Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft
File:                     J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json)
Hash identifier:          c/VKgCI5kMxA1p/0gMbXvO5RyqDbhjP8FSEHmi2hkHU=
Subject key identifier:   BD:6B:0B:0E:F6:20:6F:C5:BC:C9:BF:4E:9B:1F:BD:BD:9C:80:D0:BF
Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72
Certificate issuer:       /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072
Certificate serial:       1E67
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft
Manifest number:          1E59
Signing time:             Thu 16 Jul 2026 16:06:57 +0000
Manifest this update:     Thu 16 Jul 2026 16:06:57 +0000
Manifest next update:     Thu 23 Jul 2026 16:06:57 +0000
Files and hashes:         1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: FOoi6eiAfxtQV5qGP+drYJdsfGoALUpr+m8N4t+lbIY=)
                          2: C78E4E640BC111F19AB158B3293D8C67.roa (hash: UHpdeBy1a2ejJJBR1Oum4bKcILEQ59Ie3ax0oFfhz0Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl
                          rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:06:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7783 (0x1e67)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072
        Validity
            Not Before: Jul 16 16:06:57 2026 GMT
            Not After : Jul 23 16:06:57 2026 GMT
        Subject: CN=6a5901a1-bd2e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:48:b1:e7:09:23:1a:6c:84:2b:7b:26:ac:86:
                    86:9a:8a:66:02:7e:31:40:b2:d2:89:98:dc:57:26:
                    53:b8:14:e8:36:36:07:99:4c:cb:e1:66:60:bc:53:
                    17:76:7f:d9:a5:03:0a:88:24:ba:8b:6d:40:a3:2f:
                    86:85:d2:aa:c0:82:0b:0f:31:a0:06:b9:1e:43:92:
                    e4:9e:5d:f8:aa:e9:01:a3:93:df:2a:74:eb:64:bb:
                    00:f1:3d:c0:94:5e:e9:4a:68:77:ad:61:bc:da:ee:
                    88:87:e7:db:23:1a:7a:0e:99:30:cd:f5:b5:18:24:
                    4a:c4:10:06:ef:f6:95:14:99:5d:ee:2d:44:53:c8:
                    bf:16:dc:09:2b:2e:2f:fa:e3:a3:9b:4e:b0:5b:3b:
                    8e:37:e4:16:dd:cc:96:71:30:68:89:69:ee:91:f7:
                    0b:ca:13:b0:43:6a:74:f8:7b:ef:d9:ad:1f:c3:43:
                    cb:8d:60:a6:e3:eb:ab:97:98:c9:eb:07:e8:c1:32:
                    50:2a:83:46:e8:1b:33:68:16:06:77:d4:1f:d7:1b:
                    3d:58:a4:87:d2:a2:01:52:2d:1e:9d:5a:af:87:e4:
                    29:64:b1:a7:e3:9b:e3:12:13:24:2f:de:61:96:b5:
                    d4:8d:8a:2e:23:f8:62:68:4c:95:9d:69:12:94:20:
                    2c:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:6B:0B:0E:F6:20:6F:C5:BC:C9:BF:4E:9B:1F:BD:BD:9C:80:D0:BF
            X509v3 Authority Key Identifier:
                keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:df:cd:24:36:48:cc:60:27:24:ba:07:c4:e4:18:fb:7d:cf:
         4c:79:ce:5e:3c:d6:c0:33:bc:95:47:f3:a9:96:d5:e3:25:dc:
         a2:8e:15:18:a0:ed:48:a8:7e:6c:3f:f5:c2:c3:27:2b:e8:50:
         40:af:6a:68:1d:b2:b4:d4:cb:3a:4b:0c:19:5a:56:bc:a5:da:
         36:5c:2d:16:aa:38:5e:30:a4:90:fa:ed:9c:99:a1:0b:96:91:
         8d:ab:be:f1:51:c5:36:58:a7:d4:9a:93:4f:fc:90:9f:8c:58:
         e7:b1:b6:78:90:5e:91:c3:98:13:f6:23:a6:b3:da:6e:1a:1f:
         d8:6e:ca:b0:e0:51:8f:a6:1a:03:41:2b:f4:44:06:96:13:7e:
         55:1a:19:9b:b0:41:c7:c3:28:8b:51:13:c5:96:d0:0e:d7:43:
         ad:07:06:7f:da:b1:01:61:2e:e0:03:0d:96:e2:c8:57:11:05:
         e3:21:48:39:b9:76:f8:60:89:54:78:7e:66:de:e4:2c:9b:f4:
         f4:d0:74:48:3d:ad:20:da:2e:62:a2:09:af:49:ed:1f:22:4f:
         dd:69:4a:f8:27:83:d6:d1:89:79:1f:5c:7a:e6:bc:3b:b5:b4:
         30:6a:54:cc:a2:44:4a:55:fa:36:52:5d:38:ae:b6:2d:ef:d5:
         b3:1f:a8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 12:16:42 2026 by rpki-client