
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft
File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json)
Hash identifier: Eucma0GUQuCU8u+9PCudcZi2qQ6ehwq8FZFXmCeqiIs=
Subject key identifier: 6A:ED:42:D0:45:A8:F1:38:70:4C:89:3E:DF:5C:12:E3:BE:C8:F3:28
Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A
Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A
Certificate serial: 03E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft
Manifest number: 03D4
Signing time: Sun 05 Jul 2026 00:59:06 +0000
Manifest this update: Sun 05 Jul 2026 00:59:06 +0000
Manifest next update: Sun 12 Jul 2026 00:59:06 +0000
Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: 1xVb5FG55a1SNXSZhIy6jFtLZ8xtABsJu0+bA03iQTI=)
2: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: elymg/oKLo36bQB76f3/BjLy1dUOOeqORBslgCNGm4w=)
3: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: PpySkmXHDFAMdn8q7qJMbkbAjwFyZ6Dte8VkGbnBdUI=)
4: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: VgHpUmv5XapUWkoHMwq6CHIEaAxNeoc/taSmWAxGkC4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl
rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:59:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 999 (0x3e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A
Validity
Not Before: Jul 5 00:59:06 2026 GMT
Not After : Jul 12 00:59:06 2026 GMT
Subject: CN=6a49ac5a-3982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:62:9f:c8:c7:20:02:7f:9d:cb:3f:a9:a2:87:
2f:1b:6e:8a:2b:42:5b:7c:15:ed:13:d2:58:36:e2:
9e:15:34:64:80:fa:d8:39:85:90:75:b2:2e:90:7b:
4a:d0:36:1a:42:e7:99:06:5f:fa:b9:a2:2f:10:bd:
f1:48:e4:d6:6d:ac:4d:ee:5a:6e:3e:75:6f:4d:6d:
9a:d9:07:b8:b1:98:d6:de:cb:7a:1f:c9:58:da:53:
31:c2:fd:02:4a:b0:34:99:30:34:68:ce:98:e0:22:
b2:a0:f5:b3:eb:44:98:b9:8f:7c:1c:12:2b:a0:17:
91:cd:fa:97:ea:ee:b7:c1:00:58:ee:99:9d:58:20:
21:9b:c8:6e:ae:8c:d0:9f:34:e1:ff:2d:26:5c:69:
3f:28:28:9f:e1:96:95:53:9c:d7:0d:9e:2b:a5:89:
7f:46:e8:de:fd:76:46:8f:87:d1:e3:3e:1c:ad:9f:
a0:5c:d8:01:24:61:65:0b:39:98:a1:54:4b:7c:b9:
17:20:ab:4a:f6:11:29:b2:29:4e:68:35:1e:4e:57:
8d:ac:66:7b:1f:69:c2:e9:f7:53:4f:d5:18:27:bb:
3c:de:b5:ef:fb:e7:81:1c:8f:f2:61:a7:0c:2e:fd:
0b:ea:44:ce:f3:b7:01:32:e8:d4:fc:d6:59:fb:25:
3e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:ED:42:D0:45:A8:F1:38:70:4C:89:3E:DF:5C:12:E3:BE:C8:F3:28
X509v3 Authority Key Identifier:
keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
88:fb:87:d6:62:75:be:d1:47:5a:a9:48:bf:a7:83:b3:bd:9f:
18:70:b7:f7:08:74:e4:27:a5:21:80:33:f0:5d:77:57:a1:85:
e4:6a:99:67:de:c3:ae:f3:f3:60:cb:f3:28:89:35:a8:be:06:
a7:51:ef:7c:21:ac:ed:72:7b:dd:3e:4c:42:2a:d3:1c:fd:54:
d8:38:68:86:77:19:e1:df:10:e7:79:53:49:fa:4d:0d:d8:f3:
99:74:97:00:d4:25:2e:99:3f:e7:01:f5:8c:16:95:d6:a6:72:
b2:8a:af:53:d5:fa:64:63:40:53:e5:23:bc:6b:35:5a:ee:62:
47:fb:49:fb:77:e3:1c:16:0b:75:0d:e8:a7:0f:0f:ff:92:63:
2e:57:3c:58:89:34:a3:eb:8a:db:86:0f:98:48:6e:6b:5f:49:
cf:dc:0c:ce:89:cf:1a:b3:ab:40:bc:92:5a:82:c6:e5:3c:25:
81:61:7e:1c:fb:2a:ca:e8:50:1d:47:b5:f9:f1:5b:6c:b0:cc:
6c:6e:19:b2:a2:0d:c5:73:d8:34:d7:27:c5:a8:c5:8a:c0:02:
c4:0f:4a:59:b5:ff:14:fb:36:2f:21:d2:8d:46:2b:ec:ce:a7:
eb:6f:7f:10:90:f5:42:d5:fa:a8:89:c6:08:cb:b4:45:b4:41:
d2:d2:8f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:34 2026 by rpki-client