
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft
File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json)
Hash identifier: 4JmnpZd0aPcMQMoUhp+NX7BkuN+w3CpOZ3VeU6FrM8U=
Subject key identifier: F8:4B:FE:99:83:8B:32:D1:E8:A3:F5:7D:C6:C0:10:D5:A5:7E:0D:1E
Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB
Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB
Certificate serial: 02BB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft
Manifest number: 029E
Signing time: Tue 07 Jul 2026 03:28:37 +0000
Manifest this update: Tue 07 Jul 2026 03:28:36 +0000
Manifest next update: Tue 14 Jul 2026 03:28:36 +0000
Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: piH2616wsyqmuIG72RJbuz78zeRUYXMRbLmqh/qajRs=)
2: 08A1C0B8DC5011EF9C212C5CC4F9AE02.roa (hash: 6sjpy6GriqELAPGgjJdFUt57xHCHCLQzT9kEpI0w6Mg=)
3: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: v5FOCrkT7bwg0TVjJC2RnsG6lxQLJwnHry99/PwnEBQ=)
4: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: xDjn+cobUE2agLkdimK21R3Sdz0e7azaiAPMZg9qQro=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl
rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Jul 2026 03:28:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 699 (0x2bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB
Validity
Not Before: Jul 7 03:28:36 2026 GMT
Not After : Jul 14 03:28:36 2026 GMT
Subject: CN=6a4c7265-4e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:fc:ae:05:3d:41:9e:dd:fb:c0:dd:8d:65:
34:25:f9:9d:77:42:a7:f4:2c:fc:60:2b:cb:c5:fc:
29:65:f4:ad:cd:f8:11:a2:fb:d7:13:6b:2d:5d:8c:
a4:c8:6f:05:18:d2:10:2c:92:c9:2d:ee:3f:b5:a9:
71:bb:d9:52:be:14:39:b8:8d:11:01:03:3c:a8:a1:
94:dc:d5:c2:f0:aa:28:df:56:b2:d6:50:df:44:8e:
78:d9:34:f5:08:db:96:e8:d7:e1:de:b0:0c:51:4c:
fd:19:24:95:b6:6d:9a:0c:3f:04:33:ce:37:4e:c1:
04:fa:87:c8:a6:22:fc:b7:19:58:c2:48:1e:f4:cf:
52:54:7c:ac:ca:71:8e:4d:19:1c:e8:55:91:17:55:
f2:bc:38:83:9a:10:54:34:ff:b7:0d:61:58:05:54:
b9:2a:45:61:95:9d:e0:0c:21:3b:b3:d1:0f:15:dc:
71:13:f7:47:5f:9f:dd:1f:0a:32:4d:eb:48:a1:89:
81:ad:41:7d:65:10:af:ad:d4:08:6d:c9:dd:22:35:
78:82:99:c8:8f:f2:b4:63:e7:e8:b1:ff:ca:47:ac:
fd:c1:51:45:b5:7d:c4:f0:ef:a9:e9:3e:88:84:9d:
c0:ed:71:a2:dc:63:b3:99:84:28:5a:5b:61:77:d1:
22:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4B:FE:99:83:8B:32:D1:E8:A3:F5:7D:C6:C0:10:D5:A5:7E:0D:1E
X509v3 Authority Key Identifier:
keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
d2:56:a0:99:27:bd:73:05:69:41:b5:5e:2d:c0:56:75:3a:74:
a4:f1:72:3b:d0:80:f0:b4:0d:8c:ff:9d:2a:04:17:8d:3f:a7:
f0:f6:07:90:57:e7:87:b9:02:c9:91:c6:f3:8e:47:05:17:15:
8c:64:92:45:9c:b7:f9:ec:a1:f0:d2:d5:b8:64:e3:3e:42:b7:
11:96:bd:06:c2:1c:eb:39:c0:14:8a:fa:1b:ef:66:78:cb:6a:
0a:1a:b4:b1:74:65:0a:f5:54:98:ad:2e:ee:be:e8:af:ce:74:
af:76:7e:f4:ef:5c:ea:73:55:4a:b9:0d:88:75:95:07:fe:22:
a7:10:59:89:c1:3a:76:ba:91:57:5d:6f:89:be:40:6f:9e:80:
4e:cc:b6:fe:bd:e9:8b:25:a4:ed:a7:8b:46:1c:33:1c:ab:8f:
d4:f7:7e:41:3b:ec:75:e9:74:cd:bf:26:85:28:a0:cf:3a:cb:
df:7a:50:a8:69:3f:28:e5:ad:6d:56:59:2c:56:97:e9:26:a0:
73:ba:8c:90:95:8a:9e:a4:f7:b8:51:2c:26:07:4e:ca:2c:79:
bb:fd:7f:9f:fd:74:62:06:43:af:a2:51:56:72:a1:a1:84:11:
37:c2:d9:76:bf:86:7d:ee:98:a4:6e:ca:0a:2b:28:5c:60:1c:
c6:8a:a6:ca
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE
QjczNzA5QkIwHhcNMjYwNzA3MDMyODM2WhcNMjYwNzE0MDMyODM2WjAYMRYwFAYD
VQQDEw02YTRjNzI2NS00ZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyp78rgU9QZ7d+8DdjWU0Jfmdd0Kn9Cz8YCvLxfwpZfStzfgRovvXE2stXYyk
yG8FGNIQLJLJLe4/talxu9lSvhQ5uI0RAQM8qKGU3NXC8Koo31ay1lDfRI542TT1
CNuW6Nfh3rAMUUz9GSSVtm2aDD8EM843TsEE+ofIpiL8txlYwkge9M9SVHysynGO
TRkc6FWRF1XyvDiDmhBUNP+3DWFYBVS5KkVhlZ3gDCE7s9EPFdxxE/dHX5/dHwoy
TetIoYmBrUF9ZRCvrdQIbcndIjV4gpnIj/K0Y+fosf/KR6z9wVFFtX3E8O+p6T6I
hJ3A7XGi3GOzmYQoWlthd9Ei+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPhL/pmD
izLR6KP1fcbAENWlfg0eMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw
QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND
YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP
SjZXQjJKUkdXOXpiYzNDYnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEA0lagmSe9cwVpQbVeLcBWdTp0pPFyO9CA8LQNjP+dKgQXjT+n8PYHkFfnh7kC
yZHG845HBRcVjGSSRZy3+eyh8NLVuGTjPkK3EZa9BsIc6znAFIr6G+9meMtqChq0
sXRlCvVUmK0u7r7or850r3Z+9O9c6nNVSrkNiHWVB/4ipxBZicE6drqRV11vib5A
b56ATsy2/r3piyWk7aeLRhwzHKuP1Pd+QTvsdel0zb8mhSigzzrL33pQqGk/KOWt
bVZZLFaX6Sagc7qMkJWKnqT3uFEsJgdOyix5u/1/n/10YgZDr6JRVnKhoYQRN8LZ
dr+Gfe6YpG7KCisoXGAcxoqmyg==
-----END CERTIFICATE-----
Generated at Wed Jul 8 19:57:28 2026 by rpki-client