
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft
File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json)
Hash identifier: 3HY1Bwqk4cDsvsPlmQqnIqLnjl8d3AdHB7WU8pzUgIs=
Subject key identifier: 3C:DF:0B:91:65:82:15:DE:A5:77:7F:01:D1:2E:9A:1C:19:FC:6E:AD
Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B
Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B
Certificate serial: 01DF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft
Manifest number: 01D5
Signing time: Fri 17 Jul 2026 04:40:18 +0000
Manifest this update: Fri 17 Jul 2026 04:40:17 +0000
Manifest next update: Fri 24 Jul 2026 04:40:17 +0000
Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: GgQuEeL4PaoAPpvjST54f3vXbhAH69tiL9VtjoELW7I=)
2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: 0+cim1nNJ/HzloRjHXoa1S1TFcu0JHUvJvdwHP5Hs9Y=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl
rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479 (0x1df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B
Validity
Not Before: Jul 17 04:40:17 2026 GMT
Not After : Jul 24 04:40:17 2026 GMT
Subject: CN=6a59b232-de9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:66:d0:82:bd:6a:e8:0a:30:ec:b4:ba:7b:99:
43:d3:84:59:87:13:36:e1:68:54:37:17:fc:75:be:
a5:c0:d4:79:a2:0b:e7:4f:9f:7e:da:02:80:fa:15:
b0:5c:a4:00:35:a5:e0:a8:0e:fb:a1:30:54:71:06:
b2:a3:a2:95:c0:4a:c5:fb:db:77:70:a1:a4:ab:b5:
1c:07:97:09:eb:fb:24:16:8a:df:8a:be:16:53:d9:
60:22:93:2a:39:0a:04:25:bb:03:69:b4:85:8d:98:
11:b4:4e:de:8b:b0:b3:13:78:ff:10:3b:0a:0f:ae:
2a:cd:07:bd:ab:4e:21:3f:80:3f:33:5f:69:2d:24:
6a:cc:e8:6b:fb:3d:18:e7:fc:ab:ec:16:ac:41:97:
db:22:57:49:1b:ce:b0:15:c9:97:ea:bd:b9:48:b2:
d6:ed:08:08:44:23:cd:1b:46:16:e4:9c:34:1b:04:
65:33:4a:ba:e7:53:7d:89:65:d7:60:a5:dd:c6:a2:
42:f7:57:ca:15:51:61:cb:bd:b8:2c:d2:f3:b7:ba:
41:5d:33:57:01:6b:b8:fc:93:db:f3:1d:c0:3b:ef:
40:b7:75:a9:0c:ed:6c:60:88:1b:32:f2:41:c2:c7:
f3:78:5b:e7:20:1d:99:9d:59:9d:18:92:b8:be:9c:
9d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DF:0B:91:65:82:15:DE:A5:77:7F:01:D1:2E:9A:1C:19:FC:6E:AD
X509v3 Authority Key Identifier:
keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
54:25:a6:ed:6e:40:fb:0d:32:e3:36:b7:f9:f3:6f:c9:64:60:
62:48:f5:f0:1a:72:d4:be:02:67:bb:10:1f:32:14:b8:4f:51:
c6:fa:2a:02:24:35:44:23:53:17:f1:a0:26:e0:18:08:0a:aa:
eb:fc:6e:98:e1:50:98:a0:29:5b:8b:90:a8:2b:21:f7:97:00:
d5:e7:af:71:2f:5a:24:79:11:f4:b2:37:16:17:76:30:9f:cd:
68:cc:58:d3:c6:4c:72:25:36:f2:d7:75:0e:bc:39:05:26:d6:
ef:28:60:22:79:59:78:83:70:c0:87:8c:9e:eb:f8:9b:ef:01:
6e:90:f2:50:18:72:1b:f9:fe:5b:ae:db:5e:a5:29:ce:47:29:
6b:29:a3:d1:ba:8f:7c:2c:d6:46:cf:fe:ed:5a:08:5e:39:0e:
5e:3e:99:1b:58:ac:72:36:98:36:18:26:34:e2:4d:86:49:b6:
e6:41:81:2c:96:d3:f0:48:e9:1e:ac:5a:b4:7b:70:95:26:11:
1f:e6:61:b5:89:d6:5b:85:05:81:6f:b8:12:f9:19:70:ec:b5:
ba:4e:48:cf:a3:04:af:0b:0b:9e:db:fe:2d:3e:5f:32:1c:2d:
76:6f:8a:f2:f0:31:5a:b8:73:d5:c2:2b:8d:b0:96:22:e6:85:
24:9b:24:a2
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0
NTNBNjZGMUIwHhcNMjYwNzE3MDQ0MDE3WhcNMjYwNzI0MDQ0MDE3WjAYMRYwFAYD
VQQDEw02YTU5YjIzMi1kZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAjmbQgr1q6Aow7LS6e5lD04RZhxM24WhUNxf8db6lwNR5ogvnT59+2gKA+hWw
XKQANaXgqA77oTBUcQayo6KVwErF+9t3cKGkq7UcB5cJ6/skForfir4WU9lgIpMq
OQoEJbsDabSFjZgRtE7ei7CzE3j/EDsKD64qzQe9q04hP4A/M19pLSRqzOhr+z0Y
5/yr7BasQZfbIldJG86wFcmX6r25SLLW7QgIRCPNG0YW5Jw0GwRlM0q651N9iWXX
YKXdxqJC91fKFVFhy724LNLzt7pBXTNXAWu4/JPb8x3AO+9At3WpDO1sYIgbMvJB
wsfzeFvnIB2ZnVmdGJK4vpydAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDzfC5Fl
ghXepXd/AdEumhwZ/G6tMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD
MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i
eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh
VGVPWndGTFRqQnRGT21ieHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAVCWm7W5A+w0y4za3+fNvyWRgYkj18Bpy1L4CZ7sQHzIUuE9RxvoqAiQ1RCNT
F/GgJuAYCAqq6/xumOFQmKApW4uQqCsh95cA1eevcS9aJHkR9LI3Fhd2MJ/NaMxY
08ZMciU28td1Drw5BSbW7yhgInlZeINwwIeMnuv4m+8BbpDyUBhyG/n+W67bXqUp
zkcpaymj0bqPfCzWRs/+7VoIXjkOXj6ZG1iscjaYNhgmNOJNhkm25kGBLJbT8Ejp
HqxatHtwlSYRH+ZhtYnWW4UFgW+4EvkZcOy1uk5Iz6MErwsLntv+LT5fMhwtdm+K
8vAxWrhz1cIrjbCWIuaFJJskog==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:00 2026 by rpki-client