Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft
File:                     66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json)
Hash identifier:          CkFpQ86xdN5x45IrVz8YKVAia409qullCS76+j3iKCY=
Subject key identifier:   D3:06:63:39:62:80:E5:A4:DA:F2:D5:B5:55:53:AC:ED:54:66:69:46
Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63
Certificate issuer:       /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163
Certificate serial:       0188
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft
Manifest number:          017F
Signing time:             Sun 05 Jul 2026 05:10:28 +0000
Manifest this update:     Sun 05 Jul 2026 05:10:28 +0000
Manifest next update:     Sun 12 Jul 2026 05:10:28 +0000
Files and hashes:         1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: 1FZTc13+usK+OVgVlHHYoOOq4GsqBFC0RB7GP0+BEyg=)
                          2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: TP1lZPycmwhzIV9eyCEIRMOWox0jw70KYaYid67Sq48=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl
                          rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:10:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 392 (0x188)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91504D6, serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163
        Validity
            Not Before: Jul  5 05:10:28 2026 GMT
            Not After : Jul 12 05:10:28 2026 GMT
        Subject: CN=6a49e744-500f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:ae:16:65:1b:1e:31:80:d3:52:d6:ad:b4:7e:
                    6d:eb:47:b9:7c:96:c4:36:12:b1:37:42:b9:f0:e4:
                    59:94:06:95:00:d0:3d:50:7d:3d:01:be:55:12:0f:
                    cb:79:c3:a5:52:3d:f0:de:81:62:b3:b7:6a:8f:8e:
                    e5:82:19:18:00:8a:90:68:7d:df:56:14:79:94:25:
                    25:4c:f6:28:c5:0f:05:1d:9d:a2:2d:45:e9:b5:0a:
                    8f:e9:74:50:c4:ba:58:71:0e:c1:96:bf:7b:f6:61:
                    31:99:12:82:cf:a8:63:4f:ae:4f:00:f8:e9:ed:44:
                    90:06:0f:cf:7b:9b:b9:78:eb:cb:8b:e3:98:35:a1:
                    2a:1a:7f:8e:4c:f4:b7:0c:6f:3c:84:0e:37:d4:7c:
                    93:ac:34:c6:90:6b:ff:79:34:43:b8:d6:78:b6:33:
                    c4:89:70:e5:ac:b4:27:ba:a3:6f:1e:13:a7:a3:05:
                    96:56:0e:bb:90:d4:a5:67:43:aa:ec:af:35:90:dd:
                    d9:5f:a0:e1:a8:d0:a8:33:23:26:32:a9:18:32:22:
                    3b:84:1b:04:b3:d5:a0:c2:d3:e0:67:9c:a2:63:72:
                    5a:f4:ae:1b:19:86:7e:8e:02:9f:cf:a0:3f:e3:0a:
                    29:2c:25:f4:27:c4:b6:a2:a6:2d:23:d0:ad:37:5f:
                    42:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:06:63:39:62:80:E5:A4:DA:F2:D5:B5:55:53:AC:ED:54:66:69:46
            X509v3 Authority Key Identifier:
                keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:4b:c9:a1:bb:78:2e:81:c9:57:00:44:44:ec:9d:95:da:08:
         98:b5:7a:c5:8c:41:9a:1f:5e:f9:40:b1:43:b2:b8:87:e4:57:
         79:af:50:18:6d:45:b9:51:e8:c4:64:74:62:81:05:47:e2:9a:
         37:65:ba:73:fc:dc:33:58:29:5a:df:f8:16:46:9e:72:31:d5:
         f4:9b:c6:e1:ff:c3:e1:62:0a:b9:04:1f:bd:e4:60:cb:2c:ee:
         38:b7:2b:fe:21:90:cf:f4:67:52:d8:04:c3:8a:a2:01:c7:33:
         49:75:84:1e:c5:c3:74:12:16:f1:1d:95:1c:29:68:ec:2e:ca:
         8b:39:6b:bb:23:6b:90:85:9e:83:77:4e:2a:fb:1e:56:05:6d:
         8b:ae:c9:14:58:95:2d:50:99:9f:f4:8b:b3:1d:b0:a3:90:b5:
         52:42:9f:65:4a:a9:b3:cd:64:f8:47:2d:4d:4b:60:97:03:1a:
         a8:b2:05:b4:0b:2c:20:59:bd:ed:9a:ee:2c:b5:02:5e:e2:e3:
         5c:15:8d:f4:11:d4:98:c2:82:bb:2c:23:11:94:8f:ab:dd:3e:
         5f:51:8e:8a:98:2a:01:c1:6b:86:27:c7:79:b2:0f:b3:2f:2d:
         1c:3c:4e:50:87:f3:1a:82:74:8a:11:80:30:89:5e:71:7e:97:
         3b:49:4b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 00:08:26 2026 by rpki-client