Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft
File:                     Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft (raw, json)
Hash identifier:          pPIQxTzX8Ns5pCQUAC3+88wKZ4vYMuf4LpPbNpvQ7Hg=
Subject key identifier:   2C:E1:E6:DE:27:60:CD:31:54:01:31:92:FD:D7:DD:21:AB:DD:49:06
Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A
Certificate issuer:       /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A
Certificate serial:       07B5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft
Manifest number:          07AC
Signing time:             Mon 06 Jul 2026 22:02:18 +0000
Manifest this update:     Mon 06 Jul 2026 22:02:17 +0000
Manifest next update:     Mon 13 Jul 2026 22:02:17 +0000
Files and hashes:         1: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl (hash: rKlLpxdgkz6Lj23sFEPvVQRi5JDevl1IG8HDirOAJyk=)
                          2: C1C296F45A7111EBB1700884C4F9AE02.roa (hash: lzR6pyvl0y5+kPNyylXFhv+PwYmB2saEThM6foq0LbY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl
                          rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 22:02:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1973 (0x7b5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91518AF, serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A
        Validity
            Not Before: Jul  6 22:02:17 2026 GMT
            Not After : Jul 13 22:02:17 2026 GMT
        Subject: CN=6a4c25ea-e2e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e3:5e:e1:b7:ea:0c:4b:4e:fb:f5:ab:6a:2c:
                    9b:19:fb:a0:49:e7:d4:ec:4d:dd:5b:e6:34:c2:a0:
                    1a:1a:13:2c:c4:cd:96:43:b3:d7:c4:25:91:a2:7f:
                    23:01:fd:6b:b7:b2:e1:6f:1d:a6:84:0b:a9:4e:47:
                    fb:95:95:09:77:74:a0:87:1c:b1:b4:b2:ce:84:5a:
                    d7:45:f6:33:f4:5c:75:f6:dd:e9:e2:1c:23:65:8d:
                    a1:ab:e9:e3:8b:42:9a:bb:ce:9c:66:bc:67:dc:6b:
                    10:2d:24:2e:b6:7f:11:da:c7:53:ae:96:c4:b6:e6:
                    1e:40:1f:6d:14:b1:c0:f5:97:fe:ae:b2:3d:05:f7:
                    73:67:27:80:83:dc:19:df:4a:0c:0b:46:54:49:31:
                    09:cb:fd:43:b5:58:94:95:9f:31:53:43:6a:57:b8:
                    77:4a:45:e1:50:9d:1b:53:01:9a:e9:9e:e9:57:0e:
                    85:49:e8:94:2f:df:85:2c:86:8f:f5:92:3a:be:cf:
                    ee:c6:62:2b:fa:d6:cd:fe:31:39:75:c5:c4:db:e3:
                    cc:2b:12:1b:4e:f5:bb:c4:ae:0d:3f:5e:c9:7f:e0:
                    c8:e6:37:2d:9b:8e:31:bb:7f:d5:f1:76:d1:67:f7:
                    d8:43:d9:31:60:fd:02:b0:0b:8b:ac:91:66:56:e8:
                    1c:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:E1:E6:DE:27:60:CD:31:54:01:31:92:FD:D7:DD:21:AB:DD:49:06
            X509v3 Authority Key Identifier:
                keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         09:66:64:76:6b:8b:d8:d3:15:5e:5c:50:92:9b:8f:47:41:e4:
         df:0d:f3:23:b4:ed:01:31:68:96:a5:fb:7c:d5:fd:78:48:81:
         44:d4:49:14:e7:6a:ff:6a:63:e1:35:9c:91:ef:1a:2d:d2:46:
         df:b7:36:65:00:67:1b:69:c6:4b:38:d3:08:4d:9b:68:84:2e:
         13:0f:25:33:b5:9f:e9:f4:fa:ba:e4:43:9d:a8:93:0d:4c:1d:
         b0:ea:eb:61:0d:49:fc:4c:ec:29:db:6e:0f:2d:02:d3:eb:6e:
         a8:5f:02:b7:9d:50:0f:a6:a9:4a:67:36:c4:56:d9:f7:0e:b6:
         b8:d6:6c:37:4c:16:9c:28:9e:4c:79:1f:b0:f5:84:b5:22:e9:
         4a:c6:42:b8:28:ca:72:8d:8a:68:5a:74:1d:cf:7b:0a:54:33:
         0f:15:25:dc:fa:1b:a7:50:0d:a7:c6:f4:51:e8:36:25:ec:55:
         3e:87:ed:69:31:6c:c7:8a:09:9c:51:47:0a:e3:83:98:07:d7:
         fa:40:80:5f:a5:b1:7c:ad:12:dd:ce:7f:80:9d:39:7f:2f:b0:
         4d:17:a4:14:be:e1:30:88:f5:1e:c3:71:eb:25:67:1f:79:9e:
         e7:51:14:19:02:65:06:6b:17:a3:89:0f:ce:8b:4f:42:30:53:
         b8:f4:7f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 10:46:56 2026 by rpki-client