Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
File:                     1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json)
Hash identifier:          aHVaAIoLL3Z/zTgCwBM2eJ1NNA0pY2XDkHosgjcNvRo=
Subject key identifier:   D5:95:70:42:67:A8:6C:9A:91:07:81:67:29:A4:70:BC:B9:79:45:6E
Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC
Certificate issuer:       /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
Certificate serial:       0BF8
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
Manifest number:          0BE7
Signing time:             Thu 16 Jul 2026 19:08:59 +0000
Manifest this update:     Thu 16 Jul 2026 19:08:59 +0000
Manifest next update:     Thu 23 Jul 2026 19:08:59 +0000
Files and hashes:         1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: ZQ2zCiWETYPlXQpDRZj0cwZr1vV9eqG7nbeUUM6tPEc=)
                          2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: EP70FT9vYILp9XYrmWiAL3jLqbW9+S8BdvaaLqMxnTg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl
                          rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:08:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3064 (0xbf8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC
        Validity
            Not Before: Jul 16 19:08:59 2026 GMT
            Not After : Jul 23 19:08:59 2026 GMT
        Subject: CN=6a592c4b-111f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:ae:20:64:10:90:52:b5:b4:7b:91:4a:31:34:
                    a2:43:b2:74:36:d3:d9:d7:7f:be:de:fc:32:d6:62:
                    6e:30:a1:a4:64:9c:7c:44:ba:7e:9e:fc:24:df:63:
                    91:4a:9a:2d:34:a2:00:f2:bb:74:0b:b7:3b:47:b1:
                    73:5d:fc:99:b2:a3:78:f5:cd:76:4a:6a:71:0d:89:
                    ba:f1:6e:b5:de:31:96:36:f9:7e:83:d6:05:e7:77:
                    b4:fa:37:60:0c:9b:a0:c8:a4:81:d0:17:f2:0a:53:
                    16:11:36:ba:83:73:f7:25:a0:cc:a1:80:eb:be:8c:
                    7d:1f:1c:61:1f:a1:f0:27:12:e5:45:e8:17:7a:1b:
                    b8:f1:bf:74:76:06:2d:cd:b0:c0:92:e5:b7:cf:f9:
                    4f:a2:a5:c8:bf:b8:97:8d:de:2a:72:4a:3a:c3:07:
                    ca:ec:21:70:b0:da:89:a3:0b:ee:ed:bf:2f:bf:65:
                    78:6b:22:65:61:ce:b8:42:a6:07:dd:89:d3:9d:ff:
                    9c:ec:2e:5c:dc:e9:51:6f:c0:c6:f6:ae:0f:f7:4d:
                    60:00:4f:04:8f:10:77:d0:82:82:32:5a:e2:a1:de:
                    f2:68:6f:b8:7b:a3:85:7a:77:77:7d:1a:a6:7e:bc:
                    54:91:cb:c5:9d:41:0f:5c:43:ef:99:27:69:d9:d2:
                    99:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:95:70:42:67:A8:6C:9A:91:07:81:67:29:A4:70:BC:B9:79:45:6E
            X509v3 Authority Key Identifier:
                keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:7c:50:88:2f:97:f2:5e:90:65:1b:76:a3:c0:e8:5e:88:f4:
         17:8e:53:ce:d9:08:62:b8:24:19:f2:fb:f8:f0:ba:a4:5c:c1:
         65:8b:76:10:be:09:2b:01:94:37:3f:23:30:94:b1:11:4b:22:
         8c:ef:98:4f:78:06:f7:d9:6e:ca:00:a7:e6:76:26:07:7b:b3:
         b8:49:4a:bd:ba:1f:1b:48:c0:d7:df:80:47:d7:28:e0:1e:fe:
         e1:1b:d7:28:0b:e7:18:10:d1:ae:33:c2:f2:8b:75:51:0c:f0:
         ba:38:c6:d5:58:96:a2:01:6b:6c:be:02:b6:56:6e:72:08:6d:
         4c:0a:e6:0b:8f:cd:ee:99:6a:f7:b9:d0:70:a6:14:80:1f:60:
         6c:de:43:21:46:07:54:16:f0:3a:90:fc:8c:fc:64:9c:bd:4b:
         50:d4:1f:a4:57:a8:40:6b:92:57:d5:88:19:1c:38:8b:04:2a:
         e4:ca:cc:a1:51:53:c9:e2:73:00:fe:18:f6:b8:7c:43:32:b3:
         16:80:f4:26:8c:5d:28:0d:b8:0d:6a:57:9c:12:1e:84:59:b1:
         1a:9e:03:08:38:d0:5b:dd:50:5f:6e:42:9b:dc:10:c9:59:bb:
         fa:b7:20:68:ce:64:c5:33:d7:63:c3:d2:05:7c:3c:24:df:b4:
         8a:0a:08:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:10 2026 by rpki-client