
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft
File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json)
Hash identifier: M5LTZ1MQtF+iwHYQG1NCbdT+SZTr7l3tq4UReDQFlKI=
Subject key identifier: 85:73:1A:1B:97:31:60:DF:63:C2:37:38:71:34:38:A3:FC:C2:48:0E
Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24
Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24
Certificate serial: 07BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft
Manifest number: 07A4
Signing time: Wed 08 Jul 2026 22:23:11 +0000
Manifest this update: Wed 08 Jul 2026 22:23:10 +0000
Manifest next update: Wed 15 Jul 2026 22:23:10 +0000
Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: +jzgStI6ZQWO2/Jtgie3AT56KsIHyPU1sAkzL6BU/6Y=)
2: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: TFtBaz3XXYr53c4KFkqYw9OsCBY/VjjGiRVEIJaG+ss=)
3: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: v2YonyCo9R/dlcaHZ1jfDPJlrOShqZgPxJ5RkLy9g6I=)
4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: Uh0sBPuZpoy8sTTNiUroNOAmNS0FTfsDSQBW+NkNyHo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl
rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 22:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1981 (0x7bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916A314, serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24
Validity
Not Before: Jul 8 22:23:10 2026 GMT
Not After : Jul 15 22:23:10 2026 GMT
Subject: CN=6a4ecdcf-2872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:13:c6:c7:fd:64:8e:eb:a1:01:33:f9:68:bd:
42:86:3a:c4:e0:04:cc:ec:52:3b:b0:21:79:ff:5f:
4d:aa:17:7d:a1:10:ec:12:a6:db:7f:a8:a3:9f:7e:
b8:aa:10:5c:22:cf:07:90:5e:46:4f:84:c1:d2:82:
dd:bf:68:27:b1:86:f8:6e:fd:5c:9d:34:64:63:ac:
c4:31:14:ee:a9:c4:11:86:2f:80:09:f7:93:7c:ed:
b5:25:8d:26:7c:40:f7:be:46:a3:b5:5f:83:11:23:
3f:6c:17:2e:35:d3:f7:2e:7f:f6:b7:50:d7:18:3f:
8c:9e:e9:b0:e3:9b:76:ee:e7:93:06:b3:ff:bc:32:
5b:a8:6a:5b:2c:6e:00:ad:c6:12:78:32:25:ab:e6:
6c:05:b5:f1:e8:9d:06:ea:59:96:9b:f3:21:94:61:
a6:5d:38:75:37:c1:14:da:51:10:b1:61:a0:23:13:
03:b4:32:e0:f9:ff:f6:f7:f6:0d:dd:f3:a1:98:79:
9d:b9:57:67:19:ed:7e:e9:9a:9c:47:e5:32:c3:ab:
e1:1e:aa:ba:4b:e3:8d:17:50:c9:1f:50:92:79:22:
bc:a4:05:67:bc:fd:09:1b:6e:09:c8:7a:fa:72:06:
14:a3:6a:d1:37:b8:6f:a6:a1:81:ec:16:2c:fd:b2:
cc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:73:1A:1B:97:31:60:DF:63:C2:37:38:71:34:38:A3:FC:C2:48:0E
X509v3 Authority Key Identifier:
keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6a:0d:20:39:b2:e5:7c:1e:11:95:c8:00:b3:05:97:14:ea:
8c:8d:a1:8b:9b:cd:ee:da:85:92:c1:a6:c6:8d:58:db:42:88:
8e:b1:02:78:85:6a:62:04:8d:7e:f8:85:69:17:72:70:f6:5d:
9d:2d:76:3f:12:c1:10:6b:c4:d0:a5:a9:d3:bc:15:37:a6:28:
51:e8:7a:8f:ab:1e:c3:a4:0c:1e:79:3e:7b:de:13:df:16:2e:
e9:5f:03:6a:f0:51:7c:90:e9:4a:ad:01:db:89:e7:2b:00:ec:
8d:31:cc:60:2a:52:28:bf:b4:49:39:c2:58:f1:3e:aa:10:9d:
9d:b7:b6:4f:f9:47:0c:d9:aa:a5:a4:bd:cf:e5:67:18:1c:e8:
3b:07:7c:b2:3d:2d:0e:46:c2:8d:5a:49:80:a0:69:71:2e:5f:
14:4a:37:70:44:85:9d:47:ff:47:7e:ee:41:22:44:f5:de:33:
f9:0e:87:e4:e7:d7:6b:fb:f8:99:fb:ea:16:55:8c:5b:db:92:
f6:a6:24:74:94:7b:7a:28:d3:7d:df:55:fc:31:b8:b3:52:d4:
5f:42:0e:0b:2c:bc:f8:31:30:7a:29:1e:36:8d:a9:99:aa:ca:
10:13:c5:65:c4:30:9d:49:f7:d7:63:aa:97:5a:ee:08:68:e5:
03:25:11:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 11:05:37 2026 by rpki-client