Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
File:                     s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json)
Hash identifier:          B3pACshCAT5LaARLJv2iZMz2clWee//k0cDM9dylVkU=
Subject key identifier:   02:FC:F4:E3:58:AB:9A:78:D0:AB:C6:54:CD:D1:4F:A5:B0:00:65:E1
Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC
Certificate issuer:       /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
Certificate serial:       01D2
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
Manifest number:          01CC
Signing time:             Fri 17 Jul 2026 04:44:35 +0000
Manifest this update:     Fri 17 Jul 2026 04:44:34 +0000
Manifest next update:     Fri 24 Jul 2026 04:44:34 +0000
Files and hashes:         1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: 4yor8kRim5kAqu4dL8GabW+rU5xJ+Ek6kt0ZD9knAd8=)
                          2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: O+F2f0VhvNnWnKbzy9esY0C22BqTbjq93BfHVqmsqRo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl
                          rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:44:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 466 (0x1d2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC
        Validity
            Not Before: Jul 17 04:44:34 2026 GMT
            Not After : Jul 24 04:44:34 2026 GMT
        Subject: CN=6a59b332-f710
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:9c:9b:38:49:a0:cf:e9:2f:ad:f1:ed:7e:7c:
                    b0:46:9a:5b:5f:9f:f8:6d:b3:63:2e:b7:1d:68:f2:
                    3d:cf:79:e6:e9:ce:ab:91:73:4e:00:c7:61:fd:f1:
                    37:2a:66:6e:15:be:85:85:80:c2:1c:43:a1:02:ef:
                    62:86:39:e2:b2:76:58:de:35:18:af:10:92:a7:65:
                    c8:24:33:10:b5:c5:12:f8:d6:38:0f:22:8f:be:68:
                    86:18:8c:ac:96:d8:f5:49:c4:58:4c:d5:f6:59:25:
                    80:8d:3c:ed:83:10:82:54:35:89:50:03:5c:8a:4f:
                    e4:4c:49:0d:82:1f:6a:22:9e:4d:9d:d6:83:11:50:
                    5f:67:d5:68:2c:ae:18:89:7a:27:14:9a:08:d9:a2:
                    00:5f:03:d8:8e:ee:17:3c:38:d5:d4:a8:ec:c4:67:
                    6b:d6:91:1c:82:8b:e1:e1:2d:3f:bc:28:cb:36:af:
                    2b:0f:dd:d6:9b:fc:23:4d:ba:9e:11:0c:80:7e:2b:
                    37:b2:81:2b:0b:58:d0:ae:07:21:af:f3:c0:11:8e:
                    e4:45:d2:78:cf:5a:20:0d:6a:93:0c:00:42:95:0a:
                    16:3d:d5:04:8c:fd:01:8d:5c:7d:43:bb:3f:74:fb:
                    33:60:d9:3e:63:12:48:7d:0b:cf:c6:1e:09:13:b3:
                    43:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:FC:F4:E3:58:AB:9A:78:D0:AB:C6:54:CD:D1:4F:A5:B0:00:65:E1
            X509v3 Authority Key Identifier:
                keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:62:be:46:2b:35:8e:2f:8e:d1:ac:3b:a8:96:81:f2:88:b9:
         ee:0b:b4:2c:8c:8f:94:d1:e7:09:34:93:5b:98:c4:65:6a:28:
         88:4b:0c:23:27:06:de:4e:d0:82:ce:59:af:fb:ab:e7:ff:0c:
         ff:ea:f2:fd:01:20:d8:08:7f:08:44:2d:1f:95:f2:2a:a5:d6:
         a5:df:41:c2:67:0e:f7:66:fc:58:2f:53:d1:99:32:10:2f:6a:
         23:89:22:ca:fb:db:d9:e7:b9:92:3a:56:ab:e0:ed:2b:a9:0d:
         73:8a:1b:fc:12:49:1a:72:0e:da:90:a2:45:46:74:10:a9:82:
         32:f1:b3:2e:dc:5b:fd:0c:95:dc:7e:7c:38:b0:74:ae:cf:4f:
         3e:30:bf:da:80:f5:c6:78:b2:45:ab:ca:0c:27:4e:a1:f1:49:
         3d:5a:98:cc:6c:18:2e:09:27:2e:81:84:a6:2b:19:01:f3:c3:
         08:c1:df:f1:36:d8:9f:a1:06:fb:29:90:4b:a1:d4:86:aa:84:
         1f:37:4f:b7:7f:9c:17:2f:96:f1:c3:8d:b6:2d:d5:fc:af:86:
         38:46:24:09:8d:e5:0e:03:c4:fd:b5:36:3e:7a:e9:ca:bb:6b:
         dc:be:51:f9:31:aa:5e:d4:63:e2:65:8f:3f:53:25:3c:64:1a:
         7c:1f:43:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:15 2026 by rpki-client