
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json)
Hash identifier: Xq46DarayGFMhuXLOgvHhZptksaqQIuPTnzooCO2PUo=
Subject key identifier: F7:B9:AA:3A:A0:8F:EF:7B:19:F9:76:E2:1D:9F:01:F9:36:C8:2F:1C
Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71
Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571
Certificate serial: 0C32
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
Manifest number: 0BF6
Signing time: Sat 04 Jul 2026 19:00:46 +0000
Manifest this update: Sat 04 Jul 2026 19:00:46 +0000
Manifest next update: Sat 11 Jul 2026 19:00:46 +0000
Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: 51i7lXp9sOOl5OH4+eDUX9YBN/kq1UXQwnT9y9R80hU=)
2: 8137CEBC07E911F18CE8BD7B223D8C67.roa (hash: wHgEjCXqndOJLXZ9J6FfS2MgjM1Wq0AwJ0Oymtfq0bs=)
3: BA16840475D911F1B46C33AD6CA30FBC.roa (hash: /qKxnSXL8e1JhFVlrKwLNg4T/NwR0oewdz+ElfcHN+w=)
4: 614D895A75DC11F19A6AA48A6DA30FBC.roa (hash: a9aKl465v7NDdlNX+gkLCpTJES/Srn/edKpf/fvxxmo=)
5: B899690275D911F1B46C33AD6CA30FBC.roa (hash: fmi7Xv25W86/nRUdBaLjYoJWXUK1k9Dy00DZvttwrRQ=)
6: BB848D8675D911F1B46C33AD6CA30FBC.roa (hash: hKK67kho1xmsmO4LWvmGhYdHu4g9sHo6GKRHNdTGbfY=)
7: BCA6A73A75D911F1B46C33AD6CA30FBC.roa (hash: 200zdhmpRY9TDWyoBotBxLY/NlAK1wTrZHNyeeHEV/Q=)
8: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: RzHBWYWw5IHkZGciQV9CfmaSyQYYH4ManuyCrGOl3Iw=)
9: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: m6A5k7GrCQsQt6UQStLqk4vDI2cF1RjOvSbk8wVUoVE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl
rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 19:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3122 (0xc32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571
Validity
Not Before: Jul 4 19:00:46 2026 GMT
Not After : Jul 11 19:00:46 2026 GMT
Subject: CN=6a49585e-00cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:01:e1:75:29:58:94:d0:c2:7d:84:6d:ba:9f:
a4:10:52:fc:b0:72:87:aa:bc:08:08:8f:35:d8:5e:
94:9a:61:e5:66:ad:98:9e:c5:54:40:e1:79:27:21:
c9:59:dd:cc:30:c7:c3:d2:68:c6:4a:3d:dd:50:0d:
5e:b5:a5:96:04:17:38:bc:51:e7:f6:e1:47:a4:ad:
ba:a9:b6:d7:1a:26:51:91:32:1d:87:98:8a:fa:a4:
c9:a7:73:bf:dd:a9:33:e2:73:b8:95:9e:65:4f:9f:
98:c9:ca:77:1c:fe:0d:97:58:03:0d:24:5e:38:26:
06:b2:21:49:b0:ad:4a:d8:d3:e5:53:84:9c:21:d8:
47:5e:f8:1b:85:47:d3:3f:c2:a8:26:81:34:49:e8:
e3:2b:83:c4:a6:3a:d5:6b:d5:be:42:25:6e:36:c4:
d1:4a:7e:77:a3:8e:00:08:d9:23:91:4c:39:32:b7:
d8:84:ba:e9:2a:92:88:ba:c0:63:c2:0e:1a:02:5f:
14:9f:c0:35:1d:62:3f:45:ef:83:9e:57:34:fc:22:
11:50:32:8c:0c:c1:78:20:52:ed:ce:55:42:74:34:
80:c5:47:52:47:98:df:5f:7c:02:35:47:7b:21:52:
16:f4:49:c4:bf:84:75:c2:5c:d7:ec:1b:92:1c:b5:
4f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B9:AA:3A:A0:8F:EF:7B:19:F9:76:E2:1D:9F:01:F9:36:C8:2F:1C
X509v3 Authority Key Identifier:
keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
41:83:d0:be:26:79:64:9b:73:b4:e2:3a:22:37:cd:87:c9:d6:
f0:cf:93:00:58:cb:d9:a0:a3:16:90:6d:96:1d:8b:51:b0:7e:
89:b5:57:71:3a:e6:80:b0:6c:7e:b9:97:86:14:db:a2:ca:12:
9f:f7:37:1d:ad:d2:88:94:2e:49:0b:93:da:d8:1b:3f:d5:ff:
f0:cd:65:88:64:d9:91:29:9a:00:46:13:4a:9d:d0:3e:3d:c2:
99:ae:73:e2:cf:1d:19:a4:b7:b3:61:d5:be:67:33:2a:8d:2c:
17:b2:3f:da:b7:07:56:1d:84:ba:1c:3c:ff:7e:f5:f1:f4:fe:
17:da:60:dc:29:98:2a:37:73:51:73:07:28:ad:02:f3:8b:0f:
71:16:9e:77:bf:4b:2f:55:90:a5:80:18:62:10:85:45:73:a9:
82:3a:86:9f:5b:07:4e:0a:e8:34:54:91:65:34:40:1f:c5:f2:
de:13:1a:89:ba:87:86:09:05:01:a4:d3:e9:0d:6b:fe:ab:09:
8f:0b:72:f8:94:38:8d:90:8a:e5:61:04:a7:5a:e9:ad:05:e7:
ed:90:35:8d:97:00:34:04:b7:5a:4c:85:9e:ca:d0:7d:1e:ff:
cc:12:2e:ed:5b:7c:87:28:3e:c6:46:ef:14:5c:4a:c2:53:1d:
ef:fc:6c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:51:43 2026 by rpki-client