Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft
File:                     AEu7wBxXH6cPIOpEBQBX2dyeutI.mft (raw, json)
Hash identifier:          xvAxoVPNS7XIlAEUHijVxnQpjtKCOMR2P4hpItPEkb8=
Subject key identifier:   2C:61:D0:58:25:D1:F2:DB:B1:E6:A1:37:78:47:C1:3B:B2:D8:4F:F7
Authority key identifier: 00:4B:BB:C0:1C:57:1F:A7:0F:20:EA:44:05:00:57:D9:DC:9E:BA:D2
Certificate issuer:       /CN=A91326B3/serialNumber=004BBBC01C571FA70F20EA44050057D9DC9EBAD2
Certificate serial:       01B4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft
Manifest number:          01AF
Signing time:             Sun 05 Jul 2026 04:39:32 +0000
Manifest this update:     Sun 05 Jul 2026 04:39:31 +0000
Manifest next update:     Sun 12 Jul 2026 04:39:31 +0000
Files and hashes:         1: AEu7wBxXH6cPIOpEBQBX2dyeutI.crl (hash: jjkJoQiqI2uRxnEDBfBH8A2TXRBoJWebqHlleGOzyzI=)
                          2: C4BA1CE6E69211EE99E71B6AC4F9AE02.roa (hash: MyCVqIOapLAqkPEbtp0lVmBHxbYqY2/3hoqeYDo7nAg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.crl
                          rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 04:39:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 436 (0x1b4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91326B3, serialNumber=004BBBC01C571FA70F20EA44050057D9DC9EBAD2
        Validity
            Not Before: Jul  5 04:39:31 2026 GMT
            Not After : Jul 12 04:39:31 2026 GMT
        Subject: CN=6a49e004-05ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:74:a2:6b:7c:4a:3b:c6:ca:45:e9:d4:0e:d4:
                    5d:fd:0c:22:3e:67:fc:e1:fb:e3:f1:46:38:fc:30:
                    d7:47:c3:cf:04:49:41:b7:0e:61:69:d1:af:92:54:
                    93:f0:72:f2:9a:3f:a3:b8:4a:64:76:64:ea:92:cc:
                    de:56:49:31:53:ab:a0:fa:d1:2c:28:61:91:6a:f8:
                    2c:ee:a8:4d:74:19:79:c4:e4:e9:8f:6c:09:ae:46:
                    63:35:ac:e6:cf:00:6f:f6:23:6c:a1:a4:b2:58:fd:
                    da:f7:8f:9b:90:e7:7a:0a:ed:8a:01:5b:ec:31:c1:
                    05:e3:67:ac:2c:42:26:b0:3c:10:28:43:5e:64:0c:
                    51:37:e5:2d:d2:86:3e:3c:90:7d:98:4a:83:34:fb:
                    ec:89:a8:79:a6:85:1c:c0:c7:f1:af:bd:57:af:39:
                    f8:25:4a:f2:f9:96:81:40:89:99:e0:5f:c3:52:6a:
                    5c:f4:23:40:7f:23:75:59:3e:4c:80:32:fb:5b:69:
                    bf:ee:35:97:57:5e:8e:13:68:95:66:4f:ca:58:4f:
                    7a:a6:0b:5d:3f:49:e4:f1:71:b0:74:04:a7:c5:20:
                    1a:d9:c3:34:a0:40:b6:f4:83:d8:53:02:8c:c2:e0:
                    e5:72:48:ce:a8:93:ee:d3:dc:49:e6:12:32:f9:fa:
                    f0:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:61:D0:58:25:D1:F2:DB:B1:E6:A1:37:78:47:C1:3B:B2:D8:4F:F7
            X509v3 Authority Key Identifier:
                keyid:00:4B:BB:C0:1C:57:1F:A7:0F:20:EA:44:05:00:57:D9:DC:9E:BA:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:85:4a:d3:4f:f8:c5:df:49:22:7d:9b:fc:34:3d:45:ab:4b:
         10:86:62:4c:8d:37:c4:38:21:23:73:c6:63:05:bb:67:ad:47:
         fd:40:56:a5:73:ba:4e:c9:dd:ff:c1:4a:94:9e:1d:28:8e:09:
         73:b5:6a:9a:b4:b3:02:10:68:02:6c:96:1b:cb:6a:84:83:0f:
         b7:64:55:12:66:c4:7b:1f:a5:aa:85:91:6f:cf:b3:b6:bc:19:
         fa:e2:36:2d:ca:89:72:ad:de:bc:09:31:89:73:71:f4:09:12:
         0a:63:72:38:5c:db:15:06:fe:eb:6a:78:3b:c6:ea:c9:b3:46:
         6f:62:48:d4:43:b6:fb:f5:9f:c9:c5:09:bd:34:ac:f4:26:f0:
         2a:09:9e:51:90:0f:1e:81:c2:09:62:ae:ab:03:ce:23:0e:f1:
         e8:a2:0a:7a:9e:f2:9d:5f:be:1d:08:f3:c1:0d:be:ea:5b:f6:
         a8:25:33:ce:19:0f:0e:36:db:fd:e6:05:85:02:72:18:8e:cf:
         c9:45:a8:47:d6:98:a7:e2:2c:ab:2e:b8:83:be:bb:c3:49:c1:
         65:fd:24:88:d7:3d:9a:3e:ef:2d:87:01:2d:67:86:c0:fc:5c:
         c7:3f:b1:59:e9:34:30:7a:b7:f4:be:c5:ad:62:71:c1:8a:14:
         aa:0e:44:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:50:54 2026 by rpki-client