Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
File:                     JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json)
Hash identifier:          T6E2uhBU17vBJz+YZoukmkj1wye3sKV3jkC12+cynpk=
Subject key identifier:   29:C3:9F:26:7C:F1:E3:C9:40:6A:79:0A:08:EC:2E:B8:58:BD:59:ED
Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4
Certificate issuer:       /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
Certificate serial:       17CE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
Manifest number:          17BC
Signing time:             Thu 16 Jul 2026 16:37:18 +0000
Manifest this update:     Thu 16 Jul 2026 16:37:18 +0000
Manifest next update:     Thu 23 Jul 2026 16:37:18 +0000
Files and hashes:         1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: 5EwDno1RyrilSU82aHNqPQQhtmCvCBjQIj/ONJ8KS4w=)
                          2: C96DCB80D00A11F0BC76FE15C4F9AE02.roa (hash: 6pZjTPqP9wPmYOVwUXBa4Swz4CDpYv/0dyLoKjy0QaM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl
                          rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:37:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6094 (0x17ce)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
        Validity
            Not Before: Jul 16 16:37:18 2026 GMT
            Not After : Jul 23 16:37:18 2026 GMT
        Subject: CN=6a5908be-8771
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:90:66:10:81:14:8e:53:d4:34:28:94:ac:60:
                    c1:da:8c:0b:d5:5b:74:bd:31:34:96:05:08:ba:96:
                    7d:67:02:04:82:b1:22:64:df:c4:60:67:e9:91:c0:
                    f3:03:fb:f4:8e:b4:15:44:c8:76:23:8c:26:f0:73:
                    39:b6:8b:0f:cd:be:ea:5d:f6:9b:f6:f9:e2:7d:c6:
                    74:4f:1b:b0:98:60:33:16:91:7a:92:8a:da:21:0e:
                    2e:98:0e:a7:fe:36:e6:8c:e6:e5:c3:43:6c:98:ae:
                    e0:06:4d:39:06:80:24:cb:e1:42:06:74:29:37:c1:
                    b7:e4:a0:20:9f:ae:e3:22:b2:a5:78:09:63:65:cf:
                    ed:78:c7:31:22:4c:1e:f7:c8:f4:73:b9:ca:96:cb:
                    a6:54:58:9b:79:10:a8:90:95:e0:1f:08:3a:fa:94:
                    30:ab:c5:dc:50:9d:1c:03:5c:2f:8c:0c:fe:4a:8a:
                    08:e6:13:3a:2a:24:06:ce:73:26:c5:c4:8d:b7:21:
                    19:0f:06:8a:42:7d:af:1b:a2:48:70:8e:51:97:9f:
                    d7:30:c8:cf:45:31:da:64:9f:88:18:7a:2f:1f:12:
                    e1:0a:88:72:b0:72:c9:2c:53:50:35:5b:17:08:ac:
                    5d:82:4b:ab:b0:aa:67:86:3b:8d:e4:5a:7c:73:7c:
                    b8:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:C3:9F:26:7C:F1:E3:C9:40:6A:79:0A:08:EC:2E:B8:58:BD:59:ED
            X509v3 Authority Key Identifier:
                keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:4a:1a:df:82:73:77:50:76:b9:2d:cb:2d:11:30:45:84:3d:
         f7:57:4d:1f:23:b6:07:68:00:56:db:2d:0c:b2:97:25:9b:03:
         10:e9:67:cc:25:0d:30:fd:92:83:76:61:90:17:67:f1:12:ca:
         6f:12:d0:98:67:6f:74:1b:57:de:83:94:e8:52:55:b9:89:c4:
         a7:76:18:d5:42:6f:a3:2f:3d:18:dd:2d:ed:e7:d4:30:09:91:
         c8:23:bd:5c:fa:10:64:d4:44:56:17:e7:e0:0b:11:04:a5:cb:
         f1:5a:32:38:fa:d5:23:73:32:be:4a:25:10:2b:6d:12:66:35:
         59:f8:e8:5d:46:d0:e2:4f:30:15:bb:a3:90:c1:91:72:64:14:
         c7:7a:58:51:63:11:aa:58:54:75:a0:d8:73:7e:1d:e2:fa:05:
         b4:11:14:aa:b4:a4:d9:1b:07:37:53:19:aa:e4:e0:8c:d1:f7:
         4a:b8:8c:36:da:3f:17:eb:72:a3:b4:7c:8c:b3:a5:cd:79:36:
         03:85:d4:6c:9e:1b:ac:30:15:14:d3:8a:94:8e:6c:f7:5f:74:
         fc:21:fa:61:4c:69:3e:f9:58:91:98:ef:d5:ca:03:ee:01:ae:
         49:0d:f4:14:6b:b0:ad:3d:14:a2:94:f3:66:1d:d9:1b:a8:c1:
         93:00:05:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:34 2026 by rpki-client