Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft
File:                     dEWTNjfMowmkwWGr_t-HecsqsT8.mft (raw, json)
Hash identifier:          WXnAPmFLB1aRU06A+/KWkngO2/ON2t5KA7nWAVi03aA=
Subject key identifier:   09:F8:CF:08:FA:0C:02:EE:C2:CA:0D:64:67:22:EF:BA:DB:A1:66:AA
Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F
Certificate issuer:       /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F
Certificate serial:       0150
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft
Manifest number:          014C
Signing time:             Fri 17 Jul 2026 04:51:52 +0000
Manifest this update:     Fri 17 Jul 2026 04:51:51 +0000
Manifest next update:     Fri 24 Jul 2026 04:51:51 +0000
Files and hashes:         1: dEWTNjfMowmkwWGr_t-HecsqsT8.crl (hash: x1KJrFXlXsHPjf/tmLiyL6yEdPVl27STdQMn/QFD36M=)
                          2: 9E3D544AFFFD11EF8D8A924EC4F9AE02.roa (hash: 845Y2aA2itdhNFcJh2u6MWKd/R973iis1jKrvrdf6+g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl
                          rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:51:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 336 (0x150)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912E53C, serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F
        Validity
            Not Before: Jul 17 04:51:51 2026 GMT
            Not After : Jul 24 04:51:51 2026 GMT
        Subject: CN=6a59b4e8-d0b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:d9:00:4f:9f:04:31:fb:02:31:7c:a1:cd:6c:
                    e5:ac:fb:9c:d1:4a:50:62:31:71:ce:76:2f:f7:e7:
                    dc:24:08:3f:4c:c9:64:41:4b:10:e6:20:80:77:a6:
                    a5:35:8f:be:33:09:50:39:b8:57:fa:df:cc:73:4a:
                    50:47:ff:92:fb:1d:9a:c7:91:63:aa:47:42:70:1c:
                    6f:df:3d:97:2a:4a:87:34:9d:f3:0e:6b:ae:9f:7d:
                    27:8e:3c:ff:e3:48:54:95:64:8f:9c:a1:8a:52:1a:
                    84:60:97:4d:4f:f1:14:05:db:d3:2b:08:4a:89:3f:
                    86:9d:6b:0f:25:b2:31:3c:b9:d1:1e:a2:af:23:00:
                    27:0f:7b:22:5b:44:17:b0:ae:03:48:fc:a1:7e:0c:
                    ee:98:ae:b9:96:ba:63:94:a4:42:7f:6f:a3:34:47:
                    e1:b5:46:93:84:91:4a:4b:ee:b6:4f:7d:ac:a6:92:
                    52:d4:0b:2b:57:6d:f4:4a:ca:38:ff:93:12:07:43:
                    2b:06:ce:61:70:72:0a:02:57:56:ee:86:3d:79:cd:
                    a6:64:49:f7:c0:41:c4:0a:59:39:30:f9:e7:26:e1:
                    cd:7e:b1:c8:12:ef:d9:22:42:c2:2b:2e:53:7b:c6:
                    fb:9a:d0:9b:ed:6e:a7:fe:d9:56:dd:32:b9:51:97:
                    0c:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:F8:CF:08:FA:0C:02:EE:C2:CA:0D:64:67:22:EF:BA:DB:A1:66:AA
            X509v3 Authority Key Identifier:
                keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:d8:5c:bd:ed:44:46:89:33:5c:6e:49:57:de:ed:07:2f:ae:
         e8:01:ad:d4:f6:d7:5d:c9:8c:51:ee:a6:26:dc:8e:bc:76:55:
         bb:03:fa:4f:ab:b1:7b:42:24:65:b8:44:3b:e8:76:38:04:91:
         7e:db:6a:38:29:34:88:d9:a7:e6:94:0f:1b:f1:af:6e:7c:a4:
         6d:4d:76:cd:bc:37:5a:46:c3:5f:bd:29:6b:01:ec:f2:f1:b2:
         e5:bb:de:35:dc:1e:50:ed:3d:4e:34:b8:82:1f:c3:a7:2c:ca:
         86:a1:1c:88:b2:70:0e:94:9d:c7:6f:f1:6a:c9:7a:a9:5a:49:
         9f:4c:8d:0e:7c:8f:55:3a:73:86:bf:49:1a:6b:0b:e0:26:50:
         44:ab:13:82:b5:f3:44:b1:ae:25:5b:a3:59:d5:9d:91:e9:cb:
         cb:47:27:1f:29:b5:e0:8f:54:24:da:c8:65:0a:b5:ae:d7:8e:
         97:77:b1:c4:84:71:cd:b7:62:40:be:0b:a5:a3:47:7b:f7:30:
         06:c3:d1:90:70:32:d2:8f:c2:60:49:b8:9b:40:e6:dd:63:8c:
         a2:5d:0b:71:2d:01:d2:09:aa:a1:b8:9b:02:c6:2b:74:6f:5d:
         c5:8c:6b:62:24:ca:8c:9c:45:58:96:9a:9d:d4:ad:01:6f:7e:
         7d:fc:d5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:57 2026 by rpki-client