c:bb:43:3f:c8:ce:e5:69:33:09:
59:6f:6d:af:be:30:3b:cb:c7:e9:54:2f:c9:62:da:c9:7b:be:
8c:40:54:95:24:b0:1c:a2:82:7d:04:16:0d:02:eb:5b:fa:88:
4c:fb:af:53:f6:11:42:06:b4:c7:88:36:1a:57:e7:54:8d:2d:
95:a4:cc:f0:21:be:5a:a5:10:c8:33:8f:d7:6e:83:5c:cc:e7:
bd:b4:c0:c1:57:be:9b:f8:61:97:ee:a0:8e:e1:7b:b9:ec:a8:
95:2f:5f:7c:aa:30:51:c8:bd:af:46:9e:6c:ef:4b:92:26:37:
84:64:08:50:81:9a:c2:b2:61:ed:81:7b:40:42:36:65:53:a4:
45:7b:19:8e:ee:c7:ba:19:40:6a:d9:c1:45:4f:b6:29:38:28:
df:76:a0:04:14:1c:ff:dc:49:16:e4:d7:23:57:8d:8b:1a:9c:
49:84:74:35:ee:5b:6f:e2:af:e9:38:5d:76:70:09:0c:37:06:
ec:d2:3e:88:0f:c7:68:f3:03:c5:19:17:4d:38:11:8b:69:a3:
be:55:c9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 07:26:27 2026 by rpki-client