
$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
File: IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json)
Hash identifier: xUjzAWCj2xnSdWgmIrrpnk2ljiUZ9ky2NapJbt1mvv0=
Subject key identifier: D8:C9:AC:3D:F8:5B:D8:F7:4B:7A:D3:85:44:DA:82:32:92:4C:A5:71
Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8
Certificate issuer: /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8
Certificate serial: 0556
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
Manifest number: 0541
Signing time: Fri 17 Jul 2026 00:01:58 +0000
Manifest this update: Fri 17 Jul 2026 00:01:57 +0000
Manifest next update: Fri 24 Jul 2026 00:01:57 +0000
Files and hashes: 1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: 1VjCnysPB5QjtTxitL/HQmoHNtmvBnQ2HoPBBNnryUc=)
2: E097013E910C11EFB994E187C4F9AE02.roa (hash: ZdZHwag+6Cd1JHK+9hW+Jbti2LN6Ngqb+sChSvSjYdc=)
3: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: qA7mB7J1Wr5PxdKSeV/plvT1JHfQHozWTf8vXejp5kc=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl
rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 00:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1366 (0x556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919710C, serialNumber=21F7CD0AA016843552987463E6422972EF039CE8
Validity
Not Before: Jul 17 00:01:57 2026 GMT
Not After : Jul 24 00:01:57 2026 GMT
Subject: CN=6a5970f6-868d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:06:81:6c:6d:0e:99:c6:f1:cc:97:eb:91:e5:
8c:13:d8:86:ce:77:91:3c:9b:e2:a4:cc:28:77:5d:
00:b1:35:c4:f3:8d:02:d2:4c:a1:ff:2b:bb:7a:ab:
7a:f2:77:96:20:3d:0f:7a:06:d3:be:01:f4:97:ab:
bf:96:77:c5:e9:1d:6d:55:a6:6b:d4:3c:f7:8f:ba:
17:ee:f5:ca:36:cd:1b:b5:94:d9:cd:bb:1e:d5:35:
61:7b:c9:55:71:85:d6:b6:09:58:6f:0d:a4:9e:15:
a8:a1:bc:ca:b4:dc:8f:d7:f8:c6:02:ea:6b:23:8a:
b3:62:00:5e:1d:6d:3a:3f:e4:53:cd:d0:68:ca:55:
e6:d3:29:f8:cc:d9:aa:23:34:98:22:3f:4e:1b:a1:
a7:c2:d1:77:85:26:96:ac:1b:c2:be:0d:df:e6:36:
d7:74:d5:dc:6d:64:46:16:36:6d:6c:6b:8b:7a:95:
ce:73:99:b4:66:95:cc:2a:87:df:b6:3a:11:2b:42:
a4:ff:02:f3:cb:24:fa:da:b6:3b:f2:5b:da:a7:65:
fb:0a:7e:22:98:31:b0:9e:03:a1:e1:f5:15:d6:4a:
06:bd:ad:2a:cf:ad:61:88:33:9b:a4:bf:1c:90:fb:
31:0a:ff:37:48:80:05:c7:27:a8:c6:79:99:4a:ed:
b1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C9:AC:3D:F8:5B:D8:F7:4B:7A:D3:85:44:DA:82:32:92:4C:A5:71
X509v3 Authority Key Identifier:
keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
21:30:5d:77:34:92:bc:b4:8a:56:91:65:a5:47:fe:9f:18:2a:
0a:b9:1e:0e:1c:62:71:fd:6d:35:54:5f:2a:41:f7:5c:10:cf:
c8:3d:fe:ae:05:4d:2e:0a:b0:a5:6e:ad:0b:28:a5:90:c8:b6:
9f:48:0e:8e:46:35:07:63:be:ae:c9:bd:58:c5:bb:58:6e:85:
f3:40:9b:48:f2:3c:ac:1c:79:81:48:20:4e:6e:a6:5a:a9:80:
79:a4:95:d3:3c:fc:d0:59:2c:67:32:c2:22:42:9e:ba:9f:fe:
f3:4e:12:85:0e:ed:46:fe:d1:e0:6b:ea:d7:3d:af:f2:ef:31:
7c:9a:95:17:03:a8:5c:6f:4e:f8:ed:69:fa:a6:bb:d5:19:7b:
e5:3f:73:78:51:d4:d2:16:27:d1:df:1e:a5:59:7b:54:db:5e:
c1:20:2f:14:9e:45:2f:7c:75:54:0c:7d:18:25:e7:f3:63:5b:
6c:7f:74:32:b1:c3:39:99:49:94:dd:02:fc:77:35:21:38:57:
de:a4:13:fc:fc:0a:a8:ab:6e:c6:1f:a4:99:40:b0:d5:1f:56:
19:3a:89:a4:2d:69:33:0e:3f:05:fc:43:ad:37:24:9c:5e:f3:
05:7c:dd:fe:20:3a:0c:b4:c2:79:41:ca:39:d7:7c:d8:c3:e7:
65:c1:7c:41
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy
RUYwMzlDRTgwHhcNMjYwNzE3MDAwMTU3WhcNMjYwNzI0MDAwMTU3WjAYMRYwFAYD
VQQDEw02YTU5NzBmNi04NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAswaBbG0OmcbxzJfrkeWME9iGzneRPJvipMwod10AsTXE840C0kyh/yu7eqt6
8neWID0PegbTvgH0l6u/lnfF6R1tVaZr1Dz3j7oX7vXKNs0btZTZzbse1TVhe8lV
cYXWtglYbw2knhWoobzKtNyP1/jGAuprI4qzYgBeHW06P+RTzdBoylXm0yn4zNmq
IzSYIj9OG6GnwtF3hSaWrBvCvg3f5jbXdNXcbWRGFjZtbGuLepXOc5m0ZpXMKoff
tjoRK0Kk/wLzyyT62rY78lvap2X7Cn4imDGwngOh4fUV1koGva0qz61hiDObpL8c
kPsxCv83SIAFxyeoxnmZSu2xXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNjJrD34
W9j3S3rThUTagjKSTKVxMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC
NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu
T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE
VlNtSFJqNWtJcGN1OERuT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAITBddzSSvLSKVpFlpUf+nxgqCrkeDhxicf1tNVRfKkH3XBDPyD3+rgVNLgqw
pW6tCyilkMi2n0gOjkY1B2O+rsm9WMW7WG6F80CbSPI8rBx5gUggTm6mWqmAeaSV
0zz80FksZzLCIkKeup/+804ShQ7tRv7R4Gvq1z2v8u8xfJqVFwOoXG9O+O1p+qa7
1Rl75T9zeFHU0hYn0d8epVl7VNtewSAvFJ5FL3x1VAx9GCXn82NbbH90MrHDOZlJ
lN0C/Hc1IThX3qQT/PwKqKtuxh+kmUCw1R9WGTqJpC1pMw4/BfxDrTcknF7zBXzd
/iA6DLTCeUHKOdd82MPnZcF8QQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:37 2026 by rpki-client