
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft
File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json)
Hash identifier: VStTrJpCUVZsoY6eKEt63kw4UK/FlOCnXbKhLEficTc=
Subject key identifier: 3C:98:D0:AE:EE:D2:F8:E6:9C:AA:14:78:FE:D4:A9:DF:FC:FF:0F:C5
Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12
Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812
Certificate serial: 013C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft
Manifest number: 0130
Signing time: Fri 17 Jul 2026 06:46:38 +0000
Manifest this update: Fri 17 Jul 2026 06:46:37 +0000
Manifest next update: Fri 24 Jul 2026 06:46:37 +0000
Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: iJGleMJEH9wIyBSwx342A4D3kHhXGtpapRUtgT4dyJU=)
2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: V9uLs/UPnwnmzkafwxkP85mnXAZceqiwbgfkXel2Nag=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl
rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 06:46:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316 (0x13c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812
Validity
Not Before: Jul 17 06:46:37 2026 GMT
Not After : Jul 24 06:46:37 2026 GMT
Subject: CN=6a59cfce-f565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:80:62:e4:8a:19:77:6e:4e:49:a8:3b:0b:
13:2c:4c:18:47:a2:84:5b:77:16:9e:25:e3:84:ac:
30:d6:1d:24:79:b8:4b:27:4f:f2:ad:db:47:36:28:
bf:82:cc:10:03:d4:b3:23:c9:be:01:6a:af:86:56:
28:f3:6e:d6:69:21:de:df:9d:10:e0:0e:c8:34:69:
60:94:05:70:81:40:74:1e:fe:b2:41:32:0a:b2:6d:
70:99:62:25:82:7c:06:35:2a:4f:a3:2d:fc:f2:d4:
82:96:22:ae:c0:c4:41:ea:a0:3b:ee:15:3a:90:16:
2c:2f:00:a5:1d:58:2a:ae:76:2b:9e:98:b6:10:3c:
21:71:6c:3c:16:de:55:0f:e2:26:dc:bf:73:a6:d4:
72:df:3e:f0:fa:36:6d:ef:2a:02:e9:b5:f4:cc:db:
df:5d:f5:01:b6:6f:e4:7e:27:e9:9f:db:82:32:02:
08:6c:84:0b:3c:98:f1:f8:88:fa:01:21:b7:f9:92:
11:4d:32:90:ff:2e:e8:34:c9:dd:a3:7e:ad:83:94:
79:b9:dc:0a:5d:21:89:19:b0:35:fd:dd:91:f6:43:
91:f9:60:16:50:5e:51:32:d8:b3:c7:58:09:3e:cf:
b3:a9:54:fa:67:53:55:f4:65:d2:7e:66:91:e3:e3:
64:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:98:D0:AE:EE:D2:F8:E6:9C:AA:14:78:FE:D4:A9:DF:FC:FF:0F:C5
X509v3 Authority Key Identifier:
keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:31:07:5f:40:55:b5:ad:14:75:30:8a:9c:a3:1c:75:c9:45:
a9:ed:e0:39:d7:00:4e:9a:82:20:3b:91:f7:85:83:b1:47:7d:
e3:a8:e2:26:c6:de:bb:bb:a5:aa:33:f6:2c:96:53:9c:d0:c2:
f6:df:71:c7:47:d7:ce:53:fa:02:d8:b6:80:59:cd:d6:54:22:
ad:4d:1a:10:3f:74:48:d5:8b:91:fa:e1:2d:02:a1:70:25:00:
03:f9:6b:60:72:ea:5f:9c:df:37:04:cc:1c:63:0b:8a:21:eb:
ab:7d:1a:1d:81:5e:c8:e6:a4:23:ad:ea:ed:a3:81:40:3e:66:
69:81:7d:cf:a3:eb:4c:2f:65:ee:07:61:7c:5f:e8:b8:79:02:
de:2d:91:fe:62:3b:79:7a:57:fe:f9:97:da:8a:ad:71:32:9e:
0f:61:10:b4:c7:2b:ac:34:b2:09:72:54:69:36:06:1a:f0:a8:
85:24:78:8b:49:b1:8d:38:a3:ac:8f:89:de:fe:31:3c:9c:95:
2d:92:3d:5f:2f:0f:98:56:45:03:9d:d8:b1:e7:75:aa:c0:95:
2d:84:97:45:3c:23:fc:1b:45:ee:68:87:ef:fd:6f:84:18:2d:
6c:dd:43:26:93:f0:99:9e:53:54:17:ae:a1:cf:78:ce:7b:1c:
55:f0:09:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:39 2026 by rpki-client