Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
File:                     QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json)
Hash identifier:          0WY9LVZ63F9Hnbyx/taOXiaPyTB6mVaejeXw/drA1Xs=
Subject key identifier:   06:FF:08:BF:BC:B1:6A:CB:58:ED:20:8B:26:62:2E:C4:18:22:50:AC
Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5
Certificate issuer:       /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5
Certificate serial:       0152
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
Manifest number:          014A
Signing time:             Fri 17 Jul 2026 06:21:21 +0000
Manifest this update:     Fri 17 Jul 2026 06:21:21 +0000
Manifest next update:     Fri 24 Jul 2026 06:21:21 +0000
Files and hashes:         1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: YEF0AFWDdeumU8F6tA2dFMXcM0+6IxgA/rz0EKFqvGg=)
                          2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: /iUDR+GzejkmITAmPKgcB03fXiVvkAuvv4cWd5x9948=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl
                          rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:21:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 338 (0x152)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CB05, serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5
        Validity
            Not Before: Jul 17 06:21:21 2026 GMT
            Not After : Jul 24 06:21:21 2026 GMT
        Subject: CN=6a59c9e1-8ed2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:cf:9c:59:ad:70:d9:29:45:25:ae:03:57:d6:
                    4f:32:ea:03:ab:da:a2:c0:87:6e:0a:d6:d7:83:1a:
                    35:2a:d8:ca:89:1b:17:5d:5f:87:a4:a8:1e:4d:d4:
                    48:d5:e2:5e:e4:69:54:91:c3:1a:da:f2:98:73:f0:
                    b8:f6:6e:bb:7f:a3:7e:24:50:11:8e:fb:b3:b9:71:
                    79:87:cd:69:4c:d2:92:5f:c5:ec:6b:88:82:41:3f:
                    63:42:df:8d:1f:86:5f:1c:17:30:14:b1:99:18:ef:
                    01:05:eb:89:be:06:97:11:bd:df:ce:74:4b:28:54:
                    12:d1:d7:9e:94:41:47:a1:9b:dd:59:4c:28:9a:6d:
                    0a:4e:f3:85:01:49:b0:1a:ad:7f:2e:a8:15:c1:cf:
                    ed:32:ff:93:c1:de:dd:53:74:ad:37:8e:fe:fb:f9:
                    0e:59:ee:c3:c5:21:88:c2:06:e4:8d:76:0e:7d:e7:
                    94:54:eb:c0:a6:09:64:5b:c5:8a:97:e9:c1:2f:b6:
                    00:31:1a:c1:e0:26:74:5b:04:44:3f:bf:9b:42:93:
                    af:9a:96:2e:9d:e4:de:50:d6:4b:89:1a:09:17:fb:
                    a4:78:d5:7f:95:de:e9:63:97:a8:14:8b:f3:50:27:
                    ed:8f:f4:f9:19:50:25:9a:20:c8:17:81:0f:6d:1c:
                    17:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:FF:08:BF:BC:B1:6A:CB:58:ED:20:8B:26:62:2E:C4:18:22:50:AC
            X509v3 Authority Key Identifier:
                keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:f3:13:b7:7a:63:12:28:bf:1f:98:68:16:c7:9e:9d:86:81:
         32:ec:0d:b7:e2:6a:65:4d:5c:30:78:bb:80:b4:8d:d3:bc:d3:
         23:63:a4:a9:a8:db:96:9c:0f:04:94:de:20:04:23:92:8a:16:
         15:aa:60:c7:9a:f0:41:db:96:1a:86:5a:b0:09:e8:5d:ac:2c:
         59:d7:72:b8:17:b3:f2:97:8f:58:cf:3c:d6:6e:dd:d5:37:11:
         aa:b3:84:35:ac:05:bf:a4:8e:17:0c:3a:74:3d:ce:5a:81:5b:
         a8:8f:ba:20:e0:c7:6a:c9:4c:fc:bc:74:a8:17:33:84:54:13:
         d8:2b:84:49:68:5c:52:6d:46:55:1d:1b:4c:41:84:ff:a1:f3:
         cd:ce:b4:51:fa:11:df:70:a9:c3:77:5b:8a:73:c4:39:eb:99:
         70:41:06:be:0a:63:9b:c6:0b:03:d7:43:d7:fb:cc:03:1d:d7:
         e7:fe:9d:78:89:6f:4b:ce:a0:46:bd:f5:d7:04:1f:97:e4:8f:
         4a:92:70:e3:e3:0f:2e:8a:8d:df:41:02:47:52:b3:0e:cb:44:
         c4:39:30:f8:57:a6:f5:8a:08:fc:a5:d7:46:e7:16:fe:d0:86:
         12:e0:3b:aa:0c:47:dd:30:c8:d4:27:ea:27:72:3d:0e:5b:5a:
         3a:9a:92:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:58 2026 by rpki-client