Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
File:                     XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json)
Hash identifier:          mOFrpC1sSjLTEp7HjTJqMDFaG1+8BpSFi5kRTz2Z9fk=
Subject key identifier:   BF:FB:C1:64:01:10:D4:94:63:71:15:7F:46:96:6D:C5:57:A4:2D:64
Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F
Certificate issuer:       /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F
Certificate serial:       0151
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
Manifest number:          0148
Signing time:             Fri 17 Jul 2026 06:25:00 +0000
Manifest this update:     Fri 17 Jul 2026 06:24:59 +0000
Manifest next update:     Fri 24 Jul 2026 06:24:59 +0000
Files and hashes:         1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: 8FkcCVZ8cmVafXgE5CHN1g7VwHQMt1dL+ZJ5xhCyqwM=)
                          2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: XEgsmSONdO5QmyZ+W6pwM4gqDm2Ruw04W/Sgse84F1I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl
                          rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:24:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 337 (0x151)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F
        Validity
            Not Before: Jul 17 06:24:59 2026 GMT
            Not After : Jul 24 06:24:59 2026 GMT
        Subject: CN=6a59cabb-65d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:47:3f:35:40:5f:e4:e7:83:b3:bd:4c:27:8b:
                    87:7b:7e:9b:c9:50:13:fa:5d:db:0f:27:a1:d7:ba:
                    42:7d:a1:6a:cc:8b:da:b8:4c:cc:2d:d9:11:5e:1d:
                    4c:6c:a7:7a:0c:6b:9c:8d:6d:18:34:0b:5f:09:3b:
                    2c:aa:e3:a9:06:6b:44:cf:c6:cc:b7:54:ae:93:52:
                    36:38:be:bf:ee:a4:1e:47:62:9b:cf:31:88:fa:90:
                    26:b6:98:a7:68:c1:81:15:b6:c1:1d:ca:51:1a:86:
                    b0:70:b9:d8:88:1d:62:28:1c:ef:63:08:5b:c7:8e:
                    9e:57:96:ac:42:56:a4:7b:c3:86:70:68:bb:10:63:
                    3e:92:f8:4a:1e:d5:90:ae:2e:4f:bc:75:cd:c6:6a:
                    41:9c:ce:d5:77:d9:77:86:f2:da:73:84:e5:ea:73:
                    af:8f:1a:cf:98:1e:90:af:1d:7d:a7:0d:2a:92:3a:
                    22:43:ee:16:15:6b:87:13:91:f3:9f:a7:2b:62:33:
                    1f:4e:d8:ac:42:44:62:21:a7:9b:bf:33:1f:25:5c:
                    b4:bc:75:35:1b:2e:68:3b:3c:e9:57:ec:a4:8d:c8:
                    d7:7d:73:f3:f7:eb:8b:8d:18:19:fb:4f:72:39:ac:
                    dc:96:c9:c7:d0:23:08:53:a3:07:91:f3:6c:99:92:
                    19:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:FB:C1:64:01:10:D4:94:63:71:15:7F:46:96:6D:C5:57:A4:2D:64
            X509v3 Authority Key Identifier:
                keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:1f:32:76:37:ec:72:f4:e9:98:a8:51:48:4a:80:95:1e:60:
         bd:a6:f5:5b:a9:9a:d8:e9:76:f9:8d:92:95:2f:df:f6:0a:05:
         98:63:a5:c2:ec:b2:ba:c1:88:48:1a:36:86:24:4f:4e:0f:e7:
         8d:ea:1a:4f:a0:82:42:69:25:e7:91:ab:18:40:ce:88:09:f8:
         df:9b:94:15:bd:0b:c6:3c:90:22:4f:fa:a7:4b:88:00:57:84:
         d6:8d:dd:96:d1:cd:c1:ec:28:aa:d8:0d:4c:e0:6d:75:b0:4b:
         dc:fc:7c:3a:e6:fa:1c:bc:1a:21:1e:27:02:93:6b:03:56:4c:
         3e:cf:0a:68:6d:19:e0:7a:63:53:0b:2d:4e:c5:db:f8:85:81:
         20:9e:33:b6:89:fe:18:91:11:70:fa:ce:62:2c:58:1e:f1:cb:
         7a:73:2f:71:6b:8e:8e:17:ca:6d:be:1a:87:6c:a7:e8:19:f3:
         8d:c2:0e:7b:2b:7b:c7:c2:f3:69:24:68:33:7a:58:f7:76:2f:
         4e:8a:4c:9d:4c:be:82:2b:24:81:6c:e8:b2:89:c8:d6:bd:cb:
         92:ea:d6:d4:8a:80:8a:2c:da:fc:2c:70:e3:e4:69:d2:66:4e:
         0d:0c:7a:34:f9:62:31:f7:27:61:32:af:5e:64:21:26:3d:5b:
         00:34:20:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:34 2026 by rpki-client