
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json)
Hash identifier: X6tKeQwIiVzKSCZIruvmeqXJy9IrcJw0Kr7YJLC2ppo=
Subject key identifier: E0:B9:47:3D:68:31:DA:2B:11:C5:6F:44:FC:FA:D6:84:BD:76:2A:E8
Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC
Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC
Certificate serial: 029A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
Manifest number: 0293
Signing time: Wed 15 Jul 2026 02:37:55 +0000
Manifest this update: Wed 15 Jul 2026 02:37:54 +0000
Manifest next update: Wed 22 Jul 2026 02:37:54 +0000
Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 6zjfuxxSQqq6CQUvzyTnRSjDfLspYWagYbNMO9Oss9Q=)
2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: 94M44dsN95Cfdn+68CbMlhuF5n5qBQCEV7YwA9S7Ln8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl
rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Jul 2026 02:37:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666 (0x29a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC
Validity
Not Before: Jul 15 02:37:54 2026 GMT
Not After : Jul 22 02:37:54 2026 GMT
Subject: CN=6a56f282-d29b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:ae:d4:72:3f:90:06:31:4b:e2:93:ed:c7:
54:34:3d:36:aa:03:06:c9:0f:5e:98:7e:1f:7c:9b:
27:d6:85:04:99:9f:9e:33:6c:ce:3e:1e:8e:08:c7:
03:09:a1:60:95:5d:bc:e7:0d:ac:88:56:8f:41:bf:
20:ad:15:07:4b:29:0b:2e:ff:a9:51:aa:6a:63:72:
b6:eb:d0:cd:29:f4:f6:af:85:37:18:26:9c:3e:18:
88:6a:c5:ec:20:19:99:48:7c:a1:ef:2e:85:bc:9c:
eb:6b:67:6f:ba:28:a0:1e:78:f7:91:15:29:a4:f8:
3b:2f:26:57:b5:4e:96:a6:92:a6:d0:1f:06:80:6a:
b8:89:e6:79:c9:20:69:ce:06:36:d5:9f:68:f5:03:
e4:05:ed:6c:ab:bf:3c:3c:60:68:be:09:ca:e2:ac:
73:33:4d:99:0a:a0:30:6b:1e:e7:b5:23:6f:c1:1d:
e3:b0:c6:84:91:ee:16:9c:80:fc:55:03:95:23:35:
dc:12:c9:fb:3e:ac:4a:28:c0:85:91:35:db:e1:17:
6d:a7:d1:19:3c:99:cc:ab:2f:7d:88:8e:7a:7e:c9:
e9:fa:17:ed:2a:9f:2a:3e:b7:29:af:ae:0e:74:55:
90:fb:e4:25:65:3f:db:16:4b:6b:b3:76:d5:0d:5a:
d4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B9:47:3D:68:31:DA:2B:11:C5:6F:44:FC:FA:D6:84:BD:76:2A:E8
X509v3 Authority Key Identifier:
keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
36:94:89:e7:6a:06:1d:e0:3f:0e:53:0d:70:4d:57:3d:eb:6a:
39:b2:a4:69:86:cc:92:16:02:b7:26:a2:4e:f7:03:96:a2:96:
d9:a5:4f:09:69:93:98:0f:bf:ef:12:e8:84:ae:ff:9c:2f:b3:
db:c2:9a:f5:55:6a:6a:d5:dd:75:81:c7:a8:03:5c:80:78:28:
1a:06:65:21:c9:9e:c3:e4:e6:41:c6:71:2b:f4:8f:43:8f:12:
92:d3:51:79:10:60:10:18:49:dd:3d:2d:cd:8e:5c:ca:a4:1d:
38:00:2f:37:b2:dd:56:0e:f4:0e:38:ad:c8:cf:74:ac:36:ce:
3b:2e:30:b1:8e:ed:6b:0b:7f:d7:8f:5f:18:61:91:67:27:66:
8a:05:31:ed:d4:4b:b4:d3:fe:b8:54:e9:d4:22:9d:0e:9d:39:
d8:e3:04:58:41:21:d8:8a:63:5b:7e:f4:a7:0c:61:00:f2:63:
69:68:ac:e7:2d:78:32:27:84:5e:a7:09:05:ae:0e:da:c6:84:
94:a3:6a:59:18:2c:76:00:ac:22:a8:04:64:9a:d5:eb:39:c2:
92:92:d5:ab:90:22:e2:07:42:1b:9c:9e:d4:88:8f:f6:18:f2:
ca:a9:58:3e:51:31:fd:43:37:10:3a:61:c6:61:1f:ae:48:08:
16:67:53:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 19:26:22 2026 by rpki-client