Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft
File:                     MxjodUE2Qh4kSmxB3aXezBDaj4E.mft (raw, json)
Hash identifier:          4tbc18uBbxviQQEPtIjeXMydLZXwKCoeqZjC92dBBe8=
Subject key identifier:   35:3C:E8:09:9C:D4:BB:8D:26:90:C8:A1:51:92:1C:27:3B:CF:AC:95
Authority key identifier: 33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81
Certificate issuer:       /CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81
Certificate serial:       0206
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft
Manifest number:          0201
Signing time:             Fri 17 Jul 2026 04:02:58 +0000
Manifest this update:     Fri 17 Jul 2026 04:02:58 +0000
Manifest next update:     Fri 24 Jul 2026 04:02:58 +0000
Files and hashes:         1: MxjodUE2Qh4kSmxB3aXezBDaj4E.crl (hash: Er9TJAqraUol3yqo5Y7UXOiRQVzJ48oZXNAxkwB7if8=)
                          2: 2201EFC86E5211EEB027A974C4F9AE02.roa (hash: KvfHIPuFU1q+aC272iMwdKoNoq5N7DEJ+uq/zpJXB94=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl
                          rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:02:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 518 (0x206)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91490C8, serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81
        Validity
            Not Before: Jul 17 04:02:58 2026 GMT
            Not After : Jul 24 04:02:58 2026 GMT
        Subject: CN=6a59a972-ef6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:14:66:d8:e9:4c:5d:53:ec:b0:d2:2c:b3:32:
                    13:48:de:30:1d:de:10:92:41:06:12:2f:5b:5b:3f:
                    10:7c:1d:7a:59:8d:e5:09:28:a7:6a:a3:84:3a:f5:
                    85:71:5e:25:5c:c5:9b:29:07:76:ad:b3:84:c2:ce:
                    30:1b:65:d1:5a:d7:7b:e8:57:3d:b2:52:cb:43:2b:
                    fd:2a:62:67:0f:6f:e9:99:e6:27:86:e4:dd:db:07:
                    3a:70:de:f4:8a:51:38:f0:9f:92:98:cd:07:12:a0:
                    04:b8:e0:ad:c1:4a:13:d9:6e:82:5c:97:64:9a:0f:
                    b0:0f:e6:59:ee:23:48:08:26:ff:23:31:37:cd:11:
                    88:2d:ea:f3:e5:c6:93:69:02:95:5c:54:0a:33:a8:
                    3b:ae:86:73:af:c4:09:46:86:73:6f:6d:4f:39:5f:
                    ef:da:f9:eb:d4:3d:e3:78:f2:c0:42:b3:aa:31:96:
                    a3:da:8f:4a:73:f2:c6:2e:b2:d6:77:82:b8:71:b8:
                    c3:19:35:31:be:b0:81:35:1c:65:0d:19:e0:fc:07:
                    e4:b2:0c:8d:80:9e:5c:9e:47:46:8f:76:88:48:8b:
                    a7:84:4a:6c:c3:54:f7:ff:86:b2:ed:e6:3b:9a:aa:
                    c1:c7:21:af:05:a2:63:25:e4:c3:e6:44:eb:1b:c7:
                    44:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:3C:E8:09:9C:D4:BB:8D:26:90:C8:A1:51:92:1C:27:3B:CF:AC:95
            X509v3 Authority Key Identifier:
                keyid:33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:ba:eb:0a:26:8a:76:69:90:c4:37:0d:3e:90:5d:6d:4f:2f:
         e7:d8:72:ec:31:ca:ef:90:8a:0a:6f:ca:2b:17:c9:cd:c5:9a:
         a1:ef:c2:cc:46:79:99:f1:5c:80:ec:9b:28:ad:1b:6b:29:43:
         05:66:52:ee:db:85:a6:d6:5d:4f:c8:69:da:cf:42:cd:ef:53:
         f9:0e:fb:11:ab:60:32:f9:e4:03:4b:f8:70:98:49:43:e8:8b:
         8a:bd:47:2f:07:8c:3d:d5:76:0a:11:d8:c5:4a:4a:56:25:25:
         8f:4b:7a:f1:49:4d:34:17:a2:8f:46:87:e0:f9:24:37:fc:d7:
         35:fc:4c:71:56:7f:83:c6:d0:30:18:4e:55:5f:77:6e:3c:39:
         7f:6d:fb:ea:f6:f9:5f:c9:b9:10:e2:23:f4:09:83:bd:ee:5b:
         97:58:4b:bc:dc:ad:b7:52:33:ec:c0:4a:59:03:e3:df:9b:35:
         be:83:6c:fa:40:3b:6f:6c:0d:e4:2f:a3:f8:ed:32:29:a6:13:
         b2:6c:ea:2b:3c:cb:a9:fb:47:8b:b4:e5:52:aa:4e:81:2e:a2:
         c6:09:c6:8e:0c:80:47:8c:78:51:a9:c5:48:4b:76:88:85:98:
         af:d4:12:8d:42:dc:4c:37:3d:3d:a0:3d:49:9a:11:e0:a3:b3:
         05:15:9d:81
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDkwQzgxMTAvBgNVBAUTKDMzMThFODc1NDEzNjQyMUUyNDRBNkM0MUREQTVERUND
MTBEQThGODEwHhcNMjYwNzE3MDQwMjU4WhcNMjYwNzI0MDQwMjU4WjAYMRYwFAYD
VQQDEw02YTU5YTk3Mi1lZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqBRm2OlMXVPssNIsszITSN4wHd4QkkEGEi9bWz8QfB16WY3lCSinaqOEOvWF
cV4lXMWbKQd2rbOEws4wG2XRWtd76Fc9slLLQyv9KmJnD2/pmeYnhuTd2wc6cN70
ilE48J+SmM0HEqAEuOCtwUoT2W6CXJdkmg+wD+ZZ7iNICCb/IzE3zRGILerz5caT
aQKVXFQKM6g7roZzr8QJRoZzb21POV/v2vnr1D3jePLAQrOqMZaj2o9Kc/LGLrLW
d4K4cbjDGTUxvrCBNRxlDRng/AfksgyNgJ5cnkdGj3aISIunhEpsw1T3/4ay7eY7
mqrBxyGvBaJjJeTD5kTrG8dECQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDU86Amc
1LuNJpDIoVGSHCc7z6yVMB8GA1UdIwQYMBaAFDMY6HVBNkIeJEpsQd2l3swQ2o+B
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTBDOC9DQzIzMzhEQzZF
NTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFoNGtTbXhCM2FYZXpCRGFq
NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL014am9kVUUyUWg0a1NteEIzYVhlekJEYWo0RS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
OTBDOC9DQzIzMzhEQzZFNTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFo
NGtTbXhCM2FYZXpCRGFqNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAKbrrCiaKdmmQxDcNPpBdbU8v59hy7DHK75CKCm/KKxfJzcWaoe/CzEZ5mfFc
gOybKK0baylDBWZS7tuFptZdT8hp2s9Cze9T+Q77EatgMvnkA0v4cJhJQ+iLir1H
LweMPdV2ChHYxUpKViUlj0t68UlNNBeij0aH4PkkN/zXNfxMcVZ/g8bQMBhOVV93
bjw5f2376vb5X8m5EOIj9AmDve5bl1hLvNytt1Iz7MBKWQPj35s1voNs+kA7b2wN
5C+j+O0yKaYTsmzqKzzLqftHi7TlUqpOgS6ixgnGjgyAR4x4UanFSEt2iIWYr9QS
jULcTDc9PaA9SZoR4KOzBRWdgQ==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:45 2026 by rpki-client