
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft
File: ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft (raw, json)
Hash identifier: 1OyoFuRegoGzffWfScFibYdpxhmOoDt7K3c92148Z3U=
Subject key identifier: 29:D9:0F:14:E4:1C:20:F5:B6:E0:40:A8:10:D5:90:C9:B2:43:B7:CE
Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38
Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38
Certificate serial: 04D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft
Manifest number: 04C1
Signing time: Wed 01 Apr 2026 00:04:15 +0000
Manifest this update: Wed 01 Apr 2026 00:04:15 +0000
Manifest next update: Wed 08 Apr 2026 00:04:15 +0000
Files and hashes: 1: ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl (hash: dUDvzRGiZEAHKq0VvTWkZU+hrpMXtcw6UxYjhQ+u7sA=)
2: AA9C9BB8C92C11EF86608311C4F9AE02.roa (hash: L0YUjWVE6ClQnbjkSz7YliWfDv2+LcOW4hK3DI2GwKg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl
rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 05 Apr 2026 23:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1236 (0x4d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9182047, serialNumber=65012AF0571086B9EAB30346F624B6312A551C38
Validity
Not Before: Apr 1 00:04:15 2026 GMT
Not After : Apr 8 00:04:15 2026 GMT
Subject: CN=69cc60ff-fd64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:6b:74:84:b6:ef:49:b8:c1:80:3e:cf:0d:
39:6b:09:4a:e0:80:23:94:aa:23:8d:3c:4c:9c:4d:
d3:10:bd:a6:18:ab:fd:c7:f6:a2:da:bf:d0:17:dc:
77:75:0d:39:53:58:69:cb:a1:64:93:c5:9a:8a:70:
88:ea:32:62:47:cb:c9:e6:73:71:14:75:30:27:10:
de:f4:19:ad:74:de:68:f2:cd:72:23:1b:ac:dc:5d:
fa:ca:5d:24:52:2e:7b:62:d0:17:44:60:fe:3c:9e:
59:47:60:f1:99:a6:ae:77:c1:49:40:30:94:46:10:
e4:ec:32:86:ec:68:75:0c:9e:95:8c:54:41:0a:45:
07:88:b3:32:4b:10:0c:95:4c:ec:16:83:34:61:27:
0d:64:a8:5a:cf:1b:bf:f3:f0:9c:0c:bc:d4:c5:7c:
a6:cf:01:f2:fc:1e:bf:1d:c0:34:cf:f0:b8:ca:60:
ea:e8:02:6b:42:a1:43:dd:b5:e7:35:4f:68:cb:f3:
a9:cb:24:02:51:f3:8a:ac:fc:bc:3e:90:1e:f1:13:
56:55:fc:87:5b:98:b9:41:d5:4a:f8:c9:bb:ab:f3:
01:15:cf:c0:da:71:bd:85:37:92:de:4f:75:0a:20:
5c:7d:af:66:bf:e0:10:fe:b7:31:17:e3:15:35:c4:
4e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D9:0F:14:E4:1C:20:F5:B6:E0:40:A8:10:D5:90:C9:B2:43:B7:CE
X509v3 Authority Key Identifier:
keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
10:3d:38:32:31:a9:4e:8e:29:a5:8c:16:74:2e:2b:3e:05:84:
cc:1a:0a:ac:9b:3e:11:bc:1d:03:53:78:7d:ca:ad:3e:20:1b:
9b:b3:40:e0:8e:39:07:e2:ea:35:5d:b1:6c:78:c8:02:55:c8:
40:c3:d3:c3:7c:72:9e:0e:86:30:f3:b5:ee:8a:f0:6d:60:7e:
76:b2:e1:8f:6e:b2:ef:78:86:13:d3:4d:3c:18:39:47:1f:6f:
dd:11:79:47:2a:f7:79:70:45:46:0f:65:dd:40:b2:e3:06:7b:
2d:f5:bd:fd:58:d7:8a:55:b6:ec:0f:53:14:97:02:ed:d1:dc:
9a:be:0d:12:c3:d9:7c:52:c8:2c:0c:8e:fe:2b:36:7d:95:1f:
da:c7:6e:0d:4b:bc:3b:c2:11:a2:17:e8:a2:52:23:a2:f3:13:
d0:cf:a2:a7:42:74:d5:7f:1f:b8:18:de:fd:7a:60:7c:f6:75:
c9:90:4d:91:bd:29:01:1b:e9:18:51:e3:e3:df:40:42:70:a2:
03:ed:b3:5b:fc:86:ff:46:1b:d2:ac:ef:7e:a7:da:0f:d8:54:
dc:ff:6d:53:d4:2a:28:1d:4c:01:0c:e1:48:06:1f:94:90:72:
0c:aa:52:04:c1:27:33:e9:f1:c5:23:69:72:e5:9e:04:0f:df:
5f:f3:22:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 1 02:32:59 2026 by rpki-client