Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft
File:                     dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json)
Hash identifier:          7vxxu9x3WbSwX+1La4QQ8d90PXtKtTdFY6iSLtr/Ebk=
Subject key identifier:   1F:9F:F0:14:8E:89:0B:13:FE:28:4D:44:11:B1:50:80:28:88:5D:11
Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45
Certificate issuer:       /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145
Certificate serial:       01B7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft
Manifest number:          01A9
Signing time:             Fri 17 Jul 2026 05:10:12 +0000
Manifest this update:     Fri 17 Jul 2026 05:10:12 +0000
Manifest next update:     Fri 24 Jul 2026 05:10:12 +0000
Files and hashes:         1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: aF5yhXfe5NPuCaz6ZWXmFNPvZJ3tS5rM6gcp+BEvyPo=)
                          2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: zvV0e48dwD3IVwxrvC+3E1d2bP8roEkFmj5ckF5v3Ug=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl
                          rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:10:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 439 (0x1b7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145
        Validity
            Not Before: Jul 17 05:10:12 2026 GMT
            Not After : Jul 24 05:10:12 2026 GMT
        Subject: CN=6a59b934-1b28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:eb:cb:ff:98:06:e2:3c:cf:d8:96:1d:e2:26:
                    69:88:2e:68:61:ae:c7:f7:55:a4:68:82:18:7d:c6:
                    89:fd:0d:ae:2b:22:be:53:e2:98:95:6c:87:fb:b5:
                    9f:e2:52:c5:b0:54:cd:35:36:75:03:cc:57:54:13:
                    12:36:ac:94:c2:9f:77:9b:6f:04:6f:e7:db:ce:84:
                    ba:8a:fa:3d:f9:5d:d2:ed:d3:37:41:86:5a:f4:31:
                    14:49:f3:69:8b:c2:72:ec:4b:58:aa:26:82:7b:1f:
                    53:82:3b:47:46:2d:4a:24:98:3b:ad:10:cd:6d:69:
                    10:02:4b:dd:f5:43:51:13:58:e8:b7:e5:9b:f5:78:
                    03:6d:ba:5f:b9:84:21:d4:c7:07:7b:e6:e8:69:31:
                    dc:2c:89:bf:3b:75:0d:7c:a6:ea:57:a8:52:28:c0:
                    3e:81:93:d8:39:ab:4b:3b:ed:34:01:1d:2c:d1:b3:
                    31:d9:1e:92:23:4f:f4:cf:5a:df:75:be:24:77:20:
                    c7:05:d1:8c:03:0b:c2:78:d7:c6:df:63:01:ab:f8:
                    0d:4e:ac:09:38:31:00:2a:35:a5:84:e2:f4:fe:54:
                    ea:c5:be:ab:f0:a6:e9:16:c1:47:d8:2e:a1:68:18:
                    50:aa:26:39:82:2d:3b:fd:a0:8a:ef:59:3c:72:0d:
                    6a:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:9F:F0:14:8E:89:0B:13:FE:28:4D:44:11:B1:50:80:28:88:5D:11
            X509v3 Authority Key Identifier:
                keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:86:28:25:27:e1:b6:be:fe:00:db:11:73:d4:9e:68:c3:61:
         a2:a0:14:60:d2:8f:ad:c2:b9:7d:58:87:7d:48:4b:cc:0b:3b:
         46:83:ba:6a:f8:84:74:af:08:cf:91:09:f7:02:2c:77:3f:d1:
         72:67:63:80:d4:45:89:e3:c3:58:ab:41:69:82:7c:62:ac:56:
         18:80:9b:c4:17:cf:14:11:78:9e:0f:b6:1d:05:42:02:2a:1f:
         12:2e:32:14:35:3d:24:fa:26:31:69:15:72:3b:42:f5:72:60:
         13:38:8b:59:35:34:f3:df:c1:1f:98:99:d8:cd:bf:da:db:63:
         f4:7a:8c:db:bd:07:b1:bd:85:51:c3:ca:b0:d3:2b:db:96:37:
         57:8e:2f:75:aa:b6:38:65:b9:a0:12:5d:f4:9e:2d:52:4e:e4:
         ad:45:48:28:2d:78:d2:ad:50:23:8b:f0:be:07:92:c0:e0:05:
         f3:03:d5:38:bb:7c:02:7f:82:e5:ee:34:04:00:35:87:f8:22:
         3b:0f:7e:b5:74:a1:3d:30:59:d8:d9:9b:f3:1a:8f:a0:0e:46:
         ce:aa:a4:49:88:cd:de:2a:78:a4:a1:a5:e5:58:8e:94:79:b5:
         09:7a:cc:a8:ef:51:33:89:49:80:55:f1:48:f9:bf:b3:b5:28:
         b5:dc:f5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:17:23 2026 by rpki-client