
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
File: joN3gQz5wgS7ElhPPltfBQNoJG8.mft (raw, json)
Hash identifier: fDdBdD4hQg2+hsdT5WfxaNXX1EHdNCjG8eb4z+C0F9g=
Subject key identifier: 82:93:57:E8:DE:EE:ED:38:5E:28:82:4A:C5:F2:52:B2:3C:8B:7A:D3
Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F
Certificate serial: 1FC7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
Manifest number: 1F8D
Signing time: Mon 06 Jul 2026 16:03:52 +0000
Manifest this update: Mon 06 Jul 2026 16:03:52 +0000
Manifest next update: Mon 13 Jul 2026 16:03:52 +0000
Files and hashes: 1: joN3gQz5wgS7ElhPPltfBQNoJG8.crl (hash: 15huIkArF/WIHSewT5WDTO1XNnTBJ5h1KmC/GfaUdz4=)
2: 31603938763B11EF810E6D1FC4F9AE02.roa (hash: Xg8b4k8dyJnknGrxDqu8s/epK4EcpiaQJZTkwQhIk5w=)
3: A63484760E7511F0B651A474C4F9AE02.roa (hash: +pE7fz+25XDKVSR1TTre98pAfrw8z0UxTph99EfCdpg=)
4: 2D70A1AE0DFE11F087A25C3FC4F9AE02.roa (hash: 2y/jQz4yVj19GJGz1W72K4pwTYp+Le0fIXrjvRTBp0Y=)
5: 48BB49E8763A11EFA077F11CC4F9AE02.roa (hash: SC9hgUP5qkpQyGiq0/C+uNw+SG+aKNsI2Or0GyWgnHo=)
6: 2E2A74580DFE11F087A25C3FC4F9AE02.roa (hash: cyiYPrBSjjiz7rqliBBIH7SM0wyxWHZdYA/as9MjKxQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl
rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 16:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8135 (0x1fc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913F0E3, serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F
Validity
Not Before: Jul 6 16:03:52 2026 GMT
Not After : Jul 13 16:03:52 2026 GMT
Subject: CN=6a4bd1e8-9669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ba:39:a4:a1:c5:99:ef:04:4f:aa:27:82:f4:
b0:5d:22:12:5e:4d:cd:6b:0d:26:0b:aa:dc:f5:5b:
08:ac:fb:0b:9f:5f:7b:5d:fe:73:15:17:b8:27:d2:
bb:90:18:8a:70:0e:c6:a7:42:16:c9:88:7c:64:74:
ae:cc:55:dd:3c:75:e3:34:30:e8:6d:d9:ab:fe:52:
8e:18:d8:59:04:92:3e:9f:9c:4d:a0:bc:23:94:fb:
5d:59:3a:c4:df:55:6f:84:b9:91:59:9f:12:ad:18:
dc:54:2d:e8:32:07:1c:eb:c0:d8:c8:41:c8:40:59:
d9:59:d2:42:80:85:ce:11:25:9b:c7:fc:d9:b4:d7:
20:95:f6:a4:c1:68:ce:47:39:07:bf:17:93:02:53:
b1:d5:6e:05:34:f9:d1:cd:6b:f8:80:41:dc:f9:6b:
c0:c6:93:b4:32:32:e6:73:bd:1d:7f:a8:6f:47:d4:
2c:62:96:51:48:72:b6:8c:14:d2:be:b7:4d:56:3b:
e8:ff:12:db:9f:49:42:e1:67:7f:fd:d7:25:3b:35:
b1:4d:2e:b4:bc:ad:3d:6c:50:e3:f4:21:39:bd:65:
72:12:ca:51:6b:a8:ee:2c:4f:2a:35:c9:dc:01:82:
aa:40:df:9a:59:58:81:ce:87:82:f8:b7:19:05:7a:
76:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:93:57:E8:DE:EE:ED:38:5E:28:82:4A:C5:F2:52:B2:3C:8B:7A:D3
X509v3 Authority Key Identifier:
keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
45:d6:0c:01:b3:b7:12:f6:c2:64:7e:41:db:4f:24:33:59:cf:
2b:03:71:74:b1:8e:0b:7d:82:70:35:32:aa:24:40:da:80:59:
8d:dd:af:1c:24:94:df:71:5a:e7:9c:a3:54:e8:a2:b2:6f:db:
36:11:88:36:8a:bb:36:59:89:43:ad:d0:eb:9e:01:93:ed:44:
a7:d2:e0:55:63:c9:22:59:c2:a1:13:48:06:0f:07:f0:dd:47:
7d:c5:56:42:8d:fd:31:d1:1d:e9:d5:62:f1:1d:93:7d:4c:de:
69:27:30:14:fa:97:da:73:03:fa:4e:1a:d9:db:49:9b:67:bc:
21:f3:96:b1:fe:27:81:d5:cd:54:07:0b:d9:52:f7:50:ac:a7:
96:b5:1d:66:e3:16:2d:76:fe:c5:fe:5c:4e:23:de:a3:7f:b5:
c4:b9:b6:a2:2a:32:b6:1e:d8:bc:b9:41:f2:ab:36:02:2f:65:
37:2e:c1:a2:b0:53:28:65:b9:17:3e:a7:c4:b6:9c:14:49:4e:
05:bf:81:36:57:86:81:f0:f0:91:cd:66:45:12:d7:89:ee:a1:
25:a7:20:0f:12:f2:6b:13:20:1c:e6:f8:a8:fd:86:72:9e:cd:
74:bf:e6:c3:a3:c2:97:29:c3:1a:46:1f:75:80:2f:ce:e6:84:
57:02:6b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:22:40 2026 by rpki-client