Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft
File:                     xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json)
Hash identifier:          eYziQKpW+avQGHakdlfpqNFTnZLtfHDXOomZEtyqW/0=
Subject key identifier:   A2:CD:27:B1:3C:71:AD:EF:31:9A:87:81:05:A3:17:DB:EC:A1:82:53
Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44
Certificate issuer:       /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44
Certificate serial:       0715
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft
Manifest number:          070D
Signing time:             Sat 04 Jul 2026 22:17:22 +0000
Manifest this update:     Sat 04 Jul 2026 22:17:22 +0000
Manifest next update:     Sat 11 Jul 2026 22:17:22 +0000
Files and hashes:         1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: /5W2F88seTegAr4f57DsSevu6cpAaK1AFSikbOB87AE=)
                          2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: kPCD0Fz7/O4ntMHiCFvRFjcWPT4ww4VjwAtUClsCkrU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl
                          rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 22:17:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1813 (0x715)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44
        Validity
            Not Before: Jul  4 22:17:22 2026 GMT
            Not After : Jul 11 22:17:22 2026 GMT
        Subject: CN=6a498672-7edf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:b8:f4:a9:cf:50:f2:6f:53:bc:de:74:26:63:
                    4e:56:9d:c8:50:1d:dd:22:b4:1a:97:9b:bf:86:24:
                    6e:30:5b:80:7b:03:85:4f:20:17:03:30:8c:89:ba:
                    7f:ab:6a:bd:a0:11:52:14:89:c5:03:70:d3:5a:81:
                    05:74:c1:d5:85:c5:0b:24:c3:c5:ef:86:a4:76:29:
                    ec:88:2c:19:2e:ac:c5:0b:0a:24:27:c6:d6:9e:16:
                    74:20:98:3c:21:c3:c1:9a:b4:d7:82:b0:8a:a6:16:
                    16:ad:85:4e:6c:e6:15:fe:89:30:b0:e1:c0:3d:2d:
                    a8:27:02:ec:1b:2b:70:55:9f:d5:8d:4b:e9:8c:7d:
                    02:08:d3:d6:df:d0:80:f3:25:1b:d2:ee:28:73:ad:
                    1b:ff:dd:ae:ad:40:0a:4a:24:47:c2:bc:0d:b8:7c:
                    87:85:f7:8f:15:be:a2:87:c3:1a:5c:b9:ec:fb:0d:
                    f1:81:ed:8d:83:50:34:ad:e5:01:24:bd:7d:07:eb:
                    59:7a:d9:da:41:1b:00:ec:e0:fa:16:db:3b:00:d9:
                    0d:47:67:cf:7d:e4:86:7f:fd:47:db:7f:5f:92:10:
                    02:7d:b9:55:20:9f:89:5a:4d:2f:12:37:b2:01:a4:
                    85:3e:c5:6d:2f:32:4f:d2:03:56:8d:1e:0f:20:bf:
                    16:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:CD:27:B1:3C:71:AD:EF:31:9A:87:81:05:A3:17:DB:EC:A1:82:53
            X509v3 Authority Key Identifier:
                keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:42:fa:3b:20:5c:25:2b:6c:04:f2:a1:e4:5e:34:88:0e:3a:
         a8:33:6e:fe:22:43:76:be:1e:e3:d7:46:93:69:81:42:1b:cf:
         31:65:39:f6:ac:e3:06:55:13:3b:6a:c8:6c:57:70:53:9b:63:
         db:57:72:db:c9:2d:1c:96:43:30:5e:ca:be:30:16:16:87:a6:
         6b:c7:80:ff:5b:f3:38:49:c4:48:a8:95:35:51:da:5d:42:cc:
         b2:11:0d:63:a1:02:69:bb:c0:85:5d:10:79:ac:a6:ec:30:5e:
         5c:67:dc:c0:0a:44:b0:1b:54:1a:7a:d5:1c:ce:c6:83:bf:13:
         ae:82:4d:c2:6f:43:4f:5e:d0:d7:c3:59:2b:d3:c1:5b:76:df:
         13:dd:24:84:dc:d3:cf:6b:c0:70:8f:5c:40:2b:63:c1:0e:53:
         a8:a7:83:9d:58:2a:bf:81:b9:94:58:cc:76:e0:76:94:a8:7e:
         05:11:b4:e1:d8:32:f3:b3:02:a8:91:4a:68:27:79:1a:3b:52:
         5d:98:e3:bc:31:ee:67:72:2a:fd:16:ba:30:19:6f:0f:96:03:
         f9:bf:f8:30:fc:7f:10:85:18:6c:51:cc:23:5c:ae:8c:56:13:
         b3:ae:1c:85:53:27:24:7e:f1:26:1c:b1:ad:8c:63:1e:b2:6f:
         34:62:db:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:27 2026 by rpki-client