
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft
File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json)
Hash identifier: n38Oqmp0CFxR6qt72MkHgWkb9dbhSY4nE1sEgVSbEsA=
Subject key identifier: 5C:A8:2F:00:9E:05:A7:BD:75:43:55:0B:01:89:27:0B:DC:8C:B9:3C
Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94
Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494
Certificate serial: 01E7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft
Manifest number: 01E3
Signing time: Mon 02 Mar 2026 02:30:57 +0000
Manifest this update: Mon 02 Mar 2026 02:30:53 +0000
Manifest next update: Mon 09 Mar 2026 02:30:53 +0000
Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: Ru1lPRzY95EBNBJIlye9bYc8YhR1Q4x6Gt++tq40nu0=)
2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl
rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 02:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487 (0x1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494
Validity
Not Before: Mar 2 02:30:53 2026 GMT
Not After : Mar 9 02:30:53 2026 GMT
Subject: CN=69a4f660-ff4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:b8:66:90:77:d7:b0:e6:12:85:58:97:f8:
2b:1e:c5:3b:dc:f6:4c:67:c4:0f:89:2d:a3:b3:92:
89:72:05:02:af:98:ea:61:a3:93:b4:c8:81:4d:c3:
be:58:71:85:56:ee:a5:ce:26:2d:6f:81:f4:07:e3:
f7:b2:b0:da:65:fc:9e:54:a0:f3:c0:5c:3f:33:bf:
43:76:ea:0a:73:42:2d:4d:6f:a9:a8:15:af:2d:07:
3c:e0:ad:22:9a:32:e2:94:2e:e1:31:96:9d:26:ec:
35:c8:e4:ff:ba:10:bc:d5:ea:7d:c8:63:d0:b2:57:
76:1e:4f:ab:a1:00:bf:86:e6:70:a9:fb:ec:d0:d2:
c9:2f:a8:e3:e3:ff:22:ba:ea:a3:09:71:d4:68:bf:
d8:d4:fb:26:43:64:00:c5:2c:6c:24:ba:2a:54:8c:
cc:00:ec:0c:3e:5c:20:e2:d5:82:a1:11:26:cb:85:
ac:7f:4a:10:ce:e8:7d:d8:ed:22:dd:5c:ac:47:29:
dd:83:ee:c3:cf:9f:a0:57:0c:71:e1:41:0d:a1:72:
31:0e:12:6c:6c:5b:db:ac:03:21:3f:92:f5:89:22:
bf:1d:fb:88:2a:96:15:c4:6a:38:c4:e8:f6:03:51:
61:f1:37:f8:1d:05:4d:e4:63:f5:cd:be:f7:45:4c:
f4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A8:2F:00:9E:05:A7:BD:75:43:55:0B:01:89:27:0B:DC:8C:B9:3C
X509v3 Authority Key Identifier:
keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a5:c4:bd:4e:7d:74:b4:aa:fb:3e:91:cc:b2:36:bd:85:2a:0a:
8e:21:92:3c:7c:21:a5:40:80:20:f2:ea:e9:80:59:72:5c:71:
15:b7:7c:cb:6a:af:8b:aa:4a:fd:a5:74:11:c9:bc:40:be:8e:
2d:ea:32:2c:51:17:9b:1f:33:80:7e:30:98:45:ba:16:81:1e:
d4:bc:11:73:c9:f6:56:fe:be:30:91:51:52:cf:14:88:28:a2:
45:dd:f6:74:15:0a:f5:5e:17:e7:2e:05:4b:50:92:72:b0:d7:
c5:0f:7c:0b:d3:49:fc:c7:6f:0c:c6:c8:bb:0e:4e:1a:9f:e4:
7e:df:3d:25:a8:05:48:31:f0:62:08:be:fb:d8:ec:8b:ae:39:
be:16:02:4e:71:98:ce:a2:6b:52:3c:a2:12:2b:95:3c:92:fa:
5c:aa:67:07:2d:fe:c4:fd:5c:0e:d2:91:f0:bd:c5:04:8f:09:
a2:8c:13:d9:33:a4:d5:f2:1d:c8:9e:3e:89:da:1f:6d:66:0e:
3f:9b:6d:87:ba:67:ff:d6:b4:10:76:bd:44:18:00:3c:9b:b0:
0a:ea:6e:ce:9b:e1:ce:4f:05:b7:86:ba:56:e4:b3:4e:c1:38:
9c:e8:2e:8d:2d:38:bf:d8:33:8f:88:ce:23:62:73:39:a6:96:
ad:56:f3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:40:26 2026 by rpki-client