Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
File:                     GiOYaENWXf_IAPgP8pa6sa03FOw.mft (raw, json)
Hash identifier:          HRvFRH6h1ZP+Wq+thOTZaGBJEC6QXkD2vmWVBLUqLlM=
Subject key identifier:   39:79:AF:AC:EA:C5:ED:65:66:A0:3F:F0:E6:72:E8:D9:51:23:C5:9A
Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC
Certificate issuer:       /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC
Certificate serial:       042E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
Manifest number:          0420
Signing time:             Sun 05 Jul 2026 00:43:37 +0000
Manifest this update:     Sun 05 Jul 2026 00:43:36 +0000
Manifest next update:     Sun 12 Jul 2026 00:43:36 +0000
Files and hashes:         1: GiOYaENWXf_IAPgP8pa6sa03FOw.crl (hash: U7QCPwZw5GRdj477qzqI1Y9bjO2hGyW4xiCGemsEXVY=)
                          2: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (hash: OdmIKnh99XTg8Hh9/TQirH8XV5FGfwwJr9IPq/Zw7no=)
                          3: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (hash: IasGAzFc+l1gsAHfpGxVMa7FoIjlAPF1GzUpALF/028=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl
                          rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:43:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1070 (0x42e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911F55D, serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC
        Validity
            Not Before: Jul  5 00:43:36 2026 GMT
            Not After : Jul 12 00:43:36 2026 GMT
        Subject: CN=6a49a8b9-902a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:e2:13:51:3d:e3:dc:be:45:c9:21:ef:de:df:
                    4a:4c:87:38:03:07:85:ee:60:e1:ee:86:ff:4d:4f:
                    5b:b9:77:63:78:09:80:5f:8c:6a:b5:de:37:23:16:
                    1b:a0:04:6b:24:a4:aa:2c:a0:b0:2d:f2:4a:18:d1:
                    58:72:a9:87:63:cf:59:10:a8:a9:40:9e:c4:a2:be:
                    5b:ac:62:71:8a:4a:fd:63:2a:4f:f3:06:33:63:0c:
                    a2:6f:14:b3:fd:79:f7:b6:b4:51:f6:45:3f:1c:b1:
                    95:39:19:74:71:78:e7:54:2c:37:78:aa:d8:97:c8:
                    35:c3:42:2e:7f:3b:fe:90:e6:90:25:9d:d1:4a:ed:
                    d3:e0:b9:7f:e5:0f:40:f3:40:44:cc:e3:89:8b:6b:
                    16:f1:ac:d1:de:b2:f0:43:9c:96:b8:54:34:e5:bc:
                    7a:06:9c:10:14:01:7b:af:c9:d4:fa:d7:6c:f1:65:
                    0e:93:4c:15:44:72:c0:b4:8e:e2:39:37:69:d9:00:
                    d2:03:c6:c1:65:e2:c8:e4:dc:0b:f8:41:57:5a:a9:
                    60:10:a9:9d:de:f0:b8:31:30:53:9b:54:ee:cd:0e:
                    a5:ce:72:ba:bf:59:b4:29:38:99:87:2b:83:7b:dc:
                    30:a8:82:24:49:c0:06:44:e3:d0:45:36:55:19:0c:
                    9e:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:79:AF:AC:EA:C5:ED:65:66:A0:3F:F0:E6:72:E8:D9:51:23:C5:9A
            X509v3 Authority Key Identifier:
                keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:d5:3e:48:e6:52:48:20:bd:f0:08:26:f5:1b:10:2e:80:42:
         88:80:c6:7d:4d:fd:19:d8:63:5e:4a:88:4d:92:25:88:0b:9d:
         99:aa:f0:e3:f9:ee:71:fe:6a:45:58:e8:7d:b1:04:ae:0f:6a:
         a7:65:80:d0:00:47:c6:6f:6a:ab:92:9d:3d:17:e7:37:ee:78:
         f2:ed:4d:3c:57:dc:ec:2a:03:e0:84:5d:e8:c4:48:c4:59:d4:
         7e:40:96:7c:57:9a:92:24:a8:e4:d6:6f:5e:53:ba:1a:ba:b5:
         b1:92:c9:ce:28:68:85:91:67:76:d1:3d:2b:ac:71:43:43:2c:
         69:94:8f:d0:1f:f7:99:d2:8d:1f:14:37:ef:77:92:6f:b7:24:
         48:4a:d2:8f:c7:b8:36:fc:cc:c5:07:2a:c0:ff:86:4b:70:12:
         bc:68:5e:d3:aa:86:35:10:e1:ef:11:c4:76:eb:bb:86:a6:ba:
         78:2a:40:d5:87:87:90:de:6e:d6:3e:d6:78:9a:26:5a:93:a7:
         6b:1f:64:cc:cd:db:28:21:09:84:41:6e:a4:cc:28:d1:20:78:
         4f:58:8f:de:01:d7:49:6a:9e:45:ad:51:7e:1a:df:e6:a4:45:
         c7:dc:a3:4c:09:80:48:37:8d:2e:75:7c:17:88:fc:21:a7:83:
         f3:8b:82:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:06:52 2026 by rpki-client