Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
File:                     qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json)
Hash identifier:          YHiMvosdyEgjI2hhDB/6obhPtr9lCqq1Ou4dRsALGR8=
Subject key identifier:   29:71:96:81:FC:7F:DA:D1:03:94:EA:73:5E:6F:CE:3B:35:FF:5E:3A
Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2
Certificate issuer:       /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
Certificate serial:       02D4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
Manifest number:          02C8
Signing time:             Tue 07 Jul 2026 02:05:35 +0000
Manifest this update:     Tue 07 Jul 2026 02:05:34 +0000
Manifest next update:     Tue 14 Jul 2026 02:05:34 +0000
Files and hashes:         1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: QWnfGFT0ceix9VMjXJGa4nTaCJT0mWATUjDkwIwttPQ=)
                          2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: Ae2D09RrIAEsj2zD2tu6+cplYXPngj1cvZnsDaiUJHM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl
                          rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 02:05:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 724 (0x2d4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2
        Validity
            Not Before: Jul  7 02:05:34 2026 GMT
            Not After : Jul 14 02:05:34 2026 GMT
        Subject: CN=6a4c5eef-3c45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:a7:65:a6:b4:18:dd:a1:4a:b4:54:92:9e:21:
                    f7:11:56:54:26:a8:24:c3:4f:05:8f:a1:6f:7e:e4:
                    6d:9e:9b:ec:97:45:8f:ef:12:a1:74:53:0e:e9:06:
                    c4:b4:c7:98:aa:e7:4f:9f:51:9c:46:a5:c4:1e:85:
                    0d:a5:3b:27:95:ee:db:80:10:8a:be:2e:88:c9:ca:
                    75:a5:45:8a:97:35:81:69:a6:06:7d:39:25:3f:7e:
                    f0:cf:d4:aa:be:1f:ae:2a:7c:2e:7c:e7:73:e5:0f:
                    5d:22:cd:33:93:49:06:81:34:6d:29:09:da:3d:04:
                    9e:b4:0e:2b:06:d3:41:4b:0b:d0:77:12:32:0a:bc:
                    46:2c:e0:61:89:7c:83:44:4c:4f:d3:2d:66:5b:db:
                    07:78:87:95:7f:19:6c:25:d4:d7:00:41:a0:f5:d0:
                    1c:5f:4e:3c:02:3f:81:71:4a:e8:f0:b0:67:98:4c:
                    bc:1f:90:7e:0c:4b:33:ed:c7:aa:8b:e7:83:25:ec:
                    54:43:f9:1e:58:7e:84:6d:19:6e:ba:91:c1:66:5b:
                    01:e1:c4:a0:ad:e2:b9:af:4f:f0:08:da:15:91:3c:
                    1f:e2:ae:b5:e2:3c:94:cf:2c:49:88:d5:90:62:60:
                    00:2b:a8:13:e0:26:97:6c:ac:fc:b8:10:a9:f4:4a:
                    cf:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:71:96:81:FC:7F:DA:D1:03:94:EA:73:5E:6F:CE:3B:35:FF:5E:3A
            X509v3 Authority Key Identifier:
                keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:de:ed:04:5c:af:36:73:47:5c:00:92:37:75:fe:6b:50:5b:
         47:1e:d5:02:e2:95:42:0a:f1:58:2f:b7:60:06:3d:e9:44:89:
         cc:aa:04:99:3d:08:6a:c5:fc:0d:67:6c:a4:3e:84:12:e1:cc:
         0b:e8:a7:d7:b4:45:90:31:cc:d8:b8:4c:6d:3b:cf:bd:57:1a:
         1a:35:b5:44:cd:16:30:cc:43:d9:67:51:c9:bb:d1:7b:19:cd:
         60:82:bb:66:70:4d:e7:42:c8:80:b4:87:66:be:59:75:3e:cf:
         80:dd:ca:d0:ef:aa:e9:4d:bf:3e:69:f3:06:74:e4:7c:0e:ad:
         f4:d1:a5:30:21:f1:1d:38:02:49:e2:7d:88:9c:27:9d:72:de:
         50:d3:e4:eb:ed:9e:1f:02:03:f4:16:cf:36:3c:44:e9:9c:6c:
         79:cf:29:e3:f4:17:0c:bd:74:83:e1:38:c0:ed:5c:fe:62:ea:
         ce:15:60:4d:c3:59:6f:55:0d:65:18:36:fb:bb:46:cf:fc:cc:
         68:59:d3:76:53:40:35:a1:6a:12:c0:91:4d:ca:cd:fe:e2:90:
         7f:db:04:8e:61:c7:3b:b7:44:47:90:fb:41:e0:c9:9c:71:19:
         f7:7e:92:83:14:d1:33:20:e6:d1:19:9b:15:84:9c:18:9d:79:
         67:4f:2d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 03:09:38 2026 by rpki-client