
$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft
File: NmIvmQC0aq380FRk8Q1CsTBiUXY.mft (raw, json)
Hash identifier: /qkKnVC3WNUc0dTBbQRo6tcOmWRFB4iOrOuwSZCRJc8=
Subject key identifier: 43:FB:36:BB:8C:2A:56:D2:4C:72:7A:CE:1A:28:96:3B:03:A0:D2:51
Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76
Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176
Certificate serial: BD
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft
Manifest number: BB
Signing time: Fri 17 Jul 2026 08:13:04 +0000
Manifest this update: Fri 17 Jul 2026 08:13:03 +0000
Manifest next update: Fri 24 Jul 2026 08:13:03 +0000
Files and hashes: 1: NmIvmQC0aq380FRk8Q1CsTBiUXY.crl (hash: ZliOwifpDwB4x8f8jL5SAiZodtowia/NCUAeqE+Dt5c=)
2: 2518C04062E011F08D04F42EC4F9AE02.roa (hash: rrBoaZeZAYohnofQuu333DPGl97BqUXv9lxtd9Vptcg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl
rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:13:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189 (0xbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176
Validity
Not Before: Jul 17 08:13:03 2026 GMT
Not After : Jul 24 08:13:03 2026 GMT
Subject: CN=6a59e410-5314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:9a:55:c7:e9:51:73:84:3d:60:44:d0:dd:
c8:9a:99:78:6d:59:3e:fb:36:aa:33:b4:7a:e9:07:
4a:a0:6a:cd:5b:5d:e5:2d:a2:e0:a2:65:da:a0:7a:
5f:7e:14:98:ce:35:1c:4d:cb:10:90:68:45:f4:a0:
63:50:f9:3d:5c:9e:fd:53:bd:69:6c:20:76:90:33:
89:0e:fb:ec:8f:ac:7f:ca:e5:90:a6:11:b8:93:63:
dc:43:24:19:a2:2a:35:af:e8:9a:c4:b5:77:60:f2:
86:3d:9a:08:bf:87:c1:72:53:bb:d2:a1:98:be:ec:
05:d6:3f:2a:a7:68:0f:ff:06:df:cb:6d:b0:20:7f:
54:0d:49:95:b0:cb:42:b8:a2:bd:a0:19:e6:81:b3:
2a:57:cb:b4:50:27:b5:df:d0:95:9e:08:a0:5c:41:
f0:ca:23:54:81:ca:f0:39:67:9b:2f:2c:9f:e7:28:
8f:51:60:9e:28:3f:07:84:79:0e:15:47:d2:cc:5c:
a2:8e:5d:9f:a6:6a:14:c3:8b:89:b1:0a:eb:59:93:
fb:74:4f:19:ed:87:0c:92:ae:cc:46:78:0c:55:62:
5a:05:1d:11:da:26:e7:36:6e:44:a8:a2:09:a7:f4:
70:f3:ed:72:c7:49:06:3a:93:24:af:a5:e6:08:a3:
10:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FB:36:BB:8C:2A:56:D2:4C:72:7A:CE:1A:28:96:3B:03:A0:D2:51
X509v3 Authority Key Identifier:
keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
44:18:47:5f:80:01:b5:89:63:08:d0:13:78:15:88:e4:3a:65:
73:e2:8c:5b:22:de:53:88:de:1c:3c:11:99:78:58:8e:81:0b:
3d:a7:00:81:a8:54:ce:6d:fc:c5:b8:40:2f:5c:22:a4:6b:db:
3d:d9:d5:fd:10:ca:b5:3e:1c:32:35:02:4c:fa:14:aa:27:8e:
ba:04:dc:a3:18:51:cc:27:11:75:54:e4:aa:fb:f1:57:28:c4:
f8:5f:ac:a1:44:9c:e4:39:52:5a:3f:3d:fa:bf:1e:bd:60:ee:
cd:67:98:36:16:31:33:b5:0c:63:43:b8:33:16:19:41:4a:fd:
67:5c:03:b0:10:3b:f0:86:53:68:79:23:0a:71:a2:76:b0:7c:
4c:f2:d9:4e:59:ee:c3:04:08:6f:c5:53:01:5e:d4:d7:47:44:
86:c9:da:f4:9d:92:66:2c:2f:d7:57:0c:82:9f:1d:9b:7d:2c:
e8:3f:43:08:f7:b0:b2:48:60:38:e1:ce:b7:79:39:90:e7:2d:
77:94:7f:97:d8:c7:c6:44:87:e7:ce:a4:41:d9:95:e4:de:a8:
88:82:c7:f0:b8:d6:b6:d8:b0:ff:b8:e0:21:99:f8:c3:2c:90:
06:7d:d7:f2:fe:39:f1:5d:a5:07:dc:2e:1e:92:b1:42:90:da:
70:ac:22:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:16 2026 by rpki-client