Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft
File:                     GhajkdMlFwt7hcS_x4VaF300e24.mft (raw, json)
Hash identifier:          8BK9tgym9pHwpvqE4m+zb42p8vj0mnOJwY84Qe2pfZI=
Subject key identifier:   04:C0:65:59:C6:19:8A:83:63:C2:13:51:D7:6A:5E:D5:B8:4C:6A:27
Authority key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E
Certificate issuer:       /CN=A913B510/serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E
Certificate serial:       C8
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft
Manifest number:          C3
Signing time:             Fri 17 Jul 2026 08:08:08 +0000
Manifest this update:     Fri 17 Jul 2026 08:08:07 +0000
Manifest next update:     Fri 24 Jul 2026 08:08:07 +0000
Files and hashes:         1: GhajkdMlFwt7hcS_x4VaF300e24.crl (hash: qbDNdlvfdrd90QItr+utyQdNEvqcdc9dHGfktvUxPgo=)
                          2: 9CAF31CA5D8111F0A04DD550C4F9AE02.roa (hash: ObOITIzgGgqGBPGudigAZ1pn1ycFYqSZSvvOBF2J+iU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl
                          rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:08:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 200 (0xc8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E
        Validity
            Not Before: Jul 17 08:08:07 2026 GMT
            Not After : Jul 24 08:08:07 2026 GMT
        Subject: CN=6a59e2e7-e6d4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:01:a5:99:46:41:ef:fe:af:25:31:23:b3:f4:
                    2e:46:f3:a6:39:77:a2:4f:0b:47:d2:2c:58:d4:27:
                    4d:aa:82:27:68:fe:b8:54:9b:74:85:58:31:00:06:
                    28:a1:cc:d4:1c:82:bc:fc:52:13:9c:95:5d:69:d1:
                    36:15:e5:cc:a5:a0:59:38:4b:ec:67:c1:72:b9:5e:
                    0c:67:2d:dc:88:19:a9:fc:70:30:83:07:69:45:42:
                    e2:9b:3b:43:2d:03:6c:48:82:38:a0:3d:1c:bb:b6:
                    9a:77:9a:b5:a5:38:a1:a6:06:8f:15:cf:7f:25:1b:
                    09:a2:2c:bd:dc:f2:7b:4a:87:1c:e8:b4:d2:fe:1a:
                    15:8b:6f:f9:ec:50:fc:78:a3:70:ba:4a:94:22:04:
                    ef:86:81:30:7f:5d:18:68:5f:f6:3b:a1:21:09:39:
                    1a:ba:de:5a:16:22:b4:d7:70:21:96:8e:b9:31:af:
                    68:f8:43:81:33:71:df:4b:4e:62:f2:f5:e1:93:5e:
                    c2:9e:b1:60:67:db:01:53:e0:56:bc:a3:6f:e6:0f:
                    99:5f:89:c1:0a:2c:a9:e3:b7:b3:2e:38:8b:5c:0d:
                    b9:ae:ec:6c:93:2d:86:0d:c6:fc:da:71:06:a4:ca:
                    10:eb:9d:2b:7b:d7:a6:7c:2b:dd:eb:5d:bc:5a:e2:
                    5d:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:C0:65:59:C6:19:8A:83:63:C2:13:51:D7:6A:5E:D5:B8:4C:6A:27
            X509v3 Authority Key Identifier:
                keyid:1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c1:d0:77:15:45:3f:b2:6d:5f:86:58:92:7e:d8:6b:59:f0:49:
         63:93:6b:0d:c9:0c:ef:fd:20:d8:0c:e9:f6:6c:91:30:a7:0f:
         82:76:ca:ef:dc:b5:80:21:eb:f4:b4:79:a8:d2:44:cb:b8:7b:
         43:fc:54:0c:bd:ee:24:d7:f5:1f:d7:69:0e:77:5e:f4:cb:b4:
         d0:cf:ad:01:9e:03:0a:8c:94:55:13:cb:5a:35:16:7c:3c:aa:
         d4:35:33:32:b3:6e:28:ef:68:10:d9:e4:5f:15:19:aa:63:37:
         8b:6d:e3:a5:07:fc:0a:7d:d9:a0:a6:e2:c4:64:07:8c:ef:43:
         88:50:ce:77:ae:3a:9e:a8:41:7b:72:5a:0b:2d:d4:85:58:00:
         73:97:dd:2a:f6:c8:86:e7:52:36:c4:e2:d9:a4:e6:9d:26:64:
         be:a7:8c:e9:dd:b7:ea:17:45:13:bc:6b:d8:75:b4:10:76:d2:
         c6:8d:9d:14:b7:73:7a:c4:46:c5:d2:1a:4b:1f:78:4a:52:0e:
         6b:3d:44:08:ec:0a:37:14:90:23:ef:33:33:c7:2e:ee:fd:bf:
         e2:8c:85:29:ba:b8:d5:85:cd:ea:d9:b7:8a:65:7c:ce:17:f6:
         8b:08:78:85:8c:bf:c6:d5:9f:e5:ac:fe:0a:bb:89:99:61:ec:
         b0:a4:c2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:03 2026 by rpki-client