
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json)
Hash identifier: 01BRLdCyArGudyrjoBr62oZYgjZK2HddsgwME1L3b3U=
Subject key identifier: 78:BF:A3:A9:34:0E:A4:CA:C9:FD:A5:42:52:22:DE:F4:3E:39:74:C5
Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED
Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED
Certificate serial: 0570
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
Manifest number: 054E
Signing time: Sat 04 Jul 2026 23:49:40 +0000
Manifest this update: Sat 04 Jul 2026 23:49:40 +0000
Manifest next update: Sat 11 Jul 2026 23:49:40 +0000
Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: fsFqD2Uo0wQqiL4nNSfiz3TI8ApnwthrjwrGVAgKkGw=)
2: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: zOR5TgVBsSHkOmvQ/lOL+jCdE7mO8zRHpP652KPFcEI=)
3: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 6VGJIXHJFD6gG6e/bpw0km40IC6Vms57Pyehvnv97As=)
4: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: 3Nz0u0qKawbNn//HDkZr80q3+/OhbNMzbbOUzKEulCE=)
5: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: qtZVADdmFN9d5j6ch3m5PUYodnBui2LsIftYffK0ss4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl
rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 23:49:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1392 (0x570)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED
Validity
Not Before: Jul 4 23:49:40 2026 GMT
Not After : Jul 11 23:49:40 2026 GMT
Subject: CN=6a499c14-cd02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:51:f3:1e:b7:da:99:55:b8:dc:a5:39:a2:
ce:07:4a:31:ab:d7:19:3d:07:ce:2d:fa:6d:ab:ca:
f2:1e:d0:9e:55:29:62:0d:1d:db:99:94:f2:37:bf:
cd:25:26:90:d2:0e:57:85:bd:a9:7c:5f:51:b1:15:
8c:a0:0b:e1:31:27:94:cc:2f:de:52:6c:06:e5:fb:
bc:8d:52:d9:f4:17:68:c7:e9:64:8a:3e:7b:eb:77:
94:7c:5e:51:af:e3:d7:12:28:e1:10:e6:02:56:55:
f4:bd:d2:e0:6d:f1:9f:4b:35:a6:66:a4:14:e9:85:
85:ed:23:29:5f:88:f5:9d:ad:98:3c:c7:1f:00:60:
64:00:89:90:b2:cf:b8:6e:09:f4:86:88:c6:dc:72:
74:ab:37:ea:dc:21:a7:9f:d5:14:d9:22:11:aa:f3:
46:86:68:a5:c1:91:10:8a:04:84:64:78:f0:64:4f:
7c:66:90:2e:f2:7c:cb:ab:31:c1:c5:79:a2:c3:3a:
09:5f:ce:1e:5c:bb:89:80:26:b6:c2:e6:e7:be:7c:
84:95:25:c5:3f:d5:3c:5e:c9:81:b6:4f:ac:a1:80:
e9:03:83:3d:75:a9:b9:6e:ce:43:07:46:b7:67:79:
30:a8:b6:12:65:63:c3:00:31:3b:db:19:f0:da:70:
38:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:BF:A3:A9:34:0E:A4:CA:C9:FD:A5:42:52:22:DE:F4:3E:39:74:C5
X509v3 Authority Key Identifier:
keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:20:32:eb:4b:5c:53:5a:94:d5:68:0c:a8:05:a7:35:ac:df:
db:05:7c:a2:fa:19:99:4d:3b:95:06:e7:0b:8c:b7:42:c6:eb:
fe:13:26:ce:8d:ca:47:1f:cf:eb:7f:37:a0:16:a9:b2:68:cb:
ee:04:9f:37:c3:25:65:39:2b:1d:ed:26:60:e0:f2:1b:66:64:
12:4c:aa:ff:91:d1:b2:0f:5c:96:fc:3e:81:88:41:4e:f4:cb:
3d:ea:c7:42:c6:cf:7c:63:90:28:0b:a3:f7:7b:01:85:8b:da:
e2:b9:1f:8c:27:29:94:fc:fe:ea:55:7d:c3:b3:bb:a1:63:4c:
ef:d2:96:02:b1:4f:ca:06:8c:bb:ed:e7:37:b9:d2:ad:d4:d1:
9c:ec:5b:80:1c:57:59:34:fc:ab:c8:f6:7f:25:11:16:18:4c:
c8:9f:ce:c8:5d:b8:1b:7a:79:d5:8c:0d:01:4d:2f:bc:3a:04:
9a:76:74:f4:98:d7:28:58:aa:e7:89:da:7f:ad:75:95:95:70:
9b:2f:b1:d8:06:5f:81:ad:aa:6a:d4:f9:d7:7f:65:c3:29:d6:
4f:0a:e5:13:39:e2:73:be:a3:d0:e3:33:f6:a8:73:da:ba:ca:
5d:29:17:94:03:ec:d2:10:32:a4:5a:1b:e7:46:00:c2:99:98:
bc:68:db:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:14:01 2026 by rpki-client