
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json)
Hash identifier: DVRRmdjOmeV35Xc7dP2njlwbjbRRSv60ly0OP7rryos=
Subject key identifier: 06:4A:28:34:67:AD:B6:C3:4E:0C:14:AD:52:00:F4:54:E6:67:0D:73
Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E
Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E
Certificate serial: 2190
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
Manifest number: 56CE
Signing time: Mon 06 Jul 2026 14:55:22 +0000
Manifest this update: Mon 06 Jul 2026 14:55:22 +0000
Manifest next update: Mon 13 Jul 2026 14:55:22 +0000
Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: Xk8onoAHnF36dKpXIVW8Cfkd80xx+EYetEx/QqYQ62w=)
2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: N4+8fycTDr0KyyL1T8BnM1QnlOy4E1P+9kvY0kSTWus=)
3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: eXbj2/2PGJubPsuJy/6g3AgLU0HNFQl847an+DeMHhU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl
rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Jul 2026 14:55:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8592 (0x2190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E
Validity
Not Before: Jul 6 14:55:22 2026 GMT
Not After : Jul 13 14:55:22 2026 GMT
Subject: CN=6a4bc1da-732a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8d:fc:40:0e:ac:4e:e5:8a:4a:a1:3c:e4:d0:
db:ae:20:58:57:1b:86:43:f3:99:18:cf:76:73:ce:
f9:6c:14:eb:74:79:ed:7f:e1:8d:84:20:4e:3c:e1:
d9:50:00:2b:09:af:9a:6b:d3:f3:e8:95:48:ac:2a:
dc:ba:6f:b6:46:15:54:82:41:f9:b2:6a:a7:ab:d7:
d2:b7:12:04:15:1d:56:76:f0:bd:29:71:6b:e0:08:
5a:ea:fc:b8:01:3d:aa:d6:e0:58:4a:5f:5f:b2:13:
39:92:b7:96:ad:47:c5:cc:ed:be:3c:18:41:ad:7c:
ff:09:aa:64:fe:7e:46:13:d9:ed:f9:f7:f8:82:f3:
e1:48:63:d0:9a:23:63:91:8c:12:5b:ff:ea:95:a5:
b0:91:57:b6:42:78:0c:bd:57:d5:3c:22:36:79:f7:
c2:6f:22:d8:1c:8f:61:35:42:c2:1a:20:3d:a0:7a:
eb:db:90:0b:d6:ea:c0:e7:7d:ba:b9:db:4d:6b:21:
4e:cc:d5:af:cb:ee:73:f2:29:68:9c:ba:75:ae:cc:
11:48:6a:0e:cb:49:dc:ff:64:a6:87:4f:3a:e3:f9:
e3:c1:cb:ff:86:c3:d8:be:18:59:26:91:de:fd:f4:
2d:d8:30:fc:13:b0:f6:b2:c8:0d:e0:27:82:c5:7f:
08:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4A:28:34:67:AD:B6:C3:4E:0C:14:AD:52:00:F4:54:E6:67:0D:73
X509v3 Authority Key Identifier:
keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8e:be:fd:2c:e0:3e:b6:54:d8:e8:42:cb:22:81:07:f8:a5:7c:
78:2d:c1:44:61:6b:18:72:97:9d:cd:bc:12:81:a8:4d:06:0a:
1b:ee:78:e3:4e:e7:b0:31:fa:10:95:59:26:0a:73:37:16:59:
68:f1:38:f1:fd:73:c9:17:b5:ca:0d:75:ae:38:19:ad:bc:0c:
df:74:c5:fd:16:6e:ea:f6:aa:f4:47:7d:78:10:0c:47:a9:dc:
28:bd:a6:3d:50:23:12:96:13:af:a5:68:bb:79:a5:17:86:77:
ef:41:0d:56:37:69:5b:10:a6:80:53:e5:22:a9:78:e1:2e:28:
e1:2d:b9:dc:de:33:19:81:ee:79:5c:79:12:20:41:91:e8:c2:
4d:13:ba:90:ed:78:6e:0d:55:b2:88:ac:03:b8:90:82:c3:9c:
de:8d:3a:48:ea:42:1f:6f:38:c3:ab:e0:43:bc:4c:7a:e1:ac:
ea:21:c2:81:11:8a:c1:04:04:f6:4e:6e:91:96:ef:07:83:8e:
ee:88:ee:9f:35:f7:80:3c:47:78:0d:f6:31:1c:74:1b:7a:07:
3f:9d:39:23:a1:c7:d4:37:7c:9f:60:2e:1a:80:1b:30:2b:30:
ac:96:fb:69:f1:b1:0e:d0:0c:c0:15:af:4a:02:fa:06:a7:c7:
7a:09:85:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:16:47 2026 by rpki-client