
$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft (raw, json)
Hash identifier: WQ0E1sprnx0/O6gEytJqu4Q7bwyBlevyihxkYZ+P6cM=
Subject key identifier: 54:A7:CF:4E:1B:ED:6D:68:8F:96:6B:88:67:95:A4:17:1D:E9:7F:2A
Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09
Certificate serial: F2
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
Manifest number: EE
Signing time: Mon 29 Jun 2026 07:06:19 +0000
Manifest this update: Mon 29 Jun 2026 07:06:19 +0000
Manifest next update: Mon 06 Jul 2026 07:06:19 +0000
Files and hashes: 1: JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl (hash: e0BzYfxM22zw99ksUFweLZKS4RY9H7GtSlobxFspzxo=)
2: D9D9E8C0191511F092B86383C4F9AE02.roa (hash: jRuHimWgQS+tjLR9bDCVnhmy0GeAXCUN8m6ZV5rJabM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl
rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 06 Jul 2026 07:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09
Validity
Not Before: Jun 29 07:06:19 2026 GMT
Not After : Jul 6 07:06:19 2026 GMT
Subject: CN=6a42196b-2c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:2c:ec:45:01:9e:02:d1:19:0f:99:ac:49:
18:fb:ee:23:12:af:7f:fd:05:1d:9b:43:0d:38:0a:
ac:00:40:56:96:28:16:b3:39:8f:68:59:14:48:3a:
a5:8f:f7:a6:6a:90:dc:b6:54:2c:47:3b:07:9c:0b:
91:96:c3:be:84:6a:74:de:6f:69:c4:c2:40:c3:9f:
06:48:98:fd:0d:f7:fd:b3:58:56:22:d2:20:7d:0a:
15:0b:a1:4b:e3:3a:87:87:01:7a:d7:55:41:76:ce:
7c:ca:cb:6f:04:65:a4:6d:7e:d3:ed:9c:4c:83:77:
d8:78:21:0a:41:bf:95:83:4f:8c:2c:68:15:72:8a:
c4:87:b7:67:6e:4f:1d:ea:50:ad:35:a8:51:f1:3f:
de:ff:94:51:1f:97:0b:97:bb:dd:88:27:bb:3c:af:
19:56:6b:57:1d:2e:ad:4c:84:2d:0a:29:3e:4d:3a:
2a:af:dd:c8:12:e3:29:9e:f8:fc:a1:db:cb:61:50:
e3:89:bd:93:47:1f:8b:7f:c5:c3:02:e3:b1:09:c2:
81:e9:86:95:c4:be:f8:a8:ac:dc:9b:40:76:49:40:
e4:af:fa:cc:1f:f9:36:65:c7:e7:f2:3e:71:d6:52:
01:5a:95:fb:76:3c:8b:5a:d8:8c:40:c7:94:0b:4c:
ae:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A7:CF:4E:1B:ED:6D:68:8F:96:6B:88:67:95:A4:17:1D:E9:7F:2A
X509v3 Authority Key Identifier:
keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b0:9f:f4:92:2c:c9:76:25:dd:a7:ca:7a:b2:82:b4:14:99:b7:
19:f8:71:04:ee:2c:34:b2:0a:68:e1:00:37:76:d3:c9:04:dc:
73:aa:0f:ce:1d:1e:40:f7:1e:8e:fe:1b:11:35:40:fb:aa:14:
ed:ac:ac:a9:6e:d2:1d:8e:53:b0:02:7c:a3:c2:2b:0c:3c:c5:
07:03:dd:69:c0:53:36:13:eb:f4:51:f1:59:3e:72:d7:4c:8c:
46:30:b9:91:42:aa:75:c0:f7:00:a7:b3:c3:8e:2d:8f:52:20:
ac:2e:88:84:aa:32:86:45:76:64:17:03:0d:b0:4d:9d:70:f1:
bf:b3:a7:56:5c:aa:c4:ee:27:71:ea:b2:b7:e8:a8:eb:93:9a:
cd:21:64:4a:7e:1e:ce:b6:81:25:d5:fb:ea:70:ae:69:01:eb:
6e:ef:be:04:35:b0:49:e4:02:9e:bd:6f:11:37:25:13:b5:db:
9b:a2:74:46:3a:0f:98:48:90:93:91:eb:51:52:41:b6:b0:27:
4c:22:f3:21:91:38:f3:22:03:0d:08:9d:34:7a:64:aa:e7:72:
2e:84:27:9e:34:24:c5:05:d7:34:08:a5:7f:ec:b4:8e:e0:54:
24:db:f3:3b:c9:2b:dc:d9:69:2e:44:c9:a1:89:d8:9e:86:c1:
a8:bf:f1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 02:18:29 2026 by rpki-client