
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json)
Hash identifier: V+STMAHctSVJXXcJjFL2V3pV1OlM4/48B9YN4p3+iY4=
Subject key identifier: 4B:AD:20:88:51:7E:5B:4A:57:0A:36:E1:BC:CC:5D:9B:E3:CA:6F:B8
Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Certificate serial: 0100
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
Manifest number: FC
Signing time: Wed 11 Mar 2026 05:07:40 +0000
Manifest this update: Wed 11 Mar 2026 05:07:40 +0000
Manifest next update: Wed 18 Mar 2026 05:07:40 +0000
Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: IpMQUasb41JfnzY71kaasymAscy3gMh8DkEF9xD32xM=)
2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: P5+kdRcpYE+yFLD64Qimw3RoARkVgaUfcrwZcF1uiC8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 18 Mar 2026 05:07:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256 (0x100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0
Validity
Not Before: Mar 11 05:07:40 2026 GMT
Not After : Mar 18 05:07:40 2026 GMT
Subject: CN=69b0f89c-e97f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dc:2f:0c:cd:fc:60:8b:03:51:39:a6:45:46:
a4:dd:ab:e6:60:fe:ef:fa:66:45:d0:ec:c3:65:69:
2e:5c:81:4c:30:f3:d5:81:c2:32:de:92:1c:75:ed:
bf:b4:54:31:36:5b:26:98:63:75:b2:5d:c9:18:49:
a1:90:97:b8:57:64:d6:30:ee:6d:26:a3:a4:c1:99:
c3:21:7a:2f:17:9e:be:dc:82:3c:b4:82:79:f7:33:
f1:9a:3d:52:72:ce:6d:7d:5c:bc:88:de:bf:96:41:
fb:90:27:8f:29:71:c4:14:f9:f0:07:0f:cd:fa:70:
5d:f6:b0:a5:9f:f6:b4:a9:5d:76:78:d2:b0:f9:54:
62:fc:39:c7:b4:48:b6:c0:6a:6d:50:53:ab:a6:a9:
8e:a4:82:3a:9f:93:5e:21:86:31:63:6e:2f:02:a7:
e9:71:9b:4e:d4:bb:c7:e0:9d:bc:05:61:9c:2e:06:
a2:12:ba:81:d6:7a:4f:70:ed:7d:93:59:89:0c:4d:
81:01:55:0b:ab:f3:d7:c2:16:d0:ea:ec:bd:d3:ee:
c0:31:41:2e:d2:8a:6e:81:19:97:18:7d:1d:d6:48:
5f:b4:6a:a1:8b:72:73:d7:6a:63:2b:a5:5f:f8:da:
f6:b6:db:10:69:61:f2:29:02:1a:0c:83:41:f6:62:
c3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AD:20:88:51:7E:5B:4A:57:0A:36:E1:BC:CC:5D:9B:E3:CA:6F:B8
X509v3 Authority Key Identifier:
keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:f6:b1:b8:1d:63:ee:03:0a:5a:6d:04:ec:33:7c:44:6e:f2:
da:4e:35:9f:6d:7e:c3:2c:ef:4a:57:01:80:12:5f:63:19:39:
0f:b0:fd:44:28:18:fd:d6:86:72:49:6e:79:eb:2d:cb:cc:4c:
39:64:da:11:b6:8f:cd:48:dd:61:56:df:57:3a:a9:86:42:e7:
f5:4e:58:aa:11:52:75:4b:a4:f7:31:f9:ab:08:09:6f:87:3c:
92:c8:45:d0:6d:ac:b0:31:10:d6:b5:79:ce:17:40:90:b7:61:
3a:50:a3:f0:1b:92:93:26:d8:a2:f1:f1:38:65:8a:65:54:64:
db:a5:58:0b:e2:c1:1e:18:02:9e:be:b3:5a:43:55:cd:c4:d6:
a0:46:ca:9a:39:cd:25:ed:49:92:c8:58:8b:02:01:00:4a:f4:
d1:71:16:82:00:49:35:94:b3:2b:a9:bb:73:e5:bf:09:03:b4:
59:b9:3c:65:16:d4:13:38:8f:fa:6f:94:a1:80:f8:c7:fe:22:
1e:32:76:1a:41:e1:e2:37:cb:ea:6f:bb:18:39:44:98:7e:99:
c7:e3:44:f7:93:d6:f6:d1:ea:f2:a6:44:42:92:b2:79:74:39:
a3:8b:39:c9:4f:ea:a6:d2:cd:1e:c0:24:c7:ac:99:ee:55:a2:
74:94:9c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 07:25:07 2026 by rpki-client