
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft
File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json)
Hash identifier: qxzm1YD/cPsYoL6CdMfrH3rhu0UBWrdkFo9NorJNXnM=
Subject key identifier: 6C:88:41:2F:26:98:4A:BA:F7:9A:00:3F:01:98:82:C9:47:FB:F7:37
Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0
Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0
Certificate serial: D1
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft
Manifest number: CD
Signing time: Fri 17 Jul 2026 08:02:08 +0000
Manifest this update: Fri 17 Jul 2026 08:02:07 +0000
Manifest next update: Fri 24 Jul 2026 08:02:07 +0000
Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: PhryC6GCy+qu1TAGSscD8EC9SvAKi6GvhDl0OMuM3kw=)
2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 0Xdlp+Jjf+yeb2d/P0L7IU19P+mYj01Gp9Tj8N+RxJQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl
rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209 (0xd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0
Validity
Not Before: Jul 17 08:02:07 2026 GMT
Not After : Jul 24 08:02:07 2026 GMT
Subject: CN=6a59e17f-972a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:65:76:ef:5f:e2:63:e0:07:57:aa:9d:66:62:
09:f6:7a:11:c7:59:b9:06:98:90:9b:82:19:32:f1:
be:85:67:93:b2:1a:c8:bc:3a:88:32:40:4b:fb:f6:
26:53:67:5c:b2:f5:f3:43:2e:2e:6c:96:db:b1:cb:
3f:af:35:b9:13:91:f0:0e:46:73:57:36:3c:fe:47:
02:5c:32:7d:61:7d:0f:19:73:e3:1b:4f:45:fa:16:
34:aa:36:85:c1:2e:ac:d0:78:53:3e:2c:7e:70:bd:
3b:0c:06:d0:fd:85:49:07:7e:72:59:a5:94:97:f4:
ae:86:f6:71:5a:1f:08:4e:88:a7:5a:e7:fc:da:96:
51:90:f6:59:ea:07:07:e9:8a:49:c7:3d:5a:99:15:
64:03:fb:1b:06:b2:70:e9:6a:64:34:4e:3f:05:d8:
08:4e:cb:1b:8c:23:c7:7a:92:94:41:b6:d0:ed:1f:
88:97:39:1f:99:36:e9:54:52:5d:53:b2:6d:42:a5:
49:c0:7f:37:9f:2c:1b:e5:d2:cc:e5:b3:59:c1:f3:
a4:34:9c:ba:d9:05:3d:73:2f:8e:34:36:51:80:94:
af:7b:df:af:24:90:10:30:0d:4a:1a:01:68:ff:1f:
65:33:e6:76:34:25:d5:46:1d:40:90:d4:ae:3d:1f:
6c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:88:41:2F:26:98:4A:BA:F7:9A:00:3F:01:98:82:C9:47:FB:F7:37
X509v3 Authority Key Identifier:
keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3c:d6:4b:6d:41:75:b6:e1:f7:b8:0c:14:28:84:51:d4:48:35:
af:27:95:a5:08:65:70:4b:8a:74:8a:9b:4c:6b:f4:00:21:b6:
2e:55:64:37:0c:e5:f8:bd:1b:d8:5c:20:c9:10:fa:6c:7f:7f:
c9:a7:97:13:d9:86:8d:a8:a4:3e:c9:e7:2b:16:fe:dd:9f:1b:
3a:bd:af:2a:4b:65:99:96:55:f8:b8:24:91:0c:67:82:93:f8:
fb:49:cc:da:0d:bb:af:19:05:89:ac:6e:10:92:b1:31:8f:6e:
6a:f0:0c:fc:80:9f:ee:26:45:09:f9:c8:a9:15:49:f5:93:90:
3d:11:ed:f7:57:1f:81:c9:19:43:b7:ef:36:39:a6:57:26:82:
78:b9:ef:a8:e1:25:61:52:e3:58:6a:47:a4:88:90:74:5f:05:
aa:60:de:cd:84:d2:e8:37:54:e8:84:35:6e:72:81:5e:af:a5:
fa:38:7c:d3:9c:1d:9c:c8:ba:18:9e:27:81:04:01:e7:21:53:
43:36:a2:57:f0:6f:4c:4e:68:ee:f3:5f:60:64:a9:0f:3b:f7:
e3:9b:30:f4:b6:19:8a:cb:05:ed:0f:81:84:34:0e:a0:ea:66:
8d:b0:ee:40:7d:89:b0:47:f5:ed:6a:fa:50:ab:36:1d:69:65:
18:63:fb:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:26:59 2026 by rpki-client