
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft
File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json)
Hash identifier: TVunOWICs3pMzBl/IIL0FJi2u7x/fQWtIBAseJSrKBU=
Subject key identifier: E9:8F:13:36:7D:C5:E2:83:C0:42:94:17:3D:86:F7:00:89:41:30:FC
Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4
Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4
Certificate serial: E9
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft
Manifest number: DB
Signing time: Fri 17 Jul 2026 08:00:18 +0000
Manifest this update: Fri 17 Jul 2026 08:00:17 +0000
Manifest next update: Fri 24 Jul 2026 08:00:17 +0000
Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: 8PBemlkErzlNq/yWgEk9VaUyXtCD9RQReNj1s92ONSY=)
2: D999F880AF4411F0A866CC48C4F9AE02.roa (hash: 2rQsXi5kIwQ2IE+rYx9M2psZsNK3ECigUyxfaVNd7kI=)
3: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: XTg2evwkR4VvSVQWu251hii2ssGz9ZlroApKBF0azrE=)
4: B87594FC08B311F1954B37591C3D8C67.roa (hash: H6vYE+gxhuAKlVgXnsRMmqmTt0CZdQJgg6x87GzOftE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl
rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233 (0xe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4
Validity
Not Before: Jul 17 08:00:17 2026 GMT
Not After : Jul 24 08:00:17 2026 GMT
Subject: CN=6a59e112-f0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:38:36:60:22:e5:8e:31:07:d1:11:1d:e0:58:
04:56:c7:29:30:10:e8:02:cf:80:01:e6:50:0d:24:
31:b1:4e:ec:4e:19:3c:4b:26:23:ed:ef:ef:4e:ba:
54:6d:9f:88:ad:a2:9e:5a:89:26:0a:d6:d2:85:f8:
28:24:4e:00:42:d6:ea:d7:a2:01:1d:fe:f3:e7:bb:
c3:da:33:7e:8c:de:07:3c:f1:d2:0c:e6:4e:2f:a0:
da:ba:5b:89:d7:2e:7d:dd:8e:48:73:d7:88:cd:26:
c5:47:a5:f1:ab:a8:27:93:71:eb:2d:c2:78:5d:ca:
79:f9:fb:c4:89:ee:c3:f4:17:7f:50:f0:bc:53:f7:
2b:d2:88:fe:4d:72:45:99:f9:c8:82:38:17:aa:97:
60:89:55:ff:53:8e:ad:5e:a6:e3:4f:cc:c4:bd:b7:
6b:65:59:b1:05:82:b0:63:fb:2b:8c:7d:e6:5a:fb:
57:d0:c8:21:d3:7e:2e:b6:a1:ac:c2:da:f0:4c:ef:
ac:ba:7d:c1:7a:75:59:d1:99:ba:74:d0:89:00:1f:
a6:84:23:9f:84:6a:74:fe:ee:09:26:92:bc:58:2d:
4a:db:69:67:29:3d:c9:93:54:46:62:ac:29:2e:0e:
ad:ae:3a:b4:af:3f:f7:70:d3:a8:4e:19:b3:dd:10:
63:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8F:13:36:7D:C5:E2:83:C0:42:94:17:3D:86:F7:00:89:41:30:FC
X509v3 Authority Key Identifier:
keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
db:79:b5:34:b0:55:89:45:7d:17:0e:e6:6c:a4:8b:22:6b:99:
bf:ba:ee:04:07:a0:8a:2d:73:be:9e:8f:98:88:ce:42:b2:81:
dd:b9:39:fe:83:ef:11:c6:bd:93:52:1a:30:19:7b:7b:df:c8:
35:cd:cf:46:7e:92:69:6a:bd:9a:50:e6:25:b1:bf:25:df:3c:
89:4c:62:15:c5:10:b1:83:62:54:c6:54:73:b6:7f:71:7f:cf:
5e:6d:26:80:f0:8f:06:fb:93:0f:ff:b3:80:3b:2e:7b:f3:11:
e0:37:13:dd:50:a0:b9:82:61:be:c4:3f:3e:62:27:cb:34:08:
4d:d6:45:10:a4:59:16:eb:4e:cd:5c:60:6a:e9:6d:8c:f3:cc:
53:7d:ba:c6:24:82:8f:78:cf:42:f0:58:ce:04:fd:6e:5d:1a:
4d:79:6b:79:81:22:b2:65:2c:5c:4b:78:ae:20:1a:77:c9:81:
34:c8:c8:02:42:b0:6d:35:5c:47:59:55:d7:1e:3f:76:10:49:
c3:f8:9f:71:f3:3e:a8:04:aa:47:ab:86:d9:6e:44:82:18:6b:
a1:da:e9:bd:2e:d8:99:db:ac:bb:58:57:0a:1e:f8:11:ba:18:
1e:cc:94:ef:3f:50:b0:3d:61:84:c2:f0:67:c6:5e:37:37:1a:
ba:f0:f9:6a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkVBOEIxMTAvBgNVBAUTKDQxQzc1NzE0Mjk5QTU3OEREMTkwRkQxRjczMDk1NUIx
RkQ5QUMxRjQwHhcNMjYwNzE3MDgwMDE3WhcNMjYwNzI0MDgwMDE3WjAYMRYwFAYD
VQQDEw02YTU5ZTExMi1mMGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqTg2YCLljjEH0REd4FgEVscpMBDoAs+AAeZQDSQxsU7sThk8SyYj7e/vTrpU
bZ+IraKeWokmCtbShfgoJE4AQtbq16IBHf7z57vD2jN+jN4HPPHSDOZOL6DauluJ
1y593Y5Ic9eIzSbFR6Xxq6gnk3HrLcJ4Xcp5+fvEie7D9Bd/UPC8U/cr0oj+TXJF
mfnIgjgXqpdgiVX/U46tXqbjT8zEvbdrZVmxBYKwY/srjH3mWvtX0Mgh034utqGs
wtrwTO+sun3BenVZ0Zm6dNCJAB+mhCOfhGp0/u4JJpK8WC1K22lnKT3Jk1RGYqwp
Lg6trjq0rz/3cNOoThmz3RBjdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOmPEzZ9
xeKDwEKUFz2G9wCJQTD8MB8GA1UdIwQYMBaAFEHHVxQpmleN0ZD9H3MJVbH9msH0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUE4Qi9CQTA4QUE0MjRC
ODExMUYwOEY2NTUwN0VDNEY5QUUwMi9RY2RYRkNtYVY0M1JrUDBmY3dsVnNmMmF3
ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdmUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
RUE4Qi9CQTA4QUE0MjRCODExMUYwOEY2NTUwN0VDNEY5QUUwMi9RY2RYRkNtYVY0
M1JrUDBmY3dsVnNmMmF3ZlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEA23m1NLBViUV9Fw7mbKSLImuZv7ruBAegii1zvp6PmIjOQrKB3bk5/oPvEca9
k1IaMBl7e9/INc3PRn6SaWq9mlDmJbG/Jd88iUxiFcUQsYNiVMZUc7Z/cX/PXm0m
gPCPBvuTD/+zgDsue/MR4DcT3VCguYJhvsQ/PmInyzQITdZFEKRZFutOzVxgault
jPPMU326xiSCj3jPQvBYzgT9bl0aTXlreYEismUsXEt4riAad8mBNMjIAkKwbTVc
R1lV1x4/dhBJw/ifcfM+qASqR6uG2W5EghhrodrpvS7Ymdusu1hXCh74EboYHsyU
7z9QsD1hhMLwZ8ZeNzcauvD5ag==
-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:01 2026 by rpki-client