
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json)
Hash identifier: rwLkUC1Y2S9nZVBXf1uF7XqeWAC2mquXPLym2gN2DwI=
Subject key identifier: 4A:B9:A1:40:BF:B9:73:BF:C7:8F:2B:6E:47:84:CD:FF:FA:6C:F4:DF
Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81
Certificate serial: 0295
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
Manifest number: 027B
Signing time: Sun 05 Jul 2026 02:44:17 +0000
Manifest this update: Sun 05 Jul 2026 02:44:16 +0000
Manifest next update: Sun 12 Jul 2026 02:44:16 +0000
Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: ZVHHs30lioo1LUMf/jv7LiSw2EdmeCriCMxBmVoirvs=)
2: A91AF6A8CE7811EF89FA3944C4F9AE02.roa (hash: /XptYTwhi0uVDIVVDFau7tevix2taawngS3ewC7+5mA=)
3: 2B8EF9AA083911F0A051CE72C4F9AE02.roa (hash: L0al7k74eWiWJ3CDPsdhftXr9mpgHroxqH7auSGrGNY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl
rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 02:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661 (0x295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F3B2E, serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81
Validity
Not Before: Jul 5 02:44:16 2026 GMT
Not After : Jul 12 02:44:16 2026 GMT
Subject: CN=6a49c501-9cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8c:45:85:96:dc:31:30:6a:dc:89:c0:d9:4f:
be:a9:68:65:e9:27:be:65:c2:53:2b:3c:54:c3:a0:
8f:f3:36:02:29:c7:a9:4a:82:77:7a:64:5f:f1:59:
5a:a6:1f:31:86:a9:43:61:2a:12:4b:06:39:92:d2:
41:31:18:7f:b5:21:08:7f:ef:7b:87:e5:b8:dc:68:
62:f2:99:96:16:99:3e:2f:1e:fd:a0:e4:99:7f:29:
13:65:94:0a:c0:ed:8c:90:3b:4e:88:fd:f3:5a:91:
55:3a:2e:d8:4f:2f:49:0a:26:79:f4:d4:be:56:31:
74:aa:0b:9a:e0:74:5a:55:7d:02:43:28:62:e6:10:
04:53:a6:a6:52:e1:47:34:ea:b3:84:59:29:07:8e:
d7:5e:8f:3a:99:4c:29:f7:2d:a9:93:1b:2c:46:c2:
6c:a5:36:a8:83:cd:58:eb:9f:18:16:52:dc:72:d9:
5b:d1:a3:8b:ad:1d:9d:f0:22:7f:a8:10:57:23:42:
7a:10:00:05:5e:92:bd:8d:81:6f:0a:ed:13:09:7c:
b4:13:2b:43:48:8d:10:de:fd:1d:d3:01:12:da:09:
c6:04:62:d5:44:7b:de:d3:10:4a:a9:b1:78:3d:8e:
ae:e1:33:bc:14:f6:de:87:eb:a0:ff:ae:77:d6:c0:
81:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B9:A1:40:BF:B9:73:BF:C7:8F:2B:6E:47:84:CD:FF:FA:6C:F4:DF
X509v3 Authority Key Identifier:
keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
43:67:4e:c7:b6:dd:f4:1b:63:1e:ba:30:96:92:fb:37:84:82:
89:c0:c3:e0:ef:f4:b6:73:ad:42:5a:88:c0:a1:cf:98:69:bd:
d8:85:48:60:d8:47:12:53:8f:89:da:34:11:6e:be:cd:07:d9:
1e:2c:80:71:d4:74:a3:dd:7a:7d:c4:d3:ee:86:aa:8f:2e:6f:
53:f0:d6:fc:c6:a7:ed:ee:0e:6c:60:40:5e:5c:df:7f:5c:78:
2e:6d:b1:bb:0c:cb:41:5f:2b:18:ce:cb:35:1a:84:df:0e:74:
56:45:4a:95:c8:08:71:f4:29:88:e5:25:b7:88:85:c7:69:2b:
47:33:cd:08:29:95:e0:c9:21:6c:bc:6f:e7:08:72:bd:b2:01:
b2:5f:12:03:e7:f0:2b:d5:82:7c:d0:98:d4:ef:a6:d1:ac:a2:
ec:57:63:22:25:37:fd:bc:58:ab:38:da:35:26:0a:dc:6b:5d:
79:7a:00:f0:ed:6a:98:3c:42:23:55:08:cf:df:f2:17:f7:96:
33:5a:24:e5:5e:fb:63:58:14:38:58:3e:94:fb:0c:7f:8f:c9:
ae:25:75:a4:38:f2:95:54:3f:a1:41:b9:a7:c5:19:95:70:05:
c8:81:18:3b:95:12:69:60:62:43:b6:37:6c:01:dd:da:09:5e:
88:95:fb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:52:15 2026 by rpki-client