
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft
File: 1pesTITI0RmFX1oM3aY13R44Xuc.mft (raw, json)
Hash identifier: Donf5e1k6xmHALdu0X5p1nLIzKlGROR6JKFnpg45jwI=
Subject key identifier: 64:F4:C6:41:A3:D7:37:08:C5:96:E3:83:AF:D3:02:87:3B:A0:4E:5C
Authority key identifier: D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7
Certificate issuer: /CN=A918A9FC/serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7
Certificate serial: 3535
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft
Manifest number: 3524
Signing time: Mon 02 Mar 2026 15:04:40 +0000
Manifest this update: Mon 02 Mar 2026 15:04:40 +0000
Manifest next update: Mon 09 Mar 2026 15:04:40 +0000
Files and hashes: 1: 1pesTITI0RmFX1oM3aY13R44Xuc.crl (hash: 5R93Rla52AcVuo74zyny+1P1X774n7WoFzoIaKX6sHE=)
2: 7859AE6A0B5511EABCBC343DC4F9AE02.roa (hash: OY0gqFhSrcsr3Ue2BAA7UCekieh8CcnhGOTNZC+wAEw=)
3: EADCDA1C8D9611EEBE392A3CC4F9AE02.roa (hash: +eQCtZaTH6GkPFoFVSiRb3PRvqAtjbgtEZLgyROZQic=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl
rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 15:04:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13621 (0x3535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A9FC, serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7
Validity
Not Before: Mar 2 15:04:40 2026 GMT
Not After : Mar 9 15:04:40 2026 GMT
Subject: CN=69a5a708-a970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:aa:cf:72:5a:0b:9b:67:62:ee:e1:08:0c:
22:2c:08:f7:56:39:0e:8c:6c:35:45:0c:ac:3e:16:
8a:db:04:f4:9c:e4:5e:13:88:38:78:ce:86:0d:de:
63:cb:e3:ce:59:4c:2c:2d:8a:10:c9:98:75:e8:62:
4b:61:0a:44:99:14:11:e2:72:54:c6:9b:52:4d:39:
84:8c:49:63:97:2d:4b:c4:e4:44:10:d4:0e:cc:a0:
f8:5d:c1:e7:42:76:d1:40:e0:ad:bf:07:74:42:e0:
20:e9:39:20:da:41:df:b5:e4:5d:a3:12:44:82:49:
4d:ad:dc:15:63:3e:b1:cd:91:86:ab:15:a4:d4:4c:
ae:16:9b:f4:f8:d6:2b:5f:de:f2:02:f6:2d:1b:1a:
3b:67:0b:57:b8:9e:d7:3d:6d:81:dd:7e:47:e2:60:
bd:86:ac:f4:d0:fa:bf:31:81:6e:19:7c:5e:9a:bb:
ab:ed:8e:9b:8f:08:95:c7:cb:ea:10:83:f6:78:eb:
b6:a0:43:bf:65:da:56:f3:cc:71:bb:e3:a3:52:a8:
84:19:aa:1f:91:25:7d:dd:25:00:c5:f1:f8:a9:4a:
02:d3:89:f3:41:d2:b0:ef:e0:43:48:87:ba:30:30:
af:3e:98:b9:da:57:3d:38:ea:c6:7f:26:db:f8:f9:
1f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F4:C6:41:A3:D7:37:08:C5:96:E3:83:AF:D3:02:87:3B:A0:4E:5C
X509v3 Authority Key Identifier:
keyid:D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
87:dd:ad:e4:0e:ca:01:9c:c7:23:2a:4b:8b:4a:eb:a0:d4:5b:
5b:0e:56:ba:79:64:a8:ef:d0:0f:01:dd:aa:b8:04:9b:3d:21:
6a:aa:1a:97:c5:fd:39:73:61:9e:0c:8b:62:65:bc:d0:be:61:
bd:a8:e0:53:d9:be:65:b5:76:a9:5e:a9:d6:af:52:7b:4a:e7:
ca:4d:36:17:49:3a:cb:cd:e7:31:16:13:a8:f0:26:15:55:02:
c2:f6:b7:42:77:18:5b:40:50:1d:44:d6:7c:f6:61:f5:a6:e2:
d9:9e:63:7d:21:26:ee:25:d4:6b:87:bc:f1:dc:20:20:c8:b3:
b2:78:a5:cf:b9:6a:bb:06:85:d6:57:e8:40:08:2e:e5:06:16:
32:bc:3b:1e:78:d8:61:c9:4a:23:dc:af:8b:7b:37:f2:ab:09:
4a:21:1d:60:d5:bc:b9:c4:e2:e0:bf:51:f4:96:f9:e6:62:46:
47:8e:d0:b1:1b:ad:3d:28:a7:7d:e8:19:40:a1:dd:26:9b:cd:
04:81:48:4b:17:6d:8f:bc:e1:cc:4e:31:e3:2e:52:b3:6b:d1:
d4:d5:09:1c:e2:d7:fc:7c:bf:eb:47:2a:71:63:f1:31:ff:72:
66:12:30:51:fd:a4:2a:b7:d1:fd:7e:31:4d:07:6b:1c:e4:aa:
b2:49:1d:7f
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICNTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEE5RkMxMTAvBgNVBAUTKEQ2OTdBQzRDODRDOEQxMTk4NTVGNUEwQ0REQTYzNURE
MUUzODVFRTcwHhcNMjYwMzAyMTUwNDQwWhcNMjYwMzA5MTUwNDQwWjAYMRYwFAYD
VQQDEw02OWE1YTcwOC1hOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr5iqz3JaC5tnYu7hCAwiLAj3VjkOjGw1RQysPhaK2wT0nOReE4g4eM6GDd5j
y+POWUwsLYoQyZh16GJLYQpEmRQR4nJUxptSTTmEjEljly1LxOREENQOzKD4XcHn
QnbRQOCtvwd0QuAg6Tkg2kHfteRdoxJEgklNrdwVYz6xzZGGqxWk1EyuFpv0+NYr
X97yAvYtGxo7ZwtXuJ7XPW2B3X5H4mC9hqz00Pq/MYFuGXxemrur7Y6bjwiVx8vq
EIP2eOu2oEO/ZdpW88xxu+OjUqiEGaofkSV93SUAxfH4qUoC04nzQdKw7+BDSIe6
MDCvPpi52lc9OOrGfybb+PkfmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGT0xkGj
1zcIxZbjg6/TAoc7oE5cMB8GA1UdIwQYMBaAFNaXrEyEyNEZhV9aDN2mNd0eOF7n
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTlGQy8zMTkzMzdBQTFE
OUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBSbUZYMW9NM2FZMTNSNDRY
dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzFwZXNUSVRJMFJtRlgxb00zYVkxM1I0NFh1Yy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
QTlGQy8zMTkzMzdBQTFEOUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBS
bUZYMW9NM2FZMTNSNDRYdWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAh92t5A7KAZzHIypLi0rroNRbWw5WunlkqO/QDwHdqrgEmz0haqoal8X9OXNh
ngyLYmW80L5hvajgU9m+ZbV2qV6p1q9Se0rnyk02F0k6y83nMRYTqPAmFVUCwva3
QncYW0BQHUTWfPZh9abi2Z5jfSEm7iXUa4e88dwgIMizsnilz7lquwaF1lfoQAgu
5QYWMrw7HnjYYclKI9yvi3s38qsJSiEdYNW8ucTi4L9R9Jb55mJGR47QsRutPSin
fegZQKHdJpvNBIFISxdtj7zhzE4x4y5Ss2vR1NUJHOLX/Hy/60cqcWPxMf9yZhIw
Uf2kKrfR/X4xTQdrHOSqskkdfw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 22:20:47 2026 by rpki-client