
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json)
Hash identifier: K5zaNnrpsV6VmaGmyMCtTKmHa9H2Se935BBe52+aTZ0=
Subject key identifier: E1:ED:04:4D:05:93:D5:7D:9D:3A:AA:CC:43:D8:F3:2D:58:1A:F0:EF
Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD
Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD
Certificate serial: 03D8
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
Manifest number: 03D0
Signing time: Fri 17 Jul 2026 01:13:20 +0000
Manifest this update: Fri 17 Jul 2026 01:13:19 +0000
Manifest next update: Fri 24 Jul 2026 01:13:19 +0000
Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: JuX/wF7EG9u1RGRjFd4qndg/DtWrE1zKHoopwoIwv2Q=)
2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: js/NeNf/P0ilTfK3hm4VU61TP33gO5AhYeKCE1H/UPQ=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl
rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 01:13:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 984 (0x3d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD
Validity
Not Before: Jul 17 01:13:19 2026 GMT
Not After : Jul 24 01:13:19 2026 GMT
Subject: CN=6a5981af-862c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:43:69:f6:af:bc:30:6d:01:7f:6b:8a:40:
ec:b6:7c:c4:d1:55:ef:60:62:97:09:29:2f:41:f0:
05:34:b6:ec:b2:8f:53:d2:05:63:a2:06:8f:9c:c6:
27:1e:f1:53:09:b8:64:b0:a9:c0:ef:dc:d3:3d:3a:
6f:67:06:eb:ce:6b:ae:52:d4:ec:86:c7:c8:a4:95:
61:6c:4d:a2:ca:eb:69:7c:f2:0d:4f:8c:29:f9:fb:
ff:77:37:cc:80:13:c3:0d:60:72:68:45:08:d3:f7:
16:22:89:cd:e3:42:c8:31:ec:b6:4b:65:14:d5:2b:
f9:32:84:b4:d8:a6:29:46:4b:e1:64:08:06:4b:76:
e3:12:9b:64:77:dc:1f:7b:84:34:d4:60:f8:1d:67:
55:de:81:94:86:8a:7b:e8:28:dc:36:e7:c6:a0:d1:
6d:5e:15:72:ad:cc:2a:7e:94:17:f9:90:86:4a:22:
1f:b9:b1:a2:3f:eb:72:48:97:1a:65:3d:fa:8d:07:
bb:fc:3d:e4:37:9c:7a:37:5f:cc:18:d6:53:b5:03:
3a:97:92:a8:cf:f3:51:7a:2f:63:7a:37:82:c8:1b:
a0:d6:dd:37:ea:db:0a:be:19:7d:4e:6d:8e:66:c5:
95:63:6b:d3:78:e3:86:f3:24:40:7b:81:f3:8e:f3:
76:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:ED:04:4D:05:93:D5:7D:9D:3A:AA:CC:43:D8:F3:2D:58:1A:F0:EF
X509v3 Authority Key Identifier:
keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:15:6c:b1:99:f1:ee:92:29:33:45:0f:e6:2c:55:41:5c:4e:
90:74:68:89:49:f2:06:98:c7:dd:89:d1:76:c4:d0:b1:c3:11:
31:f0:d6:d5:a7:ec:8e:4a:66:28:d6:85:d9:65:a5:6c:13:0a:
a8:bd:33:5b:07:28:ca:8d:ea:0e:1b:cc:8b:a4:db:96:d1:20:
0e:ef:4c:93:94:1e:6f:1d:21:16:c2:25:28:5f:76:ef:78:bf:
d6:56:e0:95:68:15:f5:9c:b4:b3:85:64:51:e5:02:f9:2a:c9:
c1:b8:c1:e2:3f:31:78:62:2a:31:a8:14:71:bf:70:51:c7:3a:
4f:8e:cd:89:d1:11:37:95:1b:b8:5a:c5:57:bd:4a:e6:d6:56:
18:d9:b8:fe:92:3f:ec:e3:f7:37:8e:e2:d3:1c:c6:b3:d2:dd:
22:d4:dd:fa:55:66:95:37:d2:f7:f3:e8:fa:98:e0:03:54:f6:
d6:10:ff:06:85:5d:fe:81:9a:bd:93:8d:41:65:10:6b:4c:01:
ed:de:11:5c:7b:aa:e7:79:9d:b7:cc:e0:9c:87:f6:6a:e9:81:
4a:c2:35:15:f2:70:1c:5b:d7:37:fa:0a:3e:db:a1:29:12:f8:
49:f5:2f:c4:86:d5:88:86:76:4a:df:0e:23:c8:16:9a:5d:55:
a0:51:6e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:17 2026 by rpki-client