Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft
File:                     6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json)
Hash identifier:          QAhvVsI0bqCONWXsMfeI7RYrSEDKBXG6AxdOlgKlB3Q=
Subject key identifier:   5F:76:E7:DB:21:5E:B2:A6:E6:C0:AC:8B:24:2B:D9:D8:59:50:58:62
Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31
Certificate issuer:       /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131
Certificate serial:       0198
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft
Manifest number:          0192
Signing time:             Sun 05 Jul 2026 04:59:19 +0000
Manifest this update:     Sun 05 Jul 2026 04:59:19 +0000
Manifest next update:     Sun 12 Jul 2026 04:59:19 +0000
Files and hashes:         1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: 3FNlnkDSp72n2RhZvHuvrap+9hUVvvxkmxN9EvUBkfE=)
                          2: C562775017FD11EF9A320864C4F9AE02.roa (hash: t/VPDZPwjX46Y0N/pV8me1AYQj95BNCK+h88qNvXGWU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl
                          rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 04:59:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 408 (0x198)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911945B, serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131
        Validity
            Not Before: Jul  5 04:59:19 2026 GMT
            Not After : Jul 12 04:59:19 2026 GMT
        Subject: CN=6a49e4a7-5b2d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:2c:db:a6:47:b1:e3:36:76:fd:9e:3c:32:11:
                    e9:e5:b4:c6:e7:1b:c2:56:a1:62:44:8d:3b:a6:8c:
                    af:bf:f1:59:b4:6b:e0:05:04:70:fa:06:06:b1:e4:
                    94:b5:5d:b0:cb:df:94:b2:8a:19:28:d8:39:0e:50:
                    e3:12:dd:f5:a8:89:3b:39:49:87:06:6c:b5:99:0b:
                    50:e4:30:81:5a:f3:45:b7:7f:6b:81:2a:7e:e7:ec:
                    b1:7f:10:7d:37:35:f4:ee:05:79:b9:b7:6e:d3:4d:
                    23:7c:3f:4a:90:03:48:d3:ef:c1:8e:45:d1:78:a0:
                    21:3b:57:de:e5:2b:74:1c:4a:82:aa:6e:7c:50:e9:
                    a9:ce:2a:c9:8f:5d:1f:77:1e:b2:9a:43:e6:93:12:
                    68:d7:82:62:08:48:9a:e0:f4:04:ba:6f:db:bb:74:
                    11:9b:9b:39:4c:4b:2b:c9:f3:4e:cc:0d:6f:eb:2f:
                    c5:ce:1c:d3:9b:72:0b:28:71:39:d7:e4:27:a3:b7:
                    12:af:2f:f3:b4:29:1e:40:c2:5c:47:d7:d1:e4:21:
                    af:f2:40:52:b8:63:5d:d4:52:0a:e1:b4:e5:cf:05:
                    d7:40:db:32:67:45:41:33:6f:ee:b7:ba:4d:18:b0:
                    d8:e4:c8:cd:ac:3d:d8:54:6f:fd:77:ae:2d:a3:a1:
                    6a:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:76:E7:DB:21:5E:B2:A6:E6:C0:AC:8B:24:2B:D9:D8:59:50:58:62
            X509v3 Authority Key Identifier:
                keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:38:c3:c7:1b:44:82:4f:74:94:42:3f:8c:f7:0f:c9:42:a8:
         16:b8:3e:c5:8c:5d:16:5d:2c:8c:d2:29:af:9b:0c:03:ec:88:
         a4:76:1b:36:f6:23:f7:e4:13:46:37:76:dc:db:ff:c3:c0:80:
         23:e6:99:74:6f:d6:ca:f6:f9:d3:8e:db:61:d1:39:86:ef:7b:
         8f:3d:88:bc:bb:e8:f7:3e:b8:27:af:41:34:ab:17:3a:e0:e4:
         99:a7:bd:1b:6d:f5:46:2c:f7:15:2e:2b:0d:c6:67:b8:de:20:
         76:e9:3c:0b:5b:01:ae:c4:85:72:60:f4:84:fb:55:44:40:07:
         ea:74:1b:00:91:67:6c:7a:7f:8e:69:ae:69:fb:ea:90:a6:0b:
         0f:32:7c:cf:e5:ee:30:e6:c6:55:99:3e:56:44:db:dc:7f:2a:
         53:3a:9d:d6:5b:9b:24:6e:92:4d:02:01:fc:96:4b:32:d8:f0:
         0e:f6:4c:cb:ed:e2:0f:02:70:d8:1d:e0:73:3a:e4:91:65:8f:
         3e:25:4d:03:d8:b8:22:e1:b2:8d:56:88:c5:68:67:4e:4d:21:
         c2:b1:d9:1e:4c:78:bd:7b:fc:9c:45:b9:14:60:a0:24:e9:43:
         11:10:fe:54:7d:1f:07:81:9b:db:fa:a2:77:e7:5a:5b:14:4e:
         da:04:b2:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 00:08:35 2026 by rpki-client