Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft
File:                     2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json)
Hash identifier:          uzL8O3JLVptW0Xfmz1s6ZCTT/YgqqQpWx374l+A90k4=
Subject key identifier:   71:48:37:74:F9:A2:83:CB:E8:77:1E:0E:D2:88:50:6B:38:5E:48:8D
Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00
Certificate issuer:       /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00
Certificate serial:       059A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft
Manifest number:          058C
Signing time:             Thu 16 Jul 2026 23:44:51 +0000
Manifest this update:     Thu 16 Jul 2026 23:44:51 +0000
Manifest next update:     Thu 23 Jul 2026 23:44:51 +0000
Files and hashes:         1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: YYpDIG7sfKHuDSaMt24VEHPkqCg1NyNaapYSxzrMCqc=)
                          2: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: 5f9ml2EUZAGAD2c6U/Z9/PW0M3VyIhaGC3vHQZLyq8I=)
                          3: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: KV+oymiCQ8SI81Nw8YLk5LKF58JCB1ujUEL9Z05HDyg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl
                          rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:44:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1434 (0x59a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00
        Validity
            Not Before: Jul 16 23:44:51 2026 GMT
            Not After : Jul 23 23:44:51 2026 GMT
        Subject: CN=6a596cf3-be52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:29:54:f4:df:4f:76:13:e2:4a:37:23:8e:0b:
                    1f:1d:13:7c:6c:91:fa:f7:bb:40:e9:5e:76:4e:3c:
                    ad:54:54:0e:05:42:c2:60:0f:27:a0:ac:ad:8e:58:
                    3a:b3:a1:ce:c5:07:aa:dd:79:31:15:2d:ec:6c:04:
                    11:2d:6c:00:42:e7:4f:e1:5a:24:7d:2c:96:7d:8a:
                    ac:a4:00:66:ea:67:5c:d7:6c:19:5f:08:0e:1a:94:
                    b3:d0:15:46:a5:26:0b:80:33:ac:df:a6:a1:be:8b:
                    5a:da:a1:06:3e:91:f4:56:d0:e4:28:6f:91:1b:24:
                    63:29:b5:e0:2e:13:a7:80:8f:11:5f:93:d8:6e:dc:
                    ae:95:14:d5:73:3e:ff:62:cc:37:3e:20:17:c1:c6:
                    7e:67:20:f4:3d:7c:b2:d4:a3:f5:08:36:fe:67:8b:
                    fd:b5:ff:46:e4:fb:c2:e0:eb:2d:37:0a:04:9f:bd:
                    5a:93:ea:62:47:44:d2:11:4c:8a:fe:e7:89:e9:93:
                    bf:bf:ea:9c:c0:22:34:0a:fd:50:69:a8:95:0c:ee:
                    02:64:8a:21:b1:2d:5b:b7:02:09:d2:d5:61:77:b6:
                    dd:11:60:44:a8:d0:f4:ba:17:e8:17:30:45:f0:9a:
                    b4:0b:a9:a9:bf:7e:5b:a1:09:65:5f:43:2f:c4:24:
                    c8:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:48:37:74:F9:A2:83:CB:E8:77:1E:0E:D2:88:50:6B:38:5E:48:8D
            X509v3 Authority Key Identifier:
                keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:3e:81:ba:16:ca:21:e0:bd:60:59:fa:c9:16:77:87:5c:68:
         5d:3f:93:e0:64:59:be:90:c1:87:92:67:6f:10:e2:4b:c1:f8:
         2c:1f:b2:8a:d3:48:26:f9:2b:b3:b6:53:17:67:5f:6c:e5:96:
         d0:96:51:07:fc:36:aa:e4:3f:78:6c:8e:06:b0:18:77:d3:05:
         59:e0:7e:25:9b:ad:de:3f:bd:66:96:a5:a3:4e:d9:80:80:1f:
         53:98:30:54:0e:c5:eb:6e:b3:f8:c6:b4:05:67:25:eb:48:4c:
         c2:08:f9:a5:74:19:bb:4c:c1:33:f2:09:a1:64:b1:0d:15:ad:
         1e:a4:e3:b3:8d:33:3d:8d:cd:7a:cf:7e:3c:bf:68:4d:d5:4b:
         7a:58:47:11:cb:66:73:f0:54:c2:1c:62:80:dd:29:cb:1e:83:
         3f:f8:a0:41:80:1e:52:92:be:d7:96:34:f8:5d:03:98:8f:d5:
         96:4e:03:b1:8a:69:36:fe:57:e1:82:25:32:22:ad:2b:5c:69:
         7c:1a:1e:ae:cb:dc:a1:9a:2e:db:ac:ae:43:b1:38:cf:2b:d3:
         c9:8a:f9:e9:03:9e:f0:8f:c1:78:71:9b:f4:24:52:75:dc:26:
         01:a6:46:37:94:d8:c9:e9:24:53:1c:ed:18:20:6e:b5:07:c5:
         60:13:16:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:33 2026 by rpki-client