
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft
File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json)
Hash identifier: oGDts9pooG42e9XXc7wryZcU+iWbwEEMfpSN4U3AFJk=
Subject key identifier: B8:42:A1:43:FC:C6:9E:29:60:B3:9A:F9:FF:45:CE:DD:C8:F8:C9:D0
Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E
Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E
Certificate serial: 0BAE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft
Manifest number: 0B9D
Signing time: Sat 18 Jul 2026 19:16:33 +0000
Manifest this update: Sat 18 Jul 2026 19:16:33 +0000
Manifest next update: Sat 25 Jul 2026 19:16:33 +0000
Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: 0nk8ALRVGMx6OMbRCQCE5OuF9n3zxffU9bWFeIqabMI=)
2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: PPFiA6qNq6GDtkUBy0eT9Y5FpJTkF5X4pnd1msh8TAs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl
rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Jul 2026 19:16:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2990 (0xbae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E
Validity
Not Before: Jul 18 19:16:33 2026 GMT
Not After : Jul 25 19:16:33 2026 GMT
Subject: CN=6a5bd111-aaf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:80:b9:ab:74:4b:9e:cf:72:41:1b:ae:23:16:
de:3a:98:f0:c6:f0:e4:94:68:4f:97:0f:b5:a0:18:
1c:3d:2f:bb:24:cd:9c:13:de:60:4c:4b:c6:62:f1:
f8:48:09:94:14:23:67:23:57:30:d7:00:5a:51:e0:
36:70:f2:a0:3d:45:d1:cf:04:05:3c:38:16:bb:06:
38:42:37:5a:b6:64:af:d0:f1:23:be:f2:d7:9d:44:
4b:df:5a:85:29:0a:09:e6:c0:17:da:91:fc:9e:e4:
3f:6a:8b:e1:a3:34:10:5f:ec:fe:0f:c9:36:f5:82:
61:3f:3c:ee:a6:3f:05:73:7a:a0:3b:20:47:d1:87:
ac:2d:a4:2d:41:43:56:5f:61:94:18:19:41:6f:f9:
5d:50:8c:ee:a4:60:29:dd:c0:0b:e4:69:ac:93:28:
49:9f:a0:29:fe:6a:22:c0:2e:24:71:e4:ee:37:cd:
15:f1:71:16:03:ba:8f:53:c7:69:30:f5:ed:50:7e:
d5:92:a2:20:ef:d0:c5:d9:71:02:7d:3e:4d:10:ec:
3b:21:b1:16:5b:33:2d:0b:13:61:db:4e:ac:f5:32:
47:2b:02:64:10:48:9e:90:fc:69:5a:7d:52:ed:98:
9b:dc:6d:08:fd:13:da:85:ef:4c:be:57:6e:4e:af:
14:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:42:A1:43:FC:C6:9E:29:60:B3:9A:F9:FF:45:CE:DD:C8:F8:C9:D0
X509v3 Authority Key Identifier:
keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:a0:b2:a5:e6:a0:8b:2c:99:dd:98:04:7e:ff:d8:6e:e4:5a:
19:2d:80:10:6c:12:57:6e:ef:ce:0b:f8:16:6b:6e:cc:ef:a2:
b2:17:5f:b1:1d:b0:00:bd:44:80:50:77:17:d2:0b:91:ec:cb:
fa:d6:df:3f:ac:f5:ad:d3:68:24:f6:c3:0f:8f:af:7a:7d:5d:
9b:1f:c2:fe:9c:cf:4d:5e:da:89:2d:f9:66:19:e4:4a:bb:a0:
fd:76:e5:c2:ca:c7:f1:5d:f1:4f:09:e7:63:4c:7c:01:54:15:
12:61:ea:6c:fc:d8:ac:df:5f:01:65:12:40:cb:c9:3c:f2:9a:
fd:d5:8a:3a:85:ce:34:38:50:06:2d:66:0c:ba:d1:ae:1e:f0:
d0:8b:9a:55:3a:f8:68:d2:e1:1f:d9:af:0d:70:21:72:99:73:
d9:80:ab:b4:d8:24:29:2f:f8:3b:79:03:de:c8:f8:89:c5:ee:
8b:7a:f2:7c:ba:95:bb:c4:52:1b:cb:c3:89:72:81:b1:c6:f8:
e3:3c:26:c9:d0:bf:bd:bf:d8:01:b6:e2:bd:e7:09:d7:94:00:
ab:ea:62:1b:f1:ad:3f:62:d3:25:33:06:7a:e3:c4:e3:81:67:
84:cc:4d:0d:54:87:e1:51:ee:1a:50:38:f4:59:d4:bb:af:47:
3a:f4:22:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 09:54:01 2026 by rpki-client