
$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json)
Hash identifier: VzH3nL0h13mOaHBOu8iEzGPKtC1UhAQnV2wS6QP4w3M=
Subject key identifier: 41:62:2D:89:D6:96:97:29:87:7C:E8:52:AB:6D:2D:35:95:29:F1:B6
Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3
Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3
Certificate serial: 06AA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
Manifest number: 069C
Signing time: Wed 08 Jul 2026 23:27:36 +0000
Manifest this update: Wed 08 Jul 2026 23:27:36 +0000
Manifest next update: Wed 15 Jul 2026 23:27:36 +0000
Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: mJ3SsF2VDpPKeaMig3Lwu8k7FU9Akam6dqWLvMsGJAo=)
2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: OANS4UGotbrHDA32WOeuOB3Wn0ea/AxoJh5y6ulR7SQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl
rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 23:27:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1706 (0x6aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3
Validity
Not Before: Jul 8 23:27:36 2026 GMT
Not After : Jul 15 23:27:36 2026 GMT
Subject: CN=6a4edce8-396f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8c:06:3c:79:a9:3c:a9:fb:f2:61:b1:9c:21:
4a:50:0f:5c:7f:cb:27:93:ba:9e:0e:bc:82:49:c0:
f4:db:d4:44:56:00:89:85:53:e8:c9:55:4b:91:d1:
17:8f:f4:58:cd:cf:e3:0c:e8:ee:ec:2f:d0:19:04:
70:ac:a9:93:e8:28:41:4b:51:05:6f:66:27:cb:c3:
d3:ef:3d:64:f7:1b:87:97:0c:db:c0:ff:b2:f0:77:
2c:25:45:2c:7e:87:89:04:37:12:4b:b1:ad:2a:e9:
92:82:ff:2e:33:41:34:08:04:46:d8:1d:08:43:e0:
08:af:ba:b0:5d:0f:b2:81:b7:59:a4:31:01:39:11:
2f:63:93:27:99:27:00:ea:69:dd:27:c1:8c:db:4f:
84:86:7b:13:4b:20:df:12:ac:a1:0d:f3:e7:f4:47:
5a:c7:59:46:e8:f1:3c:c4:a3:c6:78:aa:50:79:1e:
fc:69:b1:4b:34:db:fb:9c:15:6e:94:a3:66:b6:9f:
b2:23:7b:a6:66:3a:b9:6f:69:c4:09:7c:e4:87:ec:
29:41:64:62:9f:ba:08:93:5e:cc:72:61:94:37:5d:
e0:ff:fc:b5:8e:d0:93:e7:bc:03:0d:09:cb:44:c3:
fe:b9:69:f0:bf:84:e6:70:37:a1:9c:c8:75:15:3d:
ec:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:62:2D:89:D6:96:97:29:87:7C:E8:52:AB:6D:2D:35:95:29:F1:B6
X509v3 Authority Key Identifier:
keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
15:8e:25:2e:f9:8c:12:23:8f:4f:34:98:6d:d2:f6:d6:90:11:
55:7c:ce:e2:5a:a8:8f:bd:7a:87:8c:ec:5e:65:8b:e5:8a:c6:
84:6d:6c:e8:32:14:a5:dd:92:9f:e8:72:ad:f3:16:03:1c:11:
2d:fa:b8:a8:3b:32:6e:d7:fd:c6:ec:cd:44:b6:25:68:3f:d4:
f4:80:a2:9a:30:f8:51:0b:6a:75:5e:06:0a:48:e6:5b:aa:8c:
20:66:fc:20:bd:89:da:a5:6d:be:45:0c:9d:9c:bf:c8:9a:22:
28:76:95:78:17:76:48:3d:f0:28:3f:99:72:f0:20:f7:bd:c2:
c1:00:ce:88:83:15:5d:09:46:34:4e:11:8a:81:43:3b:11:cb:
6c:95:1d:e8:d6:00:7c:b7:ee:f6:47:47:0a:13:1c:41:00:40:
4a:bc:a7:aa:c6:13:00:3d:d9:03:b6:80:1f:8d:4b:6d:b9:5b:
28:01:d7:ac:a7:d2:46:c4:de:ca:18:4f:85:c8:b6:8b:8d:57:
56:0e:54:ee:21:d5:24:51:4e:6b:23:22:de:ef:f8:dc:24:91:
2c:b7:4f:af:70:42:00:17:07:60:a9:5d:44:eb:fc:1e:5e:eb:
73:20:ff:54:3d:1e:c5:b2:66:bd:dc:6e:93:a5:57:02:cd:24:
22:20:75:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 21:02:27 2026 by rpki-client