
$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json)
Hash identifier: jC03NGFlBpLrq1m3ZxdWKNRzfWcM8vbjnVBz9ZnSL4Q=
Subject key identifier: 57:EE:04:D6:F4:48:E3:41:00:38:51:90:60:38:4A:14:C3:2E:1C:20
Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59
Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259
Certificate serial: 04C3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
Manifest number: 04BA
Signing time: Sun 05 Jul 2026 00:15:25 +0000
Manifest this update: Sun 05 Jul 2026 00:15:24 +0000
Manifest next update: Sun 12 Jul 2026 00:15:24 +0000
Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: f5OMLXingRXZJ7IJROf8TBJYG6rDvHHdZbet20dGtoo=)
2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: UDGIexCjWZjf9oWBoZsn81ywHvMY4QFQvNjug6FA+Yo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl
rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 00:15:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1219 (0x4c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259
Validity
Not Before: Jul 5 00:15:24 2026 GMT
Not After : Jul 12 00:15:24 2026 GMT
Subject: CN=6a49a21d-3e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4e:39:fd:3c:4c:c6:20:46:2b:52:75:21:ed:
76:d8:ff:f0:c6:45:c6:4a:f3:4d:5b:f0:e1:a9:f6:
c4:6c:74:85:22:9b:a4:cf:16:51:9e:ce:17:00:77:
43:c2:ac:49:7d:8a:fa:45:82:a9:d2:ef:c4:6d:57:
66:b7:85:0e:5d:91:f5:cf:09:01:45:c2:10:21:a9:
fc:b1:63:63:72:3e:e0:62:ad:a6:c4:28:ed:b5:60:
80:39:f6:74:02:a1:12:6b:e7:7b:5e:25:ed:47:2a:
d9:b2:4d:15:f6:23:d7:53:10:cd:b7:77:b6:81:81:
a2:c1:aa:53:ce:d0:47:dd:84:6b:76:1f:63:c2:7d:
d2:c8:9f:1b:7e:c0:38:9c:ca:d2:03:e1:48:2e:ba:
fb:c7:56:f5:cd:c6:25:21:51:0d:ab:c3:ac:de:12:
70:8e:82:31:b5:f8:95:4f:f9:2c:91:dd:5d:05:75:
6a:6d:e8:7d:35:fe:2b:16:65:5b:b1:f7:0f:d2:5c:
69:bd:55:f0:40:f9:ac:24:92:a7:97:cd:4f:6b:53:
9b:38:14:83:9d:8e:da:60:c6:b8:27:5f:af:ca:3e:
7f:20:a1:1e:e2:56:34:ee:f7:ce:b9:ae:a9:09:d5:
e8:dd:35:d2:4e:ba:fc:70:cb:b3:b2:8f:6d:50:ad:
da:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EE:04:D6:F4:48:E3:41:00:38:51:90:60:38:4A:14:C3:2E:1C:20
X509v3 Authority Key Identifier:
keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
46:17:99:23:db:05:d0:2e:1e:0b:4d:6c:79:36:29:96:64:39:
23:16:f1:2c:bf:b0:d2:c7:bf:a2:63:6f:ed:38:9b:0d:9a:16:
ce:0e:76:69:25:74:4c:7d:b5:72:ff:88:39:03:a2:97:c5:7d:
ba:4c:91:8f:48:42:24:a0:d4:53:83:91:a9:26:d1:6f:8a:67:
d5:bc:40:51:ff:27:fd:a1:17:6e:a2:db:4d:05:43:8c:90:04:
a0:2c:30:2c:df:51:4a:65:ba:9e:5f:76:3d:5e:fe:a6:0a:18:
47:ef:20:dc:47:64:e8:bd:93:79:11:b1:50:89:a8:e8:ac:15:
b6:30:2a:b4:b3:32:5d:c7:70:9c:f5:02:5b:36:26:03:14:c3:
cd:9a:af:8b:aa:39:fe:f3:68:17:c8:7a:8f:47:70:03:1f:5b:
d9:a6:6f:bd:32:12:23:78:8c:3f:9f:7e:1c:af:60:65:fd:cb:
79:65:bc:1c:40:0c:74:57:31:22:d7:a5:55:7d:3c:a4:d6:5b:
8a:3a:d1:37:ba:78:5c:2b:73:c0:6d:f8:90:66:b7:bf:36:28:
7e:5e:87:92:57:e6:8e:88:73:9b:bf:dd:3c:ec:5e:b5:45:04:
38:85:5a:11:03:81:3c:5d:81:d9:52:15:a8:47:d1:02:ad:1c:
72:53:99:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:46 2026 by rpki-client