
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
File: tdRsD3W7vyQRKYrr0rVitaqV7Go.mft (raw, json)
Hash identifier: /EC5JEAhswAR6K2uPl0sfdlX4EP5AFVSFERUzYjRIJw=
Subject key identifier: E7:4F:D7:15:43:24:80:3A:64:93:BE:1A:A2:C4:24:34:72:E4:A1:8C
Authority key identifier: B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A
Certificate issuer: /CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A
Certificate serial: 0B47
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
Manifest number: 0B34
Signing time: Sat 04 Jul 2026 19:24:05 +0000
Manifest this update: Sat 04 Jul 2026 19:24:04 +0000
Manifest next update: Sat 11 Jul 2026 19:24:04 +0000
Files and hashes: 1: tdRsD3W7vyQRKYrr0rVitaqV7Go.crl (hash: 34QgokX7igIpNOPpVi42pDug/6YU+ckuKbkmBpJ5YVk=)
2: 1429DACC099B11ED8A62781AC4F9AE02.roa (hash: FCTA0G0uWrgDnGlcYqqrvYV0NmPe1FK7O4WuK+aX7qM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl
rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 11 Jul 2026 19:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2887 (0xb47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C230, serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A
Validity
Not Before: Jul 4 19:24:04 2026 GMT
Not After : Jul 11 19:24:04 2026 GMT
Subject: CN=6a495dd5-a911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4b:d7:3c:77:b6:a8:86:c3:67:7f:b7:fd:93:
a3:87:a6:0b:49:11:33:f1:52:c1:5e:17:53:70:80:
dc:ef:e7:c3:2e:61:05:c8:52:c4:46:14:8a:0a:6e:
50:66:5c:5f:98:22:be:cf:ea:01:bd:86:fd:01:05:
ea:9d:62:26:bf:af:0c:4b:d4:82:cc:28:d5:bf:6f:
17:f2:9f:b7:32:91:c5:58:7f:b1:04:6b:5a:15:30:
4c:be:23:00:30:ab:10:2a:06:fc:91:f2:91:74:b7:
e6:e4:64:17:9a:a7:fc:96:39:bf:aa:3d:3b:f0:f2:
fb:f5:74:fe:a7:57:dd:66:53:d7:f7:74:be:e9:13:
7c:98:a7:7b:d8:2b:7b:22:5d:df:da:ab:59:56:ae:
29:c1:b8:31:34:f7:cd:f1:be:1d:ed:15:48:40:c8:
44:02:2e:26:ba:e9:b4:69:09:84:d7:61:ce:49:ed:
33:e1:f6:c8:81:d4:5a:79:dc:d4:d6:f6:3e:c3:df:
e1:e9:b1:b3:19:d2:9e:4b:cb:d7:24:bc:cb:aa:74:
71:5b:15:fc:08:91:94:8b:b6:a3:04:bb:12:17:aa:
4e:74:1d:43:ff:d4:68:11:a9:fe:04:98:67:cf:49:
74:2f:4d:5d:82:0b:83:f3:18:8f:a4:53:d9:5c:6e:
78:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4F:D7:15:43:24:80:3A:64:93:BE:1A:A2:C4:24:34:72:E4:A1:8C
X509v3 Authority Key Identifier:
keyid:B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c0:da:05:e5:2d:99:93:79:d5:0c:7f:0b:75:ce:f7:c0:33:
92:60:b7:a6:a6:a6:6e:b3:68:ec:2e:76:79:41:26:c7:ee:80:
0d:79:86:36:17:fd:2e:03:cd:41:fa:de:80:5b:88:e6:db:36:
dd:52:f4:28:8c:18:57:01:3a:8f:16:b9:a0:9e:08:08:33:50:
88:1b:9a:3b:7b:d0:f9:fa:fc:6f:e9:02:9d:e5:5b:a0:cc:a0:
de:b0:42:4d:57:bf:e7:91:ef:94:13:fc:4a:a0:e8:62:2a:a0:
51:3c:8e:18:73:fd:2c:5b:e7:87:fe:b3:50:a1:58:6f:b2:04:
f2:3d:b4:e1:2d:3f:94:14:ed:d4:fe:8e:b4:79:16:35:4d:85:
a7:f2:50:a9:3c:24:73:9c:42:5b:34:12:e9:29:45:fe:79:37:
bc:64:3d:9d:f5:01:a2:08:88:56:c5:07:42:24:2f:a5:f7:91:
56:bb:71:72:5c:12:42:36:89:95:a8:1c:f4:6b:ef:21:56:6d:
b6:92:6a:49:bf:34:30:a8:cb:4b:25:8e:f5:56:9e:f4:63:af:
4a:85:0e:96:50:b7:aa:52:47:22:b0:33:c0:ae:40:a6:a4:8a:
97:5a:9b:81:03:f1:fa:e7:ba:1d:3a:25:79:11:7e:b1:21:b7:
28:df:2e:f4
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OUMyMzAxMTAvBgNVBAUTKEI1RDQ2QzBGNzVCQkJGMjQxMTI5OEFFQkQyQjU2MkI1
QUE5NUVDNkEwHhcNMjYwNzA0MTkyNDA0WhcNMjYwNzExMTkyNDA0WjAYMRYwFAYD
VQQDEw02YTQ5NWRkNS1hOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyEvXPHe2qIbDZ3+3/ZOjh6YLSREz8VLBXhdTcIDc7+fDLmEFyFLERhSKCm5Q
ZlxfmCK+z+oBvYb9AQXqnWImv68MS9SCzCjVv28X8p+3MpHFWH+xBGtaFTBMviMA
MKsQKgb8kfKRdLfm5GQXmqf8ljm/qj078PL79XT+p1fdZlPX93S+6RN8mKd72Ct7
Il3f2qtZVq4pwbgxNPfN8b4d7RVIQMhEAi4muum0aQmE12HOSe0z4fbIgdRaedzU
1vY+w9/h6bGzGdKeS8vXJLzLqnRxWxX8CJGUi7ajBLsSF6pOdB1D/9RoEan+BJhn
z0l0L01dgguD8xiPpFPZXG54kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOdP1xVD
JIA6ZJO+GqLEJDRy5KGMMB8GA1UdIwQYMBaAFLXUbA91u78kESmK69K1YrWqlexq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMC8yOTU0QUJEQzY1
NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5UVJLWXJyMHJWaXRhcVY3
R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3RkUnNEM1c3dnlRUktZcnIwclZpdGFxVjdHby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
QzIzMC8yOTU0QUJEQzY1NEUxMUVBOTBDNjM1ODBDNEY5QUUwMi90ZFJzRDNXN3Z5
UVJLWXJyMHJWaXRhcVY3R28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAHsDaBeUtmZN51Qx/C3XO98AzkmC3pqambrNo7C52eUEmx+6ADXmGNhf9LgPN
QfregFuI5ts23VL0KIwYVwE6jxa5oJ4ICDNQiBuaO3vQ+fr8b+kCneVboMyg3rBC
TVe/55HvlBP8SqDoYiqgUTyOGHP9LFvnh/6zUKFYb7IE8j204S0/lBTt1P6OtHkW
NU2Fp/JQqTwkc5xCWzQS6SlF/nk3vGQ9nfUBogiIVsUHQiQvpfeRVrtxclwSQjaJ
lagc9GvvIVZttpJqSb80MKjLSyWO9Vae9GOvSoUOllC3qlJHIrAzwK5ApqSKl1qb
gQPx+ue6HToleRF+sSG3KN8u9A==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:44 2026 by rpki-client