
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
File: qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json)
Hash identifier: YHiMvosdyEgjI2hhDB/6obhPtr9lCqq1Ou4dRsALGR8=
Subject key identifier: 29:71:96:81:FC:7F:DA:D1:03:94:EA:73:5E:6F:CE:3B:35:FF:5E:3A
Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2
Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
Certificate serial: 02D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
Manifest number: 02C8
Signing time: Tue 07 Jul 2026 02:05:35 +0000
Manifest this update: Tue 07 Jul 2026 02:05:34 +0000
Manifest next update: Tue 14 Jul 2026 02:05:34 +0000
Files and hashes: 1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: QWnfGFT0ceix9VMjXJGa4nTaCJT0mWATUjDkwIwttPQ=)
2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: Ae2D09RrIAEsj2zD2tu6+cplYXPngj1cvZnsDaiUJHM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl
rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 02:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 724 (0x2d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
Validity
Not Before: Jul 7 02:05:34 2026 GMT
Not After : Jul 14 02:05:34 2026 GMT
Subject: CN=6a4c5eef-3c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a7:65:a6:b4:18:dd:a1:4a:b4:54:92:9e:21:
f7:11:56:54:26:a8:24:c3:4f:05:8f:a1:6f:7e:e4:
6d:9e:9b:ec:97:45:8f:ef:12:a1:74:53:0e:e9:06:
c4:b4:c7:98:aa:e7:4f:9f:51:9c:46:a5:c4:1e:85:
0d:a5:3b:27:95:ee:db:80:10:8a:be:2e:88:c9:ca:
75:a5:45:8a:97:35:81:69:a6:06:7d:39:25:3f:7e:
f0:cf:d4:aa:be:1f:ae:2a:7c:2e:7c:e7:73:e5:0f:
5d:22:cd:33:93:49:06:81:34:6d:29:09:da:3d:04:
9e:b4:0e:2b:06:d3:41:4b:0b:d0:77:12:32:0a:bc:
46:2c:e0:61:89:7c:83:44:4c:4f:d3:2d:66:5b:db:
07:78:87:95:7f:19:6c:25:d4:d7:00:41:a0:f5:d0:
1c:5f:4e:3c:02:3f:81:71:4a:e8:f0:b0:67:98:4c:
bc:1f:90:7e:0c:4b:33:ed:c7:aa:8b:e7:83:25:ec:
54:43:f9:1e:58:7e:84:6d:19:6e:ba:91:c1:66:5b:
01:e1:c4:a0:ad:e2:b9:af:4f:f0:08:da:15:91:3c:
1f:e2:ae:b5:e2:3c:94:cf:2c:49:88:d5:90:62:60:
00:2b:a8:13:e0:26:97:6c:ac:fc:b8:10:a9:f4:4a:
cf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:71:96:81:FC:7F:DA:D1:03:94:EA:73:5E:6F:CE:3B:35:FF:5E:3A
X509v3 Authority Key Identifier:
keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
05:de:ed:04:5c:af:36:73:47:5c:00:92:37:75:fe:6b:50:5b:
47:1e:d5:02:e2:95:42:0a:f1:58:2f:b7:60:06:3d:e9:44:89:
cc:aa:04:99:3d:08:6a:c5:fc:0d:67:6c:a4:3e:84:12:e1:cc:
0b:e8:a7:d7:b4:45:90:31:cc:d8:b8:4c:6d:3b:cf:bd:57:1a:
1a:35:b5:44:cd:16:30:cc:43:d9:67:51:c9:bb:d1:7b:19:cd:
60:82:bb:66:70:4d:e7:42:c8:80:b4:87:66:be:59:75:3e:cf:
80:dd:ca:d0:ef:aa:e9:4d:bf:3e:69:f3:06:74:e4:7c:0e:ad:
f4:d1:a5:30:21:f1:1d:38:02:49:e2:7d:88:9c:27:9d:72:de:
50:d3:e4:eb:ed:9e:1f:02:03:f4:16:cf:36:3c:44:e9:9c:6c:
79:cf:29:e3:f4:17:0c:bd:74:83:e1:38:c0:ed:5c:fe:62:ea:
ce:15:60:4d:c3:59:6f:55:0d:65:18:36:fb:bb:46:cf:fc:cc:
68:59:d3:76:53:40:35:a1:6a:12:c0:91:4d:ca:cd:fe:e2:90:
7f:db:04:8e:61:c7:3b:b7:44:47:90:fb:41:e0:c9:9c:71:19:
f7:7e:92:83:14:d1:33:20:e6:d1:19:9b:15:84:9c:18:9d:79:
67:4f:2d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 03:09:38 2026 by rpki-client