
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json)
Hash identifier: esoyUgtP4swePvlpFLfGVm5F6/elLrSYwYFUnjAbRUk=
Subject key identifier: B8:9B:FF:FC:C8:B3:D5:5F:F3:41:86:62:69:82:9B:D6:4F:9C:32:F2
Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B
Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B
Certificate serial: 093A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
Manifest number: 0921
Signing time: Thu 02 Jul 2026 20:29:40 +0000
Manifest this update: Thu 02 Jul 2026 20:29:40 +0000
Manifest next update: Thu 09 Jul 2026 20:29:40 +0000
Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: rkNY7XW9ou8dcpMyXnTLlgu5ggSDq6oDMCgMXhfr0Dg=)
2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: 4vuTCUAhfJT3HGv5tLVBeeb3AAx6C5qUisVfSfItWZ0=)
3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: KoKgWmsxfkCkbgWCHOo/9Lqsa6nPc6n6w00K8LYdEf4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl
rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 20:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2362 (0x93a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FCE2, serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B
Validity
Not Before: Jul 2 20:29:40 2026 GMT
Not After : Jul 9 20:29:40 2026 GMT
Subject: CN=6a46ca34-7d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:84:9c:a1:45:10:ac:1c:f7:a4:28:fb:dd:4e:
ba:82:0e:84:04:72:ba:5c:0f:92:b3:b0:4d:a1:a9:
b3:cd:78:cc:7d:95:f1:45:ed:7c:e6:ed:7a:99:dc:
3b:2a:ad:e3:5e:a9:c2:1a:40:35:10:3b:0f:81:5f:
b5:5e:f8:80:3f:a0:69:15:41:5b:fe:db:bf:ed:77:
4d:e5:9b:c2:5a:09:65:cf:10:6c:9e:90:09:01:b7:
dd:49:87:af:41:23:d0:76:49:66:d8:31:88:40:9a:
6d:cc:83:0e:23:1e:00:a2:42:89:3b:7d:59:11:64:
23:95:cc:ae:97:e6:5e:8a:d5:77:4f:ab:4a:04:8b:
48:43:38:bc:bc:da:7c:e2:8e:3e:c3:9a:43:fa:bd:
f8:b8:24:a9:e1:bf:d3:ac:9b:cc:7e:c0:b7:98:e2:
b9:51:18:c2:48:70:e9:66:84:d0:fd:c2:b9:35:22:
ab:7f:0f:a5:aa:6d:39:08:62:ea:9a:1c:3f:cb:1f:
02:28:aa:ce:6e:14:99:79:d0:63:11:24:9f:e1:df:
e9:5c:1c:47:42:10:85:a7:2b:22:e4:89:c5:58:ce:
fe:30:81:39:25:47:2d:a0:3d:55:7c:b3:ba:b4:70:
b8:13:7b:63:61:69:ac:a5:c3:c9:34:59:70:f0:a8:
b7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9B:FF:FC:C8:B3:D5:5F:F3:41:86:62:69:82:9B:D6:4F:9C:32:F2
X509v3 Authority Key Identifier:
keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
09:ff:a7:eb:19:05:f9:8f:d7:a6:e8:8e:0a:00:8c:b9:57:a2:
67:ef:85:f1:65:ae:c8:cf:76:67:96:cd:3e:72:d8:e9:a4:d7:
b1:52:fd:9d:cb:90:57:2d:8e:a1:56:a8:1a:f7:ce:ab:df:8c:
ca:78:02:4d:cb:f3:63:5e:f7:26:95:38:a1:4a:0b:99:ca:6a:
67:24:0b:85:1f:f9:b2:26:a8:89:7e:81:55:d6:fc:b7:22:2e:
56:71:d3:57:5f:e0:6d:32:e8:76:d7:5a:94:aa:97:43:06:77:
b1:71:2f:0b:cc:1d:60:02:61:4f:a4:ee:40:74:ba:17:a3:4b:
a9:51:66:4c:fa:8a:4a:26:12:65:a5:68:58:da:7a:4b:9b:a6:
1f:27:a0:ef:cc:4b:09:b1:5d:74:99:69:c0:b5:cd:8e:20:57:
f6:08:f2:ac:3f:97:18:7d:e5:07:58:d0:40:1d:73:74:97:a5:
f6:da:7a:d5:8c:09:42:cf:72:53:cc:c0:b1:d7:1c:2c:8a:d0:
4e:24:22:0b:cf:c0:73:b0:86:e6:b6:b9:fc:6f:ab:fe:e9:73:
2c:52:d6:d9:31:3d:a1:58:55:be:65:d9:d8:37:96:26:35:27:
8c:a9:b0:6d:f3:d7:7a:5b:59:59:91:bf:ce:4a:37:e1:70:b0:
75:e9:f7:fd
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2
MUI2RDM4M0IwHhcNMjYwNzAyMjAyOTQwWhcNMjYwNzA5MjAyOTQwWjAYMRYwFAYD
VQQDEw02YTQ2Y2EzNC03ZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwIScoUUQrBz3pCj73U66gg6EBHK6XA+Ss7BNoamzzXjMfZXxRe185u16mdw7
Kq3jXqnCGkA1EDsPgV+1XviAP6BpFUFb/tu/7XdN5ZvCWgllzxBsnpAJAbfdSYev
QSPQdklm2DGIQJptzIMOIx4AokKJO31ZEWQjlcyul+ZeitV3T6tKBItIQzi8vNp8
4o4+w5pD+r34uCSp4b/TrJvMfsC3mOK5URjCSHDpZoTQ/cK5NSKrfw+lqm05CGLq
mhw/yx8CKKrObhSZedBjESSf4d/pXBxHQhCFpysi5InFWM7+MIE5JUctoD1VfLO6
tHC4E3tjYWmspcPJNFlw8Ki3xwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLib//zI
s9Vf80GGYmmCm9ZPnDLyMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE
NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP
RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2
aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEACf+n6xkF+Y/XpuiOCgCMuVeiZ++F8WWuyM92Z5bNPnLY6aTXsVL9ncuQVy2O
oVaoGvfOq9+MyngCTcvzY173JpU4oUoLmcpqZyQLhR/5siaoiX6BVdb8tyIuVnHT
V1/gbTLodtdalKqXQwZ3sXEvC8wdYAJhT6TuQHS6F6NLqVFmTPqKSiYSZaVoWNp6
S5umHyeg78xLCbFddJlpwLXNjiBX9gjyrD+XGH3lB1jQQB1zdJel9tp61YwJQs9y
U8zAsdccLIrQTiQiC8/Ac7CG5ra5/G+r/ulzLFLW2TE9oVhVvmXZ2DeWJjUnjKmw
bfPXeltZWZG/zko34XCwden3/Q==
-----END CERTIFICATE-----
Generated at Sat Jul 4 05:24:12 2026 by rpki-client