Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
File:                     T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json)
Hash identifier:          gUbXRzwLNlqp1G5mHtd/cAvMQ2wjTsGN1gIyQXbe5HY=
Subject key identifier:   A2:3F:37:7B:E0:9E:83:9A:F2:95:84:5F:6F:3F:91:5D:9F:79:F8:F2
Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A
Certificate issuer:       /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A
Certificate serial:       01E7
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
Manifest number:          01DD
Signing time:             Fri 17 Jul 2026 04:31:25 +0000
Manifest this update:     Fri 17 Jul 2026 04:31:25 +0000
Manifest next update:     Fri 24 Jul 2026 04:31:25 +0000
Files and hashes:         1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: q7+sf7vfW3hhbaOptx4VGSDHq/WhI/UFbEnAs1gDGaU=)
                          2: D2FF8C06A92711F08CEB6934C4F9AE02.roa (hash: KRsNH66T+IbVfJVXh4HXcfnfG/XP7iz+CZYJM0ybrSQ=)
                          3: 2546725EA92811F0A138DF72C4F9AE02.roa (hash: ccOvd6OCJeS5Mo5TD4UA7bVIYTSRvb313FpwtTK7ruw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl
                          rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:31:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 487 (0x1e7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A
        Validity
            Not Before: Jul 17 04:31:25 2026 GMT
            Not After : Jul 24 04:31:25 2026 GMT
        Subject: CN=6a59b01d-f693
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:2d:e8:1c:3b:84:a7:a0:c2:69:9f:f2:64:48:
                    9e:1b:0b:af:cf:f6:15:d0:07:ae:01:c3:0f:d7:2c:
                    d4:d6:d2:fd:69:a1:49:d2:32:ce:91:7a:33:c9:1e:
                    7d:ca:3c:91:88:9a:1b:9f:71:fa:f1:f0:58:f9:e9:
                    4c:88:2e:5d:6c:f7:92:54:34:da:d7:2f:0b:1e:40:
                    bd:4b:c6:a3:24:bc:bc:d4:70:df:64:38:71:50:bb:
                    9c:19:49:8b:86:3c:9b:b8:37:a4:1c:3a:c2:c6:1a:
                    ce:37:bc:39:1e:c2:9f:25:a9:5e:79:4e:4d:53:80:
                    45:43:89:b0:59:44:f8:9a:a4:7c:b9:57:9e:2c:ea:
                    46:75:42:43:85:e1:17:f7:dc:20:52:92:c7:80:6d:
                    2e:a4:f8:18:7e:bb:ee:f6:4c:50:da:71:8f:58:ba:
                    6e:32:4c:12:88:86:25:c8:83:dd:a1:62:78:bb:8b:
                    75:d8:a3:4e:87:e4:ca:d4:4f:b2:d4:36:32:c5:dd:
                    71:4b:37:43:9d:52:c6:f4:9e:05:2d:5d:ce:7d:cf:
                    03:c6:d4:e7:7e:4f:73:4f:7f:74:86:58:c7:ae:67:
                    be:e8:ba:49:ae:a7:25:9d:f5:7a:10:47:d2:5f:fa:
                    25:00:1a:ff:f9:72:22:e4:d8:24:69:e6:2a:37:bf:
                    4a:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:3F:37:7B:E0:9E:83:9A:F2:95:84:5F:6F:3F:91:5D:9F:79:F8:F2
            X509v3 Authority Key Identifier:
                keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:ed:67:4b:b7:ba:b0:d8:19:e7:c0:8a:60:41:dd:c0:64:49:
         f2:ec:a3:fd:1f:a8:55:6f:e4:71:0b:8a:4e:95:08:f1:90:bf:
         76:f2:68:1d:02:06:4b:85:d7:74:c3:90:39:e0:d3:02:3d:7e:
         b7:67:23:62:40:d1:f1:df:7d:a8:20:15:a8:6e:87:71:4b:8b:
         ef:47:b1:92:76:fc:d2:ed:ab:f9:ab:c7:85:97:aa:89:01:d3:
         0d:50:c9:77:1a:29:d0:f6:78:dd:de:d8:f3:df:ec:8c:f4:5a:
         1a:cb:40:e8:2b:61:b1:9a:4e:84:2a:44:f1:40:4e:13:dc:e7:
         f3:5d:9d:c6:25:da:1b:2f:92:3f:5f:0c:e3:fd:cd:71:5c:3b:
         59:3d:3c:25:fe:ff:c8:be:bd:ca:c1:fc:da:f6:6f:bf:32:0c:
         a3:4c:4f:66:f4:32:64:4b:87:ee:ca:ed:d4:27:06:e9:94:0d:
         2d:f4:87:60:39:ed:03:bf:8a:99:3a:02:53:ad:4b:9e:a7:b7:
         9c:ab:0e:f8:f8:9f:14:5f:6d:60:e6:89:2b:0a:76:67:1e:db:
         47:26:e9:19:d3:d0:e1:5e:16:55:b7:f0:9d:c4:49:33:32:52:
         ab:ca:1b:d7:3d:ab:9b:e1:6c:48:e6:9f:10:12:b2:60:80:28:
         66:d2:d5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:21 2026 by rpki-client