Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft
File:                     TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json)
Hash identifier:          YVHS87//f8ewiKW0lYpuYvcu5z0rqQSDhhdCGGawMvk=
Subject key identifier:   7C:4D:6F:B2:4C:3C:79:4D:AC:1C:59:23:D6:27:A4:AB:9A:94:59:C8
Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3
Certificate issuer:       /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3
Certificate serial:       0244
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft
Manifest number:          023D
Signing time:             Sun 05 Jul 2026 03:05:48 +0000
Manifest this update:     Sun 05 Jul 2026 03:05:48 +0000
Manifest next update:     Sun 12 Jul 2026 03:05:48 +0000
Files and hashes:         1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: d+9x77rVPz+7Vrjgi6f/H5pkU6xLq7pSTvVD0aNMl3M=)
                          2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: P4LCaX2qP/BKspd2PRKRAgneO72VBMSnJqp0JvaJ48M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl
                          rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 03:05:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 580 (0x244)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3
        Validity
            Not Before: Jul  5 03:05:48 2026 GMT
            Not After : Jul 12 03:05:48 2026 GMT
        Subject: CN=6a49ca0c-722f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:69:af:1e:d5:03:89:43:89:2c:eb:24:b4:2c:
                    6f:6d:b5:62:5e:37:38:f4:0b:db:8d:62:1e:82:d7:
                    1c:3b:03:f0:2f:12:f6:87:b9:3a:2a:30:bf:38:f5:
                    e4:10:25:40:79:d2:6c:2c:63:39:06:21:ba:80:6b:
                    d5:e0:af:f6:fd:87:0c:91:d3:df:47:cf:8a:4d:93:
                    dc:8b:0d:da:fe:04:1d:ed:33:13:c2:e8:06:7a:fe:
                    8a:a6:5a:e3:3c:cd:05:91:31:dd:1e:b4:1d:42:ae:
                    05:c9:73:db:1f:29:ea:2b:49:9f:08:72:3d:2d:6b:
                    e6:f6:4c:60:21:97:2a:b7:32:8b:eb:bd:4a:96:89:
                    65:9e:08:f9:ec:ab:3c:a8:23:53:0d:57:73:dc:44:
                    dc:2d:1e:2e:56:96:91:49:0b:69:53:05:4d:b9:91:
                    8d:b8:63:8a:3f:21:4e:e8:b4:c9:82:e3:59:d8:26:
                    8e:d0:b1:52:32:05:0a:0b:a5:29:4e:b7:6f:2c:08:
                    fc:b8:e9:f9:1b:cc:f2:71:9e:94:ea:b9:34:bd:72:
                    13:7a:9c:12:46:51:3f:4e:e7:b0:70:5d:e0:b9:eb:
                    e4:e6:a7:2e:e1:2b:32:c9:76:7e:2f:e6:f7:fd:64:
                    c7:79:0a:28:d5:18:2c:53:b1:20:0a:21:62:b7:89:
                    99:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:4D:6F:B2:4C:3C:79:4D:AC:1C:59:23:D6:27:A4:AB:9A:94:59:C8
            X509v3 Authority Key Identifier:
                keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:24:c4:c5:91:47:6b:81:2c:b6:94:b5:db:34:07:14:5c:1a:
         fe:d0:15:ac:cf:86:15:a9:9e:6f:87:6a:67:99:3d:bb:a7:77:
         8a:69:18:51:59:e5:c3:73:dd:3e:c4:f3:37:59:56:e1:0b:23:
         02:12:b3:b2:d5:ad:12:cc:0c:cb:97:51:9b:63:14:3f:90:63:
         50:28:f4:90:60:52:4d:ab:14:d5:e4:29:0b:2a:9b:73:4c:58:
         5a:e4:d5:17:c5:14:af:2e:16:43:a8:08:85:90:5a:8c:d0:4d:
         62:13:da:9a:b7:10:cc:68:ad:7a:2b:20:c1:d2:51:0a:8f:61:
         80:fb:62:4d:6c:3b:d7:06:e0:78:53:46:e1:84:02:8a:6f:ac:
         12:22:c4:48:3a:fe:06:56:08:d9:a5:ff:8d:3b:c4:1d:c2:d9:
         05:35:a4:50:b3:e3:53:9b:23:f1:68:24:34:b8:53:5c:76:09:
         ae:c9:ad:86:db:aa:fb:aa:e1:79:cc:65:fa:9c:00:cd:a4:07:
         e6:1e:c2:7c:36:aa:de:bd:ef:38:11:e8:60:f8:77:66:88:71:
         bf:93:de:36:bb:f6:2e:78:64:0f:82:a1:ef:aa:d6:12:e8:54:
         94:3c:06:d2:15:98:1d:24:8f:f5:e7:4f:6d:bf:49:5e:be:2b:
         b3:35:94:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:53:26 2026 by rpki-client