Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft
File:                     _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json)
Hash identifier:          Lh/gY+41w/tx9x4PNFYDlv2TjyC951U+VRigx/hkbsw=
Subject key identifier:   28:C1:70:92:68:95:2D:AA:DA:E9:10:F1:62:A3:59:7A:F2:85:60:B4
Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE
Certificate issuer:       /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE
Certificate serial:       08E7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft
Manifest number:          08DD
Signing time:             Sat 04 Jul 2026 20:31:53 +0000
Manifest this update:     Sat 04 Jul 2026 20:31:52 +0000
Manifest next update:     Sat 11 Jul 2026 20:31:52 +0000
Files and hashes:         1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: AL3fi8OUs/cczhc+vxN4CjqJHjwA0gHPV5Q8tg94RsM=)
                          2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: c4VC0uZLIwEYMCTYEDFpqIYkNUoeZb1I54lM3XwQmNk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl
                          rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 20:31:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2279 (0x8e7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE
        Validity
            Not Before: Jul  4 20:31:52 2026 GMT
            Not After : Jul 11 20:31:52 2026 GMT
        Subject: CN=6a496db9-9d09
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:65:3a:e4:b5:ea:05:85:19:2d:26:35:d2:9a:
                    99:d6:5b:85:5f:1e:bd:a9:7e:35:d4:9c:48:54:61:
                    a2:71:8e:3f:c9:fa:c9:6f:12:40:38:84:a3:93:c1:
                    ea:e9:54:33:1a:7d:93:ce:e5:12:2e:5e:7f:ed:05:
                    d5:95:c9:63:b9:15:89:5f:3e:5e:c4:f1:9c:ea:89:
                    87:16:cd:9d:fe:cc:5d:2c:52:f4:5a:f8:52:c1:ff:
                    a3:84:8d:c4:ef:ee:f4:d2:1c:34:ea:79:45:e7:22:
                    e3:21:fe:84:d9:4a:dd:eb:3a:2b:78:33:26:f7:23:
                    89:5f:31:2c:9a:2b:9b:35:5f:2c:82:45:62:1f:6e:
                    ab:37:05:9e:3e:e2:a2:ab:dc:d8:ff:5e:ea:38:c1:
                    f1:a6:6a:1c:6e:bb:3e:fa:f8:5c:0b:ba:74:a6:e4:
                    3b:34:6a:cd:77:33:05:e1:54:11:a2:f4:ed:f8:ce:
                    80:8d:d4:10:a5:77:b9:02:c4:8f:9c:4d:a7:b1:27:
                    b9:bf:5c:40:3b:0e:9b:b2:d3:fe:fc:40:1d:f4:f5:
                    c6:9d:0e:4c:24:14:3c:9b:23:40:8d:f5:25:b8:ca:
                    0c:0d:92:3d:f7:7b:69:ca:43:3b:fa:c8:de:09:17:
                    d5:30:8a:a9:12:59:75:e8:6e:72:34:96:44:68:3d:
                    15:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:C1:70:92:68:95:2D:AA:DA:E9:10:F1:62:A3:59:7A:F2:85:60:B4
            X509v3 Authority Key Identifier:
                keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:1f:0d:25:e0:93:bc:24:f0:e3:2d:36:ba:8a:47:60:0d:af:
         83:c6:da:bc:ca:86:c6:2f:a3:13:a9:6c:53:ad:54:63:13:7c:
         92:ea:76:c8:c4:16:9e:3b:45:16:24:fb:e2:45:12:ce:19:bb:
         69:98:66:be:e3:de:b2:66:2e:60:2f:52:d2:36:de:a2:20:53:
         3f:d9:ec:f2:cd:6b:4c:c0:80:61:fc:72:c9:a3:b2:6e:8b:87:
         d6:46:b3:73:f5:00:0a:7b:6a:f2:c2:55:7d:e6:2b:ba:d3:e3:
         8a:64:f7:83:79:c4:e5:77:ad:6c:41:f3:06:a9:cf:28:67:3c:
         f1:95:f7:35:2a:73:67:01:96:ee:b9:70:db:ec:5a:9b:f4:26:
         18:1d:c7:2c:1d:49:1d:5c:6d:df:ff:84:25:7a:41:a4:36:82:
         9f:04:3b:aa:21:66:20:18:85:be:a7:1f:3e:70:53:e0:24:dc:
         49:ce:89:eb:d9:cc:84:b6:cb:c7:8b:58:65:bd:87:ce:01:f4:
         0b:d8:1e:3e:5d:40:18:9c:0b:7d:4b:73:56:56:da:1d:86:68:
         f6:bd:59:65:1e:11:03:01:96:28:29:cf:4f:2d:a7:7f:d7:5c:
         4c:cd:90:af:3f:be:6a:e7:1b:e0:72:43:78:4c:56:05:0a:f8:
         d0:cb:4a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:52:28 2026 by rpki-client