Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
File:                     iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json)
Hash identifier:          YvkXPBLPyvmHJq6aC3Snzfrw6LD7XI1yqRB5uojqEoY=
Subject key identifier:   9B:A6:ED:5D:43:85:4C:88:99:8C:D7:6C:37:8A:D1:0E:50:16:EA:66
Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15
Certificate issuer:       /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15
Certificate serial:       0194
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
Manifest number:          018F
Signing time:             Fri 17 Jul 2026 05:26:51 +0000
Manifest this update:     Fri 17 Jul 2026 05:26:51 +0000
Manifest next update:     Fri 24 Jul 2026 05:26:51 +0000
Files and hashes:         1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: 6/R0DZUQ9GD3/VxGfysjwaxXEDUfBdCotdSU4Q6T6q0=)
                          2: DC857BE8843111F09719836AC4F9AE02.roa (hash: O+A6fzSJr2TZ+7/KCaZLr98G06DnnuKn1Adew/Owyqs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl
                          rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:26:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 404 (0x194)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15
        Validity
            Not Before: Jul 17 05:26:51 2026 GMT
            Not After : Jul 24 05:26:51 2026 GMT
        Subject: CN=6a59bd1b-46ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:a0:5e:98:f2:0e:23:3c:f6:d0:e2:27:5d:e9:
                    1e:7f:91:f4:1c:83:f2:e3:ba:54:9d:6e:30:97:59:
                    04:6f:9d:bf:16:f6:4f:58:69:3a:b8:5b:a9:ee:cd:
                    54:b6:7d:43:96:c0:6e:5f:04:87:9a:33:ad:04:7c:
                    79:30:a3:42:c4:81:ef:44:c7:65:b1:c6:cf:83:a0:
                    9c:9d:5a:5c:52:be:b5:00:0e:56:f1:3d:2a:90:fe:
                    08:71:db:9b:9e:82:9b:58:b4:b9:a1:af:39:97:f0:
                    3a:b3:cb:c8:01:91:30:e7:36:22:5a:10:67:9f:41:
                    3f:cd:a2:ca:7c:a1:41:59:63:38:78:02:28:02:18:
                    1f:a4:a1:bb:d5:5e:16:cf:46:d3:4c:5a:52:c0:ad:
                    9c:87:8c:6e:fb:ed:14:de:26:08:01:63:48:3e:bf:
                    8c:12:b9:98:d4:4c:13:33:ac:f9:f2:5a:64:75:84:
                    71:8f:00:0a:3b:a7:d7:ac:ad:4a:84:1e:1e:60:a2:
                    26:c8:bd:bf:0d:09:c6:e5:57:29:89:e1:7b:7a:f0:
                    28:3f:92:28:13:b0:e0:bf:7d:d0:73:20:ad:58:84:
                    1a:14:74:31:01:b2:5e:29:ab:04:3d:9e:28:32:da:
                    b9:08:a4:31:5c:8a:07:f6:53:8d:4e:c2:e9:69:39:
                    1c:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:A6:ED:5D:43:85:4C:88:99:8C:D7:6C:37:8A:D1:0E:50:16:EA:66
            X509v3 Authority Key Identifier:
                keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:6c:ea:da:56:7a:c8:ee:f9:28:ff:a2:33:fb:48:0d:a9:6a:
         69:16:bc:dd:20:ed:f4:38:c2:d7:d6:cc:5f:8f:59:9c:05:ba:
         8f:68:ed:73:45:4a:6a:4d:a2:b6:9e:bf:62:f6:df:64:85:62:
         d5:45:2a:0b:76:cb:73:16:55:09:db:d9:bc:c0:ec:68:70:41:
         29:4b:84:a5:68:42:77:5c:c0:91:25:62:e7:7a:b5:99:7b:5c:
         91:27:f1:a4:35:ec:03:99:35:8e:d0:81:13:a5:2e:90:16:3e:
         81:bb:05:bd:ef:4c:64:8b:cd:c1:c8:c2:32:b2:ba:6e:46:1a:
         c2:6b:46:6b:0a:a0:a5:7f:9c:ac:2b:f3:d6:b8:b8:de:d5:9f:
         70:36:be:4e:ad:70:77:73:dd:a6:f7:a0:1d:0e:9e:60:37:20:
         d5:5f:bc:bb:df:76:b4:9c:dd:cf:eb:2e:15:0b:8d:13:da:4a:
         cd:0c:35:ee:6e:78:10:d6:a9:b4:a7:4f:41:af:aa:ee:8e:ce:
         de:83:be:37:71:0c:be:d5:c0:f6:a3:6f:66:e5:29:5f:65:4c:
         df:10:8c:88:48:2b:d3:9e:44:14:14:03:05:ba:2c:de:e5:90:
         2d:ac:35:ef:a6:09:c3:99:67:91:96:3c:49:08:7c:3f:ea:65:
         e9:17:55:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:55 2026 by rpki-client