
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json)
Hash identifier: xR8Rs61zJmISh9eEKh3qe1URZCmdHjv1Rx/36mGPXLY=
Subject key identifier: 33:73:B5:E8:16:C1:44:3C:EA:51:7F:46:76:D3:FB:C7:39:E3:E7:31
Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32
Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32
Certificate serial: 13E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
Manifest number: 13D1
Signing time: Sun 12 Jul 2026 16:54:30 +0000
Manifest this update: Sun 12 Jul 2026 16:54:29 +0000
Manifest next update: Sun 19 Jul 2026 16:54:29 +0000
Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: m/KOXqob3y9M+wa9LkgPQCKnt8c5bSki+Gh3C5LFvqU=)
2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: jPVq1FqdO/7Sa1Zo63l4DDlY46514aXTAgnERyot6WE=)
3: B80482FC748911F19DCB36BA84A30FBC.roa (hash: jW6OnogRVDWjla3xscS9xPToyDbj+RJjVrfHDwtYH9Y=)
4: AE7603724F8711F1ACC1478F91833773.roa (hash: m3sG9C0voTAzwCTrnGEExTYMamH/vClHoEE2jHx5FJc=)
5: F5B633B2283411F1B1D7DF7FCA833773.roa (hash: Kt9rQh1UmXU3aG3p58XCWtin2O3CyyL613kv0PisisY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl
rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 19 Jul 2026 16:54:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5096 (0x13e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32
Validity
Not Before: Jul 12 16:54:29 2026 GMT
Not After : Jul 19 16:54:29 2026 GMT
Subject: CN=6a53c6c5-1334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cb:1a:ff:cc:c6:f9:0a:e6:52:2a:9d:77:fc:
7a:3d:28:c9:20:1d:77:0a:6e:3c:a6:8a:8a:a4:37:
31:00:9f:09:32:98:e0:1a:4b:a6:ab:e8:2c:32:27:
3c:9b:32:3b:d3:82:1b:ef:13:5a:53:48:b0:08:eb:
5e:7a:5d:c2:d8:76:e2:25:a1:19:4c:33:b2:df:31:
87:75:95:08:09:7a:9a:02:35:35:ab:0f:74:f4:b5:
73:7e:2f:40:a7:a8:03:51:1c:7a:f9:7a:f5:cc:9a:
77:5e:0f:b4:03:fb:60:ca:94:ef:63:88:d1:3e:3c:
6b:36:eb:a7:59:3f:9e:80:32:63:b0:a3:f3:1d:63:
63:f7:e9:13:a8:25:b2:3e:22:0c:aa:26:0a:7e:d5:
69:45:94:08:00:1c:64:bc:96:02:3d:5e:39:e9:13:
92:44:de:cb:6f:76:a2:61:fd:70:21:e9:06:e6:6b:
2b:66:b9:f2:2b:23:23:69:3d:35:0e:78:b0:6f:78:
9c:e5:97:21:85:52:43:9c:09:a3:36:31:8c:36:d7:
dc:9d:b8:7f:41:74:ca:cf:86:f4:b3:29:22:1b:7f:
5e:92:d4:ae:a9:c7:5f:6f:56:be:32:f7:b8:76:d4:
d7:3e:e9:06:b6:99:e9:13:b9:b6:dc:db:c6:ba:8b:
93:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:73:B5:E8:16:C1:44:3C:EA:51:7F:46:76:D3:FB:C7:39:E3:E7:31
X509v3 Authority Key Identifier:
keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a4:1c:e8:0e:b7:bd:dd:c6:13:f5:7d:ae:d3:48:25:6c:89:24:
b4:a1:64:06:5f:05:68:2f:02:46:a6:81:e0:b7:01:7b:14:24:
dd:78:fd:87:ae:2b:1f:1b:7d:fe:86:bb:75:49:34:ed:6a:74:
dc:a3:49:18:bf:e9:cc:97:d3:75:f8:17:e5:6b:60:58:09:a1:
7f:c3:4f:ae:64:22:14:2d:7f:2c:a0:db:74:73:c1:90:32:68:
a9:d2:16:b5:a7:35:9f:bb:2e:c7:49:1b:9f:39:f7:5c:74:39:
a9:42:24:71:8a:b0:76:4d:4e:b3:6e:e1:6b:23:b4:f8:c4:3d:
ed:ab:a8:03:19:6d:ed:dc:3c:6e:45:74:07:59:85:a5:cb:79:
fd:a3:4d:08:66:e6:1f:09:cc:cf:e8:c8:8c:7c:bb:b6:6a:5e:
7a:ee:86:8c:4b:b9:81:74:f6:81:fd:fc:5d:23:8b:fc:81:a2:
ef:31:b4:e0:03:83:67:c5:90:c5:e3:c1:b4:6a:96:5d:ce:02:
be:f5:95:e6:fb:18:4d:b1:30:81:f3:11:9d:b3:32:2e:a5:fa:
ef:82:77:46:de:3e:56:ce:82:cb:3d:5d:42:38:01:c3:04:a5:
d7:b9:9e:81:9c:02:b6:47:33:16:3f:f4:eb:12:96:bb:ed:90:
9f:af:a6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 22:26:36 2026 by rpki-client