Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
File:                     -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json)
Hash identifier:          AFfk4UitcTC0+zTLyM9lwymuqdOP0lyL+DoCP5JaU/o=
Subject key identifier:   84:5C:FB:98:D4:67:B9:3E:CE:D7:9C:11:CE:89:A9:51:8B:A8:08:23
Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF
Certificate issuer:       /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF
Certificate serial:       0247
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
Manifest number:          0242
Signing time:             Wed 15 Jul 2026 03:21:39 +0000
Manifest this update:     Wed 15 Jul 2026 03:21:39 +0000
Manifest next update:     Wed 22 Jul 2026 03:21:39 +0000
Files and hashes:         1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: UnAZNlXgYBgyFKvRjt+CYWSyTJgtwKH7FDSLf1Qg8lI=)
                          2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: jKf/2MU5Ip9D+4pRX+4cB+cT7JgiaWNbV4ALOM87qH4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl
                          rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Jul 2026 03:21:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 583 (0x247)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF
        Validity
            Not Before: Jul 15 03:21:39 2026 GMT
            Not After : Jul 22 03:21:39 2026 GMT
        Subject: CN=6a56fcc3-8ea6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:25:dc:2a:83:f9:d8:a9:68:8a:56:13:5a:ef:
                    32:d0:f4:8c:2d:7a:fd:86:f1:fa:da:62:cd:e2:14:
                    63:14:c8:e0:8a:7c:04:cd:4a:03:50:91:0a:a7:87:
                    85:08:d1:92:0b:a4:00:ef:0b:ba:e0:5f:fa:ab:60:
                    2d:c0:0a:14:1a:2d:cb:fc:96:84:68:d8:a6:03:1a:
                    6b:b8:c3:7a:a1:f9:25:ab:2b:af:1d:a4:78:14:39:
                    54:d2:3c:c0:0c:5a:87:29:2b:29:1a:ed:13:32:1d:
                    ed:8f:7e:db:e5:02:75:aa:31:78:5a:f1:a8:91:85:
                    19:ab:cc:2f:ee:1c:6d:7a:b2:19:84:61:98:0e:3c:
                    d4:79:72:db:cd:bb:de:ba:cb:fb:80:41:1e:32:91:
                    23:f2:5a:da:6c:b0:f7:7f:87:18:ed:2b:f7:91:aa:
                    c5:b5:e1:91:e6:1b:bb:20:7c:a1:75:e7:94:e0:76:
                    96:ae:02:05:ce:23:f5:20:7b:62:bc:51:a8:bc:bb:
                    0d:66:03:ce:a3:da:24:2a:74:d0:ab:9c:31:86:dd:
                    f8:e9:79:e8:5a:74:bd:d5:61:0a:c4:81:bc:18:ba:
                    52:59:09:8b:16:03:59:b6:8a:b1:44:b1:e6:aa:af:
                    f3:01:dc:40:74:42:ca:de:92:61:a7:d6:3a:80:04:
                    87:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:5C:FB:98:D4:67:B9:3E:CE:D7:9C:11:CE:89:A9:51:8B:A8:08:23
            X509v3 Authority Key Identifier:
                keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:02:6c:54:6b:41:91:55:aa:01:24:8b:e3:06:07:50:ca:4e:
         68:46:78:4b:ae:28:e8:93:20:2f:f3:bc:8b:40:39:9f:92:a8:
         0d:5a:49:1e:7c:d2:b9:f1:19:29:d5:2f:f0:bf:d2:70:76:81:
         f9:54:af:8a:8c:e9:c1:69:ad:d7:a0:e3:05:fa:b6:bd:f8:e3:
         83:fe:29:fb:a8:b6:5a:c1:0c:8a:f8:8e:8b:11:5d:69:75:6b:
         cb:4a:51:ab:b8:bf:dd:38:f1:01:56:ed:1e:cd:9b:65:65:37:
         7d:23:1e:5c:d4:74:fb:98:9b:51:da:73:80:f1:6a:8e:d0:3b:
         07:e8:50:b4:49:4d:d9:3c:22:8f:d8:7e:1f:b9:14:49:86:20:
         1c:b1:13:8d:5c:8d:be:5f:2c:77:1a:6a:e2:82:c4:de:3c:0c:
         b8:d5:8d:18:79:e4:6f:92:cc:f0:9a:9e:c6:46:1d:12:54:1a:
         f0:3c:11:77:1e:d0:08:96:11:0d:56:1f:38:98:36:b7:0b:1d:
         3d:4c:3e:e5:70:55:f1:4d:5f:ad:53:b7:72:d9:eb:92:0e:33:
         69:5b:58:de:4e:a2:9c:1a:e4:db:7f:16:d1:c3:80:29:66:c7:
         a7:c5:ef:d7:5c:33:28:43:66:36:25:a4:81:8a:4f:8a:fa:8a:
         ad:e0:bf:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 16 23:53:03 2026 by rpki-client