Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft
File:                     WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft (raw, json)
Hash identifier:          dFX9/rqYzwN+pPeP3mgjTZ6TRYf3vF9t5mtLhz0m/Bg=
Subject key identifier:   C4:B4:5C:08:B1:07:F9:89:24:6D:7A:2C:0B:7D:EE:A8:D7:7D:2E:2F
Authority key identifier: 58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1
Certificate issuer:       /CN=A914A75A/serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1
Certificate serial:       0100
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft
Manifest number:          FD
Signing time:             Sun 05 Jul 2026 06:52:08 +0000
Manifest this update:     Sun 05 Jul 2026 06:52:08 +0000
Manifest next update:     Sun 12 Jul 2026 06:52:08 +0000
Files and hashes:         1: WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl (hash: fAKn5FmrUL84D8vHoo51473CWtkDvzNfE5RdwSZb1Qg=)
                          2: D56D67B0F48711EFBB2D9D73C4F9AE02.roa (hash: csaBSpZzq59GMLhCxwkq41kKwaXSwMxp+Vf9tiYrdrg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl
                          rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:54:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 256 (0x100)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914A75A, serialNumber=58EEE52D2AE092EC5586E070E6462C36350FA6E1
        Validity
            Not Before: Jul  5 06:52:08 2026 GMT
            Not After : Jul 12 06:52:08 2026 GMT
        Subject: CN=6a49ff18-a429
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:25:f4:f4:42:69:a5:f9:19:88:2b:4b:01:34:
                    6e:2f:f6:21:c5:06:45:05:e2:cc:83:cf:26:f2:2b:
                    88:bc:c2:a4:9d:89:4e:88:e6:5e:47:2f:54:18:d1:
                    72:2d:0b:6f:f0:60:83:de:61:9c:09:af:13:13:a1:
                    81:70:50:5f:ef:5b:3d:ba:aa:12:9a:aa:87:06:40:
                    c9:40:d7:35:9d:89:b2:d2:96:88:06:06:30:73:28:
                    11:4d:20:ef:ea:ba:55:08:e4:37:43:b8:32:10:72:
                    1e:88:13:e8:e0:ac:82:b8:79:ee:dd:fc:c5:29:fc:
                    39:c1:a0:74:77:00:dd:dc:b4:a5:10:30:87:59:3e:
                    74:96:97:db:df:4b:f6:da:f7:f3:8e:4e:50:30:31:
                    a0:f8:fe:31:a2:e0:cf:11:a0:44:3c:64:ca:c8:81:
                    72:c2:30:67:3e:a5:a4:1d:ec:fe:45:ea:35:86:32:
                    b1:28:31:1d:ab:e2:b9:51:92:85:29:30:76:e6:1e:
                    27:d5:b1:73:3a:c7:4a:a4:8a:6e:97:aa:53:6e:77:
                    c6:b4:40:08:d6:50:e8:08:18:09:7b:3a:5f:e3:3e:
                    fd:29:48:b7:02:38:71:ac:d0:8b:06:58:f1:40:ce:
                    ee:04:e3:e5:bf:e8:b9:6e:fb:af:20:8d:dc:64:e8:
                    6b:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:B4:5C:08:B1:07:F9:89:24:6D:7A:2C:0B:7D:EE:A8:D7:7D:2E:2F
            X509v3 Authority Key Identifier:
                keyid:58:EE:E5:2D:2A:E0:92:EC:55:86:E0:70:E6:46:2C:36:35:0F:A6:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WO7lLSrgkuxVhuBw5kYsNjUPpuE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A75A/3FAA7C54F48711EF849A2772C4F9AE02/WO7lLSrgkuxVhuBw5kYsNjUPpuE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:4e:df:5f:f3:f9:5f:ea:b9:a2:58:b1:92:e0:0c:15:d0:f7:
         a2:fc:2c:02:9b:4d:71:13:94:d3:ef:7f:6a:d1:e1:8d:41:74:
         e3:2a:ba:19:c9:7f:f0:d6:4b:0a:99:5b:a5:f0:4e:09:2b:13:
         44:e2:47:67:85:45:e7:b1:13:eb:71:86:66:90:02:a7:f9:96:
         42:15:4a:01:fd:76:97:35:91:7a:a0:8b:9e:08:87:13:49:80:
         b8:9f:d9:32:d6:56:db:b4:6a:8d:b7:94:1a:dd:a0:d2:63:9f:
         9c:60:ca:d1:96:ff:27:cd:98:24:46:b2:9b:b3:0c:45:36:02:
         75:b0:c3:11:44:5a:c5:a3:58:d2:4e:b6:c2:7c:86:55:17:6b:
         2c:3b:14:f7:72:db:89:1f:db:d1:2d:ea:24:1f:73:54:47:b5:
         9b:b1:52:91:17:47:ad:12:73:9f:9e:a1:8a:f4:ef:48:36:f4:
         3d:1b:68:31:54:49:bc:9f:aa:d5:1e:3a:61:3c:c3:42:b7:62:
         7a:ca:ec:b0:99:01:a0:81:ba:53:61:0f:fe:a1:e2:bf:bb:23:
         95:97:4a:35:29:b7:bf:cf:bb:09:fb:6e:7d:d3:b6:c2:43:a0:
         b7:85:7b:d4:7f:ff:d0:78:59:a2:b4:b1:ec:e2:ed:1d:fa:72:
         7f:d8:f5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:46 2026 by rpki-client