
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
File: 3FejmXtffOj7ybTZiz1F1jMHcRg.mft (raw, json)
Hash identifier: ZdZh6sDOL/X9kaKIVPzDr5eehTu7rBEH2qxztFrDY8c=
Subject key identifier: EC:33:63:09:95:AB:67:1B:59:49:94:C9:B4:9C:B6:F6:54:53:12:3E
Authority key identifier: DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18
Certificate issuer: /CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118
Certificate serial: 0CF2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
Manifest number: 0CE8
Signing time: Thu 16 Jul 2026 18:33:05 +0000
Manifest this update: Thu 16 Jul 2026 18:33:05 +0000
Manifest next update: Thu 23 Jul 2026 18:33:05 +0000
Files and hashes: 1: 3FejmXtffOj7ybTZiz1F1jMHcRg.crl (hash: kGY0rasSABT1hIHukOd17ht5Jy6y5ZVid11zJpguUt8=)
2: 17BA5658D1FA11EDA0A31C2FC4F9AE02.roa (hash: STCKrvlRsuBwgCCitF/41y1bZsQULp/xbRwSRQTsp2k=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl
rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 18:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3314 (0xcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917CABB, serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118
Validity
Not Before: Jul 16 18:33:05 2026 GMT
Not After : Jul 23 18:33:05 2026 GMT
Subject: CN=6a5923e1-1685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ee:d9:1f:c0:8a:c7:2f:8f:20:44:5f:cf:d8:
20:f1:bb:83:da:6e:26:34:6a:cb:10:de:7a:4a:9e:
60:bd:49:0c:68:98:42:aa:c2:2b:27:a1:e5:aa:cb:
b5:b3:cf:43:29:7c:81:3f:3b:61:0e:33:42:42:b2:
06:e5:0f:72:47:ee:b4:41:9b:a3:50:b8:6d:6b:03:
08:42:a4:89:38:67:41:24:3e:ec:34:9a:1b:49:43:
f4:00:26:ec:b9:e6:ac:53:e8:7e:7f:0a:83:c2:dd:
e3:62:a3:c3:c6:5e:f7:27:23:3a:2f:0f:35:ea:f6:
9b:2c:ea:b6:e1:93:10:21:1b:51:c0:32:7f:ed:cf:
f1:fb:c9:45:96:01:7e:84:99:6e:2b:92:85:bd:f0:
4e:c6:bc:b2:03:be:db:5a:de:e2:9d:c7:0e:b6:34:
c3:58:01:60:91:b9:3b:39:01:73:bf:15:b8:58:80:
b7:13:b2:fd:ac:5a:1f:1d:72:e4:1c:b2:99:bb:7b:
b2:45:22:ff:75:92:e6:54:6c:1d:7d:73:5a:1d:55:
e4:df:71:b1:21:91:2c:e6:c7:a4:84:32:67:67:11:
39:c8:1a:8d:f6:b0:f2:be:1b:e0:72:10:95:d2:c7:
6c:2f:a9:fe:39:2c:26:f8:aa:ea:97:d2:f0:e7:da:
f0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:33:63:09:95:AB:67:1B:59:49:94:C9:B4:9C:B6:F6:54:53:12:3E
X509v3 Authority Key Identifier:
keyid:DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
38:16:83:6b:63:8e:1b:df:fd:8c:1e:3e:ad:38:3f:3d:1d:09:
d4:83:11:fb:2f:75:dc:53:9b:09:ef:5d:1f:ee:fd:a6:88:b4:
f6:68:15:f3:41:e9:d5:75:13:01:cb:e5:b9:06:3c:5a:29:89:
88:ce:74:ef:db:05:56:08:fa:d0:ed:27:4d:42:0a:c4:8e:d3:
c1:db:10:76:ff:d8:ed:49:f2:68:19:ff:02:d3:53:aa:d8:1b:
3d:c2:6d:32:34:63:ba:e3:c4:b5:3d:7c:1f:63:13:20:69:3c:
a5:09:05:58:3a:ee:23:18:ba:86:3a:0b:8d:3f:f0:db:dc:aa:
6a:43:d6:57:88:9b:60:04:3a:44:14:b0:f5:bc:76:ee:8b:bf:
b1:ab:7a:1f:90:8f:e2:d9:24:3d:6c:d1:00:9e:54:84:a7:01:
bc:bb:41:36:20:7c:93:37:de:fb:38:fc:03:c6:85:82:95:d0:
c0:54:d1:4b:55:fc:e9:ba:f7:1f:f0:d4:7b:94:be:14:0c:41:
e2:e3:33:28:5a:16:3c:b8:02:47:a8:1e:d9:d9:f8:fa:0d:39:
3c:80:0d:75:61:25:fc:92:92:09:09:49:1a:fd:91:db:97:82:
51:df:a4:c9:a8:5a:df:8d:7f:d4:6b:1c:45:58:6a:f2:84:63:
01:56:c1:1b
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0NBQkIxMTAvBgNVBAUTKERDNTdBMzk5N0I1RjdDRThGQkM5QjREOThCM0Q0NUQ2
MzMwNzcxMTgwHhcNMjYwNzE2MTgzMzA1WhcNMjYwNzIzMTgzMzA1WjAYMRYwFAYD
VQQDEw02YTU5MjNlMS0xNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAou7ZH8CKxy+PIERfz9gg8buD2m4mNGrLEN56Sp5gvUkMaJhCqsIrJ6Hlqsu1
s89DKXyBPzthDjNCQrIG5Q9yR+60QZujULhtawMIQqSJOGdBJD7sNJobSUP0ACbs
ueasU+h+fwqDwt3jYqPDxl73JyM6Lw816vabLOq24ZMQIRtRwDJ/7c/x+8lFlgF+
hJluK5KFvfBOxryyA77bWt7inccOtjTDWAFgkbk7OQFzvxW4WIC3E7L9rFofHXLk
HLKZu3uyRSL/dZLmVGwdfXNaHVXk33GxIZEs5sekhDJnZxE5yBqN9rDyvhvgchCV
0sdsL6n+OSwm+Krql9Lw59rwCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOwzYwmV
q2cbWUmUybSctvZUUxI+MB8GA1UdIwQYMBaAFNxXo5l7X3zo+8m02Ys9RdYzB3EY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0FCQi8wNzY3NUYxRTBG
NjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZPajd5YlRaaXoxRjFqTUhj
UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzNGZWptWHRmZk9qN3liVFppejFGMWpNSGNSZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
Q0FCQi8wNzY3NUYxRTBGNjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZP
ajd5YlRaaXoxRjFqTUhjUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAOBaDa2OOG9/9jB4+rTg/PR0J1IMR+y913FObCe9dH+79poi09mgV80Hp1XUT
AcvluQY8WimJiM5079sFVgj60O0nTUIKxI7TwdsQdv/Y7UnyaBn/AtNTqtgbPcJt
MjRjuuPEtT18H2MTIGk8pQkFWDruIxi6hjoLjT/w29yqakPWV4ibYAQ6RBSw9bx2
7ou/sat6H5CP4tkkPWzRAJ5UhKcBvLtBNiB8kzfe+zj8A8aFgpXQwFTRS1X86br3
H/DUe5S+FAxB4uMzKFoWPLgCR6ge2dn4+g05PIANdWEl/JKSCQlJGv2R25eCUd+k
yaha341/1GscRVhq8oRjAVbBGw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 08:13:37 2026 by rpki-client