Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
File:                     QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft (raw, json)
Hash identifier:          ZBVzTNk72qN4iOJlhM3F9M4elc/lWasCwZGJDyR/8bM=
Subject key identifier:   BE:D7:20:22:C2:78:5D:DD:B7:0F:40:AD:2B:92:AA:AD:1F:0E:69:A1
Authority key identifier: 40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4
Certificate issuer:       /CN=A913089B/serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4
Certificate serial:       BC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
Manifest number:          B9
Signing time:             Mon 29 Jun 2026 07:45:49 +0000
Manifest this update:     Mon 29 Jun 2026 07:45:49 +0000
Manifest next update:     Mon 06 Jul 2026 07:45:49 +0000
Files and hashes:         1: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl (hash: fH/obpxAFx+UC8dViqPc2PqDELh59kiTkk8CQxtZ4bM=)
                          2: AE811872614711F0B811645EC4F9AE02.roa (hash: CEPtXkuVKx6QKp3MVtGTrXzO5plriy+U5ciLSfemG7A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl
                          rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 06 Jul 2026 07:45:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 188 (0xbc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913089B, serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4
        Validity
            Not Before: Jun 29 07:45:49 2026 GMT
            Not After : Jul  6 07:45:49 2026 GMT
        Subject: CN=6a4222ad-80e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:64:f8:5b:7a:8e:5d:fe:c4:bb:a2:06:ab:39:
                    47:36:c0:da:c3:2a:32:33:7e:28:ed:0a:30:95:19:
                    87:e8:fd:bf:25:fb:1e:2b:fe:58:a4:b5:00:83:a5:
                    92:66:9f:e1:8b:98:7b:32:c0:36:ca:0c:1d:33:71:
                    ba:83:19:43:07:a3:47:6f:9e:12:42:47:62:97:43:
                    e7:61:0c:77:d3:80:4c:fc:7b:0e:75:45:d6:fb:aa:
                    53:73:c7:73:76:c3:07:ac:ba:da:9c:8e:22:34:57:
                    92:85:ea:a2:7a:3e:8d:f1:91:c9:eb:0e:98:df:6f:
                    c4:39:a0:d8:79:c8:94:d8:d3:89:d9:77:8f:31:75:
                    c2:a2:25:e7:29:2b:04:56:70:70:f6:d1:a6:ea:10:
                    f3:6e:cf:eb:ce:7e:65:d6:4b:da:99:bd:ae:e8:9b:
                    51:21:2e:69:c0:bb:96:5a:97:a4:e3:5c:d2:6e:cc:
                    7c:a9:b6:a1:87:ee:0b:c2:b5:b2:fc:76:d5:02:85:
                    8f:47:e1:6d:2b:2e:4e:2e:85:76:06:8f:3e:71:27:
                    80:53:cc:4c:a7:0f:b8:09:bf:df:ac:97:ea:b8:a0:
                    41:da:4c:a7:42:62:7b:14:5d:8f:bc:9c:67:a9:99:
                    52:c8:0a:54:a8:81:68:93:31:f6:13:64:23:8e:07:
                    c7:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:D7:20:22:C2:78:5D:DD:B7:0F:40:AD:2B:92:AA:AD:1F:0E:69:A1
            X509v3 Authority Key Identifier:
                keyid:40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:b9:38:c8:20:1d:39:eb:c8:9a:a1:bd:10:0b:32:c3:a0:20:
         73:a9:43:f1:66:3a:7a:74:fe:08:45:7c:87:71:8c:07:ca:db:
         a8:e9:df:de:eb:fc:11:e6:67:91:7f:ca:2e:91:d5:07:66:4c:
         89:ca:df:09:8f:c7:3f:b4:9f:82:0f:6c:28:4d:7b:8e:b9:14:
         5d:45:ee:b0:41:fb:bb:e2:19:c9:16:a3:b9:36:0f:35:3d:f4:
         a5:85:e2:eb:3c:1f:e5:2b:87:be:35:28:b5:86:1f:6c:b8:c0:
         e3:f7:4d:78:9c:cc:a2:62:36:0d:75:66:fc:db:64:4d:46:9d:
         cd:5c:22:23:bc:8f:b5:70:73:09:c0:db:51:de:94:30:a5:2e:
         ec:2d:eb:23:dd:21:0f:c2:a7:1d:7c:7b:7b:e7:1e:91:7b:d8:
         28:6e:ad:62:dd:2a:15:9d:8b:6e:e8:f6:a8:c6:ec:2a:2b:6f:
         40:c0:f8:21:7b:ac:54:b2:62:60:f8:b2:c9:32:a8:51:f5:7b:
         db:3a:49:cf:cf:33:8a:36:a0:e6:c8:d8:0c:d4:be:30:e9:64:
         62:14:06:5c:31:3b:01:8d:6c:ac:02:c5:26:92:15:ec:08:e9:
         5c:aa:61:68:71:50:95:b8:33:e9:3b:ee:f2:f0:0a:57:e9:d2:
         48:3b:9d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 08:27:12 2026 by rpki-client