Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
File:                     U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json)
Hash identifier:          NHwJKVFibG5JofhifnIVXLjrBQQKM9+4JP6bkYvd65k=
Subject key identifier:   97:59:0F:99:EB:DB:1C:AC:68:AE:D1:B8:56:F8:20:B2:AF:1F:D5:C4
Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF
Certificate issuer:       /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF
Certificate serial:       057D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
Manifest number:          0573
Signing time:             Thu 09 Jul 2026 00:25:40 +0000
Manifest this update:     Thu 09 Jul 2026 00:25:40 +0000
Manifest next update:     Thu 16 Jul 2026 00:25:40 +0000
Files and hashes:         1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: o09DQIayjsUi9ZiQvwoYN5TZCyL07ZPf05kKwOw/l3o=)
                          2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: bR2E+gd+wrOJUwU1dHm00di9g4h4d99vt7PxzQB7b14=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl
                          rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 00:25:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1405 (0x57d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF
        Validity
            Not Before: Jul  9 00:25:40 2026 GMT
            Not After : Jul 16 00:25:40 2026 GMT
        Subject: CN=6a4eea84-5941
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:fe:a8:58:27:5b:e8:5f:38:b4:0b:90:1c:c7:
                    21:32:fe:45:90:2f:5f:e9:79:f1:80:00:68:4c:96:
                    eb:f9:e9:58:11:1a:10:64:b5:5e:27:f7:27:85:75:
                    e8:f6:af:1a:19:9d:fb:c7:72:55:07:13:ad:11:c7:
                    a7:6f:00:1f:4f:a2:fc:64:07:f1:4d:f6:df:f5:4a:
                    96:02:12:77:6e:8c:2d:20:96:5b:df:30:41:28:67:
                    69:29:c5:1e:ea:78:e8:ee:eb:74:a9:33:85:f3:de:
                    dd:1f:19:4b:3f:ae:c7:05:f6:7f:89:ef:03:44:82:
                    ec:e3:ff:5b:d8:ca:30:a2:80:e5:7c:99:c2:f6:81:
                    a2:f7:6a:77:7e:59:8a:b5:11:92:a0:6e:cb:c4:58:
                    4e:0d:31:a0:f5:39:4d:95:2c:71:12:dc:af:7c:c7:
                    5b:98:f0:1d:77:b3:25:e9:41:ea:3a:eb:a9:fd:7e:
                    24:da:07:da:d3:56:4a:9f:64:57:ac:7b:68:63:65:
                    8a:6a:5b:cc:c7:64:26:88:15:24:4e:80:ee:8f:f9:
                    d1:e8:80:58:41:aa:c4:c0:79:7a:ba:a5:27:a7:aa:
                    d2:0a:98:f8:19:43:aa:81:5c:38:c7:3b:e7:c4:52:
                    0a:04:34:2b:17:d0:15:0a:1c:b6:51:a5:b2:4c:57:
                    6b:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:59:0F:99:EB:DB:1C:AC:68:AE:D1:B8:56:F8:20:B2:AF:1F:D5:C4
            X509v3 Authority Key Identifier:
                keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:5a:12:0f:ef:83:56:72:6d:ed:e4:bf:d8:e7:bb:91:de:85:
         d5:b8:1a:b9:52:3a:db:eb:43:b0:b5:ab:29:6b:f1:fd:b6:d2:
         c9:4e:e7:ee:b7:5b:94:21:a2:5f:93:e9:ef:44:cb:e3:f4:40:
         80:16:b3:6d:66:db:36:17:34:e7:b9:99:8e:4c:bf:dc:85:07:
         9f:17:63:da:3a:0d:d8:65:6a:fc:a9:a4:64:a9:86:ee:9e:56:
         4b:16:1b:e1:b6:ba:42:64:27:a7:65:8d:8d:24:4c:c4:04:3b:
         99:3d:be:ac:a4:ba:01:e1:6d:9f:13:7c:b8:05:88:ca:2a:8e:
         5d:a8:46:f4:fc:33:83:47:4a:a3:73:95:61:0a:2e:98:b3:a4:
         7f:4c:83:a3:29:5a:c8:dd:8f:74:0f:30:d6:8f:31:af:54:cc:
         93:8c:c6:f5:69:66:f3:8b:5f:ac:16:b7:49:86:a6:d6:b5:cb:
         e4:bb:4f:2e:65:3d:00:4c:b1:2e:26:9e:44:db:94:62:fb:ce:
         a0:c1:d5:50:1b:88:40:b7:6a:a3:a2:80:46:ea:52:39:0c:d9:
         7e:e4:eb:e5:f8:f0:5b:48:2c:c3:56:3b:f8:ce:93:f0:6c:d8:
         37:bd:f8:a6:91:bf:b8:81:73:dd:c7:3e:7d:10:a2:30:78:f9:
         04:7a:a6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:40:22 2026 by rpki-client