
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json)
Hash identifier: eLfq707N1OmD+LwdchRMRAwj5yiK4I+XO7+pE0/qUc8=
Subject key identifier: EC:6F:DD:C3:8C:45:10:5D:D1:E7:1F:C1:0F:DB:1B:8A:87:8B:77:A6
Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32
Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32
Certificate serial: 13E9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
Manifest number: 13D2
Signing time: Tue 14 Jul 2026 17:00:20 +0000
Manifest this update: Tue 14 Jul 2026 17:00:19 +0000
Manifest next update: Tue 21 Jul 2026 17:00:19 +0000
Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: AaQIT8u6fi1TRJ8gTZu0EbpdXgGlV9EMvBgb3WfUaI4=)
2: B80482FC748911F19DCB36BA84A30FBC.roa (hash: jW6OnogRVDWjla3xscS9xPToyDbj+RJjVrfHDwtYH9Y=)
3: AE7603724F8711F1ACC1478F91833773.roa (hash: m3sG9C0voTAzwCTrnGEExTYMamH/vClHoEE2jHx5FJc=)
4: F5B633B2283411F1B1D7DF7FCA833773.roa (hash: Kt9rQh1UmXU3aG3p58XCWtin2O3CyyL613kv0PisisY=)
5: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: jPVq1FqdO/7Sa1Zo63l4DDlY46514aXTAgnERyot6WE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl
rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 21 Jul 2026 17:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5097 (0x13e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32
Validity
Not Before: Jul 14 17:00:19 2026 GMT
Not After : Jul 21 17:00:19 2026 GMT
Subject: CN=6a566b24-f042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:cb:d7:64:77:7b:ea:45:bb:fa:0c:03:c3:
35:94:09:9c:ce:d7:9c:bd:88:72:c1:b9:94:a5:a4:
b3:88:02:32:f4:46:b0:6f:01:0c:56:c6:73:15:b2:
6c:2b:e6:a0:83:2c:b9:29:9b:59:d0:4e:22:a7:7e:
ad:ac:89:73:1b:7d:8a:f6:f3:68:2a:db:8c:c6:0c:
a4:d5:e6:38:4a:27:89:4c:43:68:5a:83:f6:12:ac:
7a:68:64:75:dc:7a:6b:f3:22:28:67:fd:3f:2e:cd:
dd:fa:59:5b:13:a9:4f:16:45:08:66:95:cd:18:97:
c0:7c:44:14:7f:62:a7:e5:05:41:2f:1c:d6:80:1a:
b2:40:3c:65:08:8e:57:34:7a:53:af:4d:f9:6e:7d:
64:10:d4:c3:ac:28:25:15:26:25:3e:01:fa:7d:36:
de:ab:5e:b6:f1:de:07:f2:dc:8f:7f:3b:d2:85:f8:
4c:11:1e:b7:91:98:b8:c2:2b:a1:ff:45:db:13:65:
1a:30:7f:a4:9b:17:c2:0d:15:a8:e3:a8:bd:76:b8:
de:ff:c7:78:31:8a:9a:42:e9:60:d5:3b:b9:7d:66:
2c:76:0a:bb:f9:19:a5:e6:be:9c:56:3a:30:c6:30:
b5:cd:9f:e8:87:90:63:e6:07:86:21:2b:15:9d:30:
1a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:6F:DD:C3:8C:45:10:5D:D1:E7:1F:C1:0F:DB:1B:8A:87:8B:77:A6
X509v3 Authority Key Identifier:
keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
58:78:93:a5:3c:06:68:24:a3:58:5a:1f:3b:69:94:84:15:91:
5a:55:9c:50:3b:6a:2b:b3:c4:59:37:9f:f3:4d:38:4f:fb:8c:
a5:14:14:98:a6:4a:19:03:6b:8c:6c:d6:e1:bd:c0:40:9a:8b:
cd:be:c7:01:8b:5a:33:b9:72:b8:87:2f:b8:eb:10:00:74:13:
9b:ec:e5:b0:99:d1:18:6b:c3:6f:11:c9:ef:fd:6b:44:72:d1:
d7:da:df:b9:99:f1:19:3a:3b:47:3a:b5:e3:76:3d:a2:91:a7:
a9:2e:0a:d6:42:05:67:31:a7:f7:b8:ed:29:24:91:46:81:3a:
5c:3d:30:cc:1c:ec:fd:d2:72:6f:29:d1:39:49:9a:de:8a:bb:
3b:d3:48:43:06:22:fc:de:25:e1:91:2c:06:36:30:ef:e1:51:
93:19:1c:cf:c4:16:df:60:ee:f6:3f:6a:42:3e:bd:d0:d0:84:
70:cf:10:a2:41:d8:e7:70:75:44:c5:94:e5:ce:df:36:89:16:
39:79:a3:f1:e8:67:1d:b9:50:80:bc:fd:40:ff:03:17:a8:07:
0f:25:71:a3:79:de:f4:c7:65:19:0e:8c:e9:f0:15:94:37:3e:
fd:e8:4a:db:93:62:86:db:69:14:64:a7:d3:6e:04:e2:a9:d5:
70:9c:ba:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 01:50:13 2026 by rpki-client