
$ rpki-client -vvf rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft
File: rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft (raw, json)
Hash identifier: KX/VLVQ7puzqoXZvYKAYV05bOtX8KcrFcRRwrZ6slYc=
Subject key identifier: 3A:1B:42:04:41:3D:F1:D4:5A:8A:1F:CE:16:23:2F:1C:76:DB:99:76
Authority key identifier: AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0
Certificate issuer: /CN=A917799C/serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0
Certificate serial: CF
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft
Manifest number: CA
Signing time: Fri 17 Jul 2026 08:03:22 +0000
Manifest this update: Fri 17 Jul 2026 08:03:21 +0000
Manifest next update: Fri 24 Jul 2026 08:03:21 +0000
Files and hashes: 1: rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl (hash: ZHjbPt/h2CtJMM0KUEOu9Ey3+Lt4QQzzub0jAyoPuWI=)
2: 1A10CA38554511F0BE9D290EC4F9AE02.roa (hash: keWoR6Hyq0x5/4XbMYXw5aujAnOEsemIs8ZNPQolFKs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl
rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:03:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207 (0xcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917799C, serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0
Validity
Not Before: Jul 17 08:03:21 2026 GMT
Not After : Jul 24 08:03:21 2026 GMT
Subject: CN=6a59e1ca-49b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:ac:25:5d:aa:34:9d:9d:d3:54:4f:c3:06:
8e:08:00:c9:15:11:0d:88:5f:84:68:ec:0c:76:ea:
f1:3f:b9:5a:49:cb:ca:24:f4:b9:ae:f2:1f:df:1a:
b8:f9:5b:4a:c1:f1:9d:2d:ae:68:dd:e0:8a:55:69:
6a:a5:b9:55:51:48:a5:b3:6c:ec:a8:ec:ec:7b:4e:
58:95:cc:48:68:63:d1:d5:71:6d:45:2f:78:16:e3:
2c:4c:88:ab:c1:e6:d2:a7:e6:b0:a0:a1:14:ac:4a:
9d:ca:8d:7f:78:e3:20:ae:27:c2:cf:20:03:cc:36:
66:8a:1b:c9:95:62:57:82:3a:0b:01:c9:33:9d:d2:
7c:e7:8c:40:13:28:85:0e:e9:7c:7b:56:64:b4:e5:
5d:a7:e7:0d:29:d2:0d:40:c9:db:fc:c4:08:95:83:
73:f2:3f:a4:1b:4b:e6:ca:6e:cf:40:f0:32:50:59:
d6:db:0d:f5:8b:60:f8:5b:25:73:14:a4:a1:e6:81:
31:42:f3:68:50:64:62:00:1a:65:e3:57:9e:77:4b:
07:c4:db:81:f7:3c:06:e0:b3:51:db:4b:13:56:77:
01:ac:fd:65:d1:fc:05:5d:e9:99:7d:86:d8:21:60:
b3:7c:19:52:90:6b:11:3a:b7:bc:46:d0:89:23:92:
ee:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:1B:42:04:41:3D:F1:D4:5A:8A:1F:CE:16:23:2F:1C:76:DB:99:76
X509v3 Authority Key Identifier:
keyid:AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1d:88:f9:f0:04:f9:af:af:41:a2:dc:ce:e6:f7:03:f0:76:34:
05:6c:d0:b5:fb:79:ba:20:69:d3:c9:6e:64:8a:d7:4d:68:f0:
24:5a:e2:de:40:a6:67:94:9d:2f:43:64:fc:a4:e1:4d:86:26:
06:47:b4:6d:7d:10:91:d8:97:fa:bd:f9:4b:c7:09:ab:e6:3b:
97:56:f8:8d:f9:13:87:98:4b:01:17:70:17:8d:e4:42:fb:e8:
3d:40:89:11:f2:24:01:bf:8e:99:ed:aa:42:08:d9:99:a7:69:
72:a8:af:a9:af:ef:d1:c0:f2:72:32:38:78:d0:23:0c:f5:58:
bf:f9:33:55:05:7f:7f:7e:73:91:e7:12:13:23:2c:ee:1f:eb:
5b:f5:ac:f0:82:27:bc:4d:89:17:1a:66:6e:8b:a3:a7:66:d3:
52:02:28:1b:46:27:cf:0e:28:f4:d8:af:54:f2:a1:19:dc:57:
97:bc:99:84:ea:8d:a9:87:77:c8:fa:2a:e7:13:b1:a0:f2:22:
bc:5f:1c:a9:8a:01:3d:6a:15:e2:22:d7:b1:cc:99:72:44:d7:
40:44:31:9e:00:70:ef:f1:c9:46:19:f3:dc:56:2c:9a:14:4f:
f3:c5:8a:ba:4a:93:a4:d3:93:d0:ed:3a:f7:65:eb:a4:75:bc:
73:c6:20:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:48 2026 by rpki-client