
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json)
Hash identifier: +x5Lf+Grtn3NWKnXtXMaqlUAbxEJMEfsz5LyGXycZOU=
Subject key identifier: F2:02:4D:E5:4D:C2:89:82:15:92:68:53:07:E3:BB:C8:01:C7:52:06
Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3
Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3
Certificate serial: 01D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
Manifest number: 01CF
Signing time: Fri 17 Jul 2026 04:43:06 +0000
Manifest this update: Fri 17 Jul 2026 04:43:06 +0000
Manifest next update: Fri 24 Jul 2026 04:43:06 +0000
Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: xTGL/31mbDQtb0/hGNrnxbC0KsuRv/szEOCPvZUbfDE=)
2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: w85ShfVmSSazA40BnYySK0taMWm3Jht1Z+WUVvSZtWM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl
rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 04:43:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 467 (0x1d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3
Validity
Not Before: Jul 17 04:43:06 2026 GMT
Not After : Jul 24 04:43:06 2026 GMT
Subject: CN=6a59b2da-2f37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b9:cd:29:b2:c9:58:a0:9e:cc:7a:9a:3b:a2:
9c:ec:a1:78:4a:26:c6:b0:f2:44:76:87:65:f2:a4:
7b:f0:4f:b0:27:12:26:46:80:cb:94:a3:4b:69:fe:
54:4f:7d:46:e8:b9:4d:cc:f2:40:27:9f:05:14:1f:
c0:6d:98:eb:86:59:99:31:62:ee:6c:ab:1d:00:06:
74:2b:b9:d2:ce:87:80:90:2d:05:e0:5b:fd:1c:4b:
9c:c4:d1:91:78:d3:44:a4:20:65:41:78:f1:eb:9a:
7b:c1:bd:bb:f5:63:80:df:21:8c:d6:ad:21:40:55:
2f:e5:c0:90:ac:da:47:66:c8:d3:38:be:d6:64:77:
07:00:6e:7d:43:eb:ef:29:1d:44:aa:af:e9:aa:c3:
a0:fa:6a:5f:cb:95:19:a5:fe:f5:34:e8:78:11:93:
74:9b:d8:aa:41:2b:dd:c1:77:63:21:4e:f0:36:dd:
63:bf:9e:9c:4a:df:f7:70:22:8f:21:34:de:0a:37:
d1:9b:a2:a9:ab:c7:9d:14:30:ec:42:e1:71:e0:49:
d4:43:97:c2:78:e0:83:d9:88:2b:63:0c:33:ae:65:
83:87:a7:36:d9:af:26:53:fd:1b:89:b0:f6:b2:27:
a9:25:71:27:e2:bc:65:9f:ce:81:d1:a5:36:cc:c0:
e5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:02:4D:E5:4D:C2:89:82:15:92:68:53:07:E3:BB:C8:01:C7:52:06
X509v3 Authority Key Identifier:
keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:b1:8d:ff:f4:b7:a9:b4:fa:0b:2d:5f:2f:79:7a:bd:53:ab:
e3:46:fe:61:7c:d2:43:f2:df:cf:bc:0d:79:d1:f5:12:92:78:
44:3a:3b:b3:40:aa:74:d2:ac:2a:d9:02:6c:8b:60:7d:b0:a8:
81:df:26:be:79:12:08:69:f4:61:11:d8:a4:e1:4c:92:db:38:
ea:f3:f2:a3:43:32:a9:fc:a1:6d:10:5e:83:97:dd:83:bd:9b:
84:40:3f:b1:0d:58:3b:d3:a4:3a:f3:4d:14:4e:3c:f8:e8:93:
94:7b:9b:a1:06:c5:5d:dc:3c:d6:32:79:dd:1c:a1:a0:b6:91:
bc:e5:43:a9:b7:9c:7f:c9:83:71:fc:17:3d:fb:26:bc:2d:78:
5c:df:e8:ed:01:64:8b:20:fe:72:d6:42:7b:df:78:86:24:79:
ee:a7:03:fa:d8:db:3a:e4:80:e2:2f:4b:af:54:92:c1:a1:ad:
8c:b8:4a:68:1a:e2:76:4d:01:0f:27:e5:2f:76:a9:e7:e4:b7:
93:e7:cd:41:63:92:e7:e8:87:8a:b5:0d:08:a2:be:4c:4d:2f:
cd:77:bc:ae:19:97:9f:35:e5:dd:5f:f5:00:71:43:a4:be:49:
10:89:3e:91:88:fb:7b:12:0d:f9:f3:e0:c7:37:31:f2:0b:4b:
0d:3d:8c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:31:30 2026 by rpki-client