
$ rpki-client -vvf rpki.apnic.net/member_repository/A917286F/14272A8C53BD11F1B6592A56B9833773/h2Q49-A2DORsAHz91IHDH05WCHs.mft
File: h2Q49-A2DORsAHz91IHDH05WCHs.mft (raw, json)
Hash identifier: f2DnhV68CDToIpr3RSs/il4QIaw5WV93C1B0vq8qMRE=
Subject key identifier: 1F:B1:32:E8:AB:17:9E:6F:59:DE:3A:B1:43:12:CE:F8:7C:14:F5:4B
Authority key identifier: 87:64:38:F7:E0:36:0C:E4:6C:00:7C:FD:D4:81:C3:1F:4E:56:08:7B
Certificate issuer: /CN=A917286F/serialNumber=876438F7E0360CE46C007CFDD481C31F4E56087B
Certificate serial: 20
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2Q49-A2DORsAHz91IHDH05WCHs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917286F/14272A8C53BD11F1B6592A56B9833773/h2Q49-A2DORsAHz91IHDH05WCHs.mft
Manifest number: 1F
Signing time: Fri 17 Jul 2026 10:14:31 +0000
Manifest this update: Fri 17 Jul 2026 10:14:30 +0000
Manifest next update: Fri 24 Jul 2026 10:14:30 +0000
Files and hashes: 1: h2Q49-A2DORsAHz91IHDH05WCHs.crl (hash: ntskBJED5XDiXqgOsveY+i+U8Z4kTTx2LrGMcrJ1cDY=)
2: 5257F21E53C211F19F1FA923BC833773.roa (hash: CKg/cSeBRG6ufQaILezJ2kDTbCeuVdt5eddE5iZ+RX0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917286F/14272A8C53BD11F1B6592A56B9833773/h2Q49-A2DORsAHz91IHDH05WCHs.crl
rsync://rpki.apnic.net/member_repository/A917286F/14272A8C53BD11F1B6592A56B9833773/h2Q49-A2DORsAHz91IHDH05WCHs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2Q49-A2DORsAHz91IHDH05WCHs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 10:14:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917286F, serialNumber=876438F7E0360CE46C007CFDD481C31F4E56087B
Validity
Not Before: Jul 17 10:14:30 2026 GMT
Not After : Jul 24 10:14:30 2026 GMT
Subject: CN=6a5a0087-131d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ba:f2:02:70:65:42:62:33:0f:66:b4:24:d5:
8d:84:33:a5:dd:e2:cb:54:a9:9c:17:f5:c3:95:96:
56:88:40:0f:c8:9c:75:7d:19:b5:f9:b2:45:a7:cf:
99:ea:bb:5c:e0:c5:f1:7e:cd:b4:d9:ed:5a:0e:5d:
0c:03:d9:9c:c0:75:75:f6:a6:c2:b5:c4:28:39:2e:
54:58:56:f5:fd:f6:3c:c4:dd:44:ca:9e:77:51:1d:
4e:dd:92:06:09:a1:e3:84:80:a5:1a:18:d0:8d:19:
5c:23:c5:e5:5e:cd:de:e9:c8:d9:a5:39:14:0a:45:
0a:03:92:06:de:e1:ce:55:a8:8c:14:45:e0:6f:0e:
c7:88:0d:c1:3d:e0:9a:4e:f3:c4:b2:4f:9e:8b:de:
3b:55:70:d3:b8:1a:b7:00:7a:7b:0d:8d:17:90:31:
45:7a:52:2d:b9:0d:a2:d3:8c:a4:99:16:a6:44:e9:
b8:40:4d:e4:fb:c7:a3:c5:dc:73:5f:2d:76:4a:22:
64:30:a3:c1:0c:53:dd:34:c1:c2:26:0e:62:3a:8f:
a4:17:d4:57:67:ed:79:41:d3:06:0c:1e:50:3e:8b:
d9:62:ef:47:bb:1a:a4:e9:2f:55:bf:d8:dd:53:3d:
58:d1:33:31:8e:c7:4d:b0:49:d5:f9:65:69:72:f4:
41:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B1:32:E8:AB:17:9E:6F:59:DE:3A:B1:43:12:CE:F8:7C:14:F5:4B
X509v3 Authority Key Identifier:
keyid:87:64:38:F7:E0:36:0C:E4:6C:00:7C:FD:D4:81:C3:1F:4E:56:08:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917286F/14272A8C53BD11F1B6592A56B9833773/h2Q49-A2DORsAHz91IHDH05WCHs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2Q49-A2DORsAHz91IHDH05WCHs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917286F/14272A8C53BD11F1B6592A56B9833773/h2Q49-A2DORsAHz91IHDH05WCHs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
77:4d:9c:21:3c:f5:75:d8:d2:ca:67:fb:6f:1b:22:8f:cf:bd:
1e:51:7f:37:e5:4f:04:02:6f:e6:0f:99:7b:27:9e:94:e2:f3:
bb:de:0f:8b:07:15:43:02:8f:e8:cd:cb:f4:a6:84:36:dc:04:
11:27:78:7f:1e:c7:4a:5b:45:11:3e:f0:3a:be:81:50:a2:e4:
88:38:c8:91:b1:78:0a:cb:f0:f1:90:08:ef:ca:aa:67:94:8d:
be:7c:e0:3b:ff:78:5c:b7:bb:54:35:58:c2:d7:5d:b5:8e:f9:
0e:4b:26:14:7b:ed:10:fd:37:96:90:a0:28:e6:51:44:1f:dd:
9d:de:5d:f6:9a:6e:ac:8a:26:b0:25:9b:1a:e2:08:10:76:cc:
ff:7a:4c:7f:b2:82:b5:a4:71:b8:ac:0b:a2:42:d9:0b:d6:31:
46:66:61:f8:78:c6:c3:fe:94:6a:80:2a:de:2f:f9:14:c4:ef:
1d:dc:1b:4f:10:45:b9:e1:a1:9b:c8:a9:ed:17:e2:9a:da:d3:
c3:30:3d:ea:09:3b:72:3f:54:18:f7:14:ad:b9:63:2f:22:1e:
a4:76:84:9d:50:ec:6a:b9:33:44:81:cd:69:62:44:4d:ec:23:
22:45:0f:7b:50:af:56:12:03:53:09:e8:91:d9:49:89:94:9b:
0e:bf:cc:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:56 2026 by rpki-client