
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft
File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json)
Hash identifier: b/fyPsVDG/9m8Ebh8x44FjFyOAUHv0x2bKRRfQCPPKw=
Subject key identifier: FA:F7:27:51:79:AA:C7:B6:3A:E2:D7:A0:A3:A4:29:90:97:7D:94:29
Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F
Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F
Certificate serial: 0790
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft
Manifest number: 0775
Signing time: Sat 04 Jul 2026 21:51:46 +0000
Manifest this update: Sat 04 Jul 2026 21:51:46 +0000
Manifest next update: Sat 11 Jul 2026 21:51:46 +0000
Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: ZiOqqNbRhYtNHuGLW29bAweVRbm4oRuiEWcMzLmsKyw=)
2: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: TW3Yzr4nVCh6fw/bwk2DNXvw9C9/OVS9zcojLveOPlk=)
3: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: ja+InHtGIgo82Asz/+ZVF2gnztVHMmOvkEj/+OfWSAc=)
4: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: yll6EleWhluFREKT8NzETIGMZoAw4Is6iNKhftN9k0s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl
rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 21:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1936 (0x790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918B5FE, serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F
Validity
Not Before: Jul 4 21:51:46 2026 GMT
Not After : Jul 11 21:51:46 2026 GMT
Subject: CN=6a498072-b8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fd:0d:f4:04:14:3e:37:f1:49:4b:61:a9:28:
bb:1a:28:8f:66:87:ae:9d:02:dd:6b:31:9e:ad:c9:
56:8a:ff:64:30:9f:e2:79:2e:1d:f9:c7:67:be:40:
11:4b:cd:8b:c9:68:f9:f2:2a:a0:56:b2:d5:6c:12:
3b:f0:73:00:9f:e2:b5:98:5f:af:45:0f:ad:8e:0c:
62:d7:96:13:41:f8:01:ae:ef:b1:a8:69:70:9b:3c:
23:28:39:7f:ec:32:98:1d:20:1b:16:b8:80:11:3a:
f9:a5:c6:0f:61:b1:2f:66:91:0f:6a:b9:f2:1f:34:
ef:a6:06:a1:70:1b:91:45:f8:9e:f5:f7:b5:31:2a:
e8:20:31:ad:6e:a2:ae:b1:af:59:3a:42:06:4a:ef:
f4:61:11:ff:26:e7:bd:a1:93:34:fb:e4:d6:24:42:
7f:e2:7e:d9:22:6d:3d:76:29:13:77:65:c1:f2:b9:
a1:3d:a0:17:dd:5c:4c:ca:26:92:8b:05:60:60:a8:
9e:ae:6c:92:38:a7:ab:4a:af:a9:5d:20:90:06:ca:
9a:65:51:13:75:5f:75:02:16:48:d6:9b:9f:cd:1b:
a1:cf:dd:63:7a:2f:66:6e:e4:d9:d9:a6:6b:89:19:
e0:b5:6e:66:bc:df:db:46:ea:98:14:24:ac:9b:f4:
d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F7:27:51:79:AA:C7:B6:3A:E2:D7:A0:A3:A4:29:90:97:7D:94:29
X509v3 Authority Key Identifier:
keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6e:e9:23:5e:d6:49:c2:2b:d9:5b:d7:6b:2c:b0:85:5f:cc:e6:
cb:8e:56:57:a7:18:64:3b:b0:87:0a:8c:62:ae:8d:a0:90:38:
4f:a9:dd:38:53:1b:1a:00:f7:50:ec:9a:b9:1d:c1:7f:b2:83:
bf:58:b2:4c:c4:0c:3c:30:7a:de:c5:2c:c6:e6:f7:0c:7e:da:
65:3d:44:35:bf:a0:5b:e4:45:9f:bf:b7:e2:df:3f:41:f5:55:
cb:92:4c:1c:a2:0d:04:d1:e7:9d:0a:8b:ad:c1:de:f7:65:69:
fa:d4:6c:7d:0b:e9:c4:dc:5b:6d:d6:74:fe:5d:94:44:e5:e4:
63:c1:64:5f:dd:72:4b:b6:b2:9a:42:c1:6f:2a:93:a6:68:17:
b0:7f:0e:33:d9:42:fd:c3:56:d5:52:fb:66:80:75:78:0b:00:
69:cf:bf:53:7c:04:0e:1e:31:01:57:4f:7a:b0:ab:d0:f6:db:
84:71:cc:da:9f:0f:db:3f:35:9a:90:8e:75:12:5c:86:8c:d2:
b2:e5:f0:d1:72:71:17:48:ec:88:e4:69:3e:81:d3:50:dd:a7:
08:17:1e:a2:ec:34:5c:f3:07:c7:6c:43:99:e1:fa:20:dd:88:
5a:46:3d:0a:38:5b:08:90:9d:89:41:7e:62:27:b3:8f:b2:a7:
b0:d7:60:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 20:12:26 2026 by rpki-client