
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
File: idaQRux8ca1__5jk_Zu5iB8pnIk.mft (raw, json)
Hash identifier: T0vPz+d4X25KrNtmXNppvz0KXF6fFgSDzJ8DBxYh73U=
Subject key identifier: 13:5C:34:66:5E:B1:BF:14:9B:99:6A:CC:62:31:2B:2E:CF:DE:18:7F
Authority key identifier: 89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89
Certificate issuer: /CN=A914D648/serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89
Certificate serial: 55
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
Manifest number: 52
Signing time: Fri 03 Jul 2026 09:11:11 +0000
Manifest this update: Fri 03 Jul 2026 09:11:11 +0000
Manifest next update: Fri 10 Jul 2026 09:11:11 +0000
Files and hashes: 1: idaQRux8ca1__5jk_Zu5iB8pnIk.crl (hash: 2ekr+ERtgl3ku/2x9RsfBckk6MQJGnoikwlHDgBFw60=)
2: 4A5A1A32001211F1BC55B3C9406F56BC.roa (hash: yCCSOKLm19MpEiNQt1HNvusaS66zOK2dLX4/U/YPzqA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl
rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 10 Jul 2026 09:11:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85 (0x55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914D648, serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89
Validity
Not Before: Jul 3 09:11:11 2026 GMT
Not After : Jul 10 09:11:11 2026 GMT
Subject: CN=6a477caf-a4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6b:ed:0f:eb:a0:ca:d4:e6:99:d7:86:f1:9f:
d4:a4:32:54:ab:99:60:96:95:c4:ad:53:0c:25:7c:
2f:1b:f6:c1:26:4f:c0:ac:f6:25:f9:28:d7:92:af:
26:08:b3:b1:53:83:96:13:b8:a1:db:c9:8b:ea:5a:
44:22:77:24:ae:ba:31:ba:83:91:22:cf:47:64:cb:
dc:47:af:10:4d:b4:77:9e:a9:25:1c:9f:65:56:14:
92:6c:1f:c6:ca:66:e4:6d:ee:81:84:94:c2:28:bd:
0d:33:b3:84:04:c9:03:59:34:dc:fa:a4:62:c5:40:
92:21:37:c0:d6:00:49:0d:b4:27:e4:44:d8:f3:71:
cb:9f:a1:9c:bd:25:61:93:79:52:75:b5:19:dc:7e:
91:63:0f:b1:a1:de:b5:df:39:ff:2a:17:6b:79:c5:
f4:58:9e:9d:33:5b:7a:7f:15:ab:61:05:86:9e:2e:
0a:c2:ca:dc:7c:df:12:d8:7b:40:a7:93:e2:ec:55:
97:2b:65:49:26:13:69:4b:c4:e2:4b:de:70:82:f6:
8a:f7:e9:62:57:8c:ac:7c:1e:2f:14:12:ca:2a:b7:
0a:de:ed:2e:7c:30:1d:c3:ba:1f:31:83:a3:7b:cf:
5a:b8:35:b5:dc:38:99:74:30:df:ab:47:1d:54:73:
a5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5C:34:66:5E:B1:BF:14:9B:99:6A:CC:62:31:2B:2E:CF:DE:18:7F
X509v3 Authority Key Identifier:
keyid:89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
50:e7:0f:8d:46:f9:7c:1e:ec:85:72:f0:22:c5:ae:19:43:5b:
83:73:a0:2e:e9:51:cb:52:a2:dc:e2:69:6c:47:79:71:13:db:
e5:be:6b:da:0b:69:84:90:5c:3c:39:31:23:af:d8:f5:0e:c4:
0e:94:0c:7d:c1:dc:7c:eb:95:aa:53:30:bd:9c:f4:0c:dc:d5:
e3:3f:7e:90:3d:b6:dc:57:01:bb:f3:46:2a:07:bb:f0:74:a9:
48:95:64:36:c4:5a:87:dc:66:99:19:62:b0:0c:c9:65:fd:7d:
ac:7a:a3:f6:fc:82:ef:5a:05:98:e0:5b:ef:41:72:c4:ca:41:
80:82:9e:b2:44:78:99:70:69:99:c5:44:00:f2:ed:88:53:13:
c6:46:b9:77:9c:07:2f:62:ca:5d:d1:de:1c:e2:4e:b0:f8:41:
23:cf:45:74:3a:c5:04:51:fd:a9:04:f0:4f:74:76:de:e8:71:
bc:48:d9:c1:08:94:5f:a4:39:0c:89:81:86:b0:2c:15:7f:a9:
cb:7d:e2:c7:02:99:1d:63:6f:73:f5:97:0f:c8:aa:68:52:66:
66:49:c9:e1:bd:41:48:d6:4f:56:01:f6:28:4f:e8:15:b8:d0:
6a:73:0f:87:c9:34:ef:ea:bf:d9:ca:08:cb:f1:f0:e2:6d:f8:
01:b9:4b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:19 2026 by rpki-client