Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
File:                     -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json)
Hash identifier:          7WxJ/ZqvrSapeLtnRv5MzT46FyZjqmCLqy7UVm+u0rc=
Subject key identifier:   85:49:5E:4A:E8:7F:E2:A7:F4:FB:36:77:0C:18:BE:FE:3E:25:11:19
Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37
Certificate issuer:       /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37
Certificate serial:       0191
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
Manifest number:          018C
Signing time:             Fri 17 Jul 2026 05:26:49 +0000
Manifest this update:     Fri 17 Jul 2026 05:26:48 +0000
Manifest next update:     Fri 24 Jul 2026 05:26:48 +0000
Files and hashes:         1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: GDBIB8E5fZ5IZfjNkNZQhsgGgC38TY8XwXxTmfvu3EM=)
                          2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Cs2Nng8ExkKcdkzE5LqEYG6YI921OCl1yRvK1flrw98=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl
                          rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:26:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 401 (0x191)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37
        Validity
            Not Before: Jul 17 05:26:48 2026 GMT
            Not After : Jul 24 05:26:48 2026 GMT
        Subject: CN=6a59bd18-9d00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:ec:69:ef:d4:f1:45:64:2c:c6:95:4c:c9:aa:
                    c4:45:84:4e:bb:a2:2f:3d:52:7e:ea:95:28:bf:05:
                    f2:00:16:fd:4a:b4:05:04:c0:ee:eb:b6:db:9c:b9:
                    31:b0:7a:08:25:a1:29:27:37:8f:25:5b:70:45:d6:
                    42:ab:d3:f3:45:45:2c:bd:8a:37:85:dd:fd:ff:a9:
                    07:d1:2e:eb:0c:3e:fe:31:dc:11:ca:dd:3c:3f:c9:
                    4e:a4:6f:0f:59:39:51:28:49:d1:e5:e6:05:f7:b4:
                    b3:34:a7:8b:ac:79:2a:c7:e7:da:4c:4e:77:2e:82:
                    89:0b:91:07:55:67:97:41:fe:92:c0:db:d0:07:9b:
                    87:d4:f2:ab:a2:e4:d6:5f:58:a0:55:c3:c3:8d:71:
                    b0:be:27:9f:0f:99:92:50:91:fb:34:ef:3b:d3:b2:
                    bd:3f:f9:90:09:12:b4:70:38:d8:d7:b5:16:9c:f4:
                    9f:cd:ec:f6:bc:58:de:75:cd:be:28:13:a1:de:29:
                    ff:12:36:a9:28:44:e0:ff:be:30:06:db:e8:87:34:
                    cf:f1:c8:5e:39:95:ca:91:69:99:c1:d9:cc:45:cf:
                    06:2c:5b:6f:29:70:51:44:10:a4:c7:33:e8:ce:f2:
                    43:a3:29:61:d3:5d:dd:91:40:45:5a:e3:7a:dd:92:
                    9a:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:49:5E:4A:E8:7F:E2:A7:F4:FB:36:77:0C:18:BE:FE:3E:25:11:19
            X509v3 Authority Key Identifier:
                keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:2b:18:99:7a:4e:d7:9b:b0:77:01:b2:3e:a2:3f:31:41:5e:
         09:83:b1:bb:8a:b6:de:1c:56:2f:55:3d:af:c7:87:62:66:35:
         f4:11:b1:5d:4f:62:cc:8f:14:19:eb:5d:ff:13:67:50:6f:c0:
         8d:3d:f2:eb:48:f3:ba:9c:c8:dc:2f:60:1b:87:c1:87:d2:02:
         3a:6c:09:f6:06:09:01:f5:5c:dd:8b:d5:4c:90:d3:73:b1:0d:
         3b:2d:6e:69:a1:8f:13:4c:13:83:17:67:2d:77:1f:85:82:c1:
         85:8f:f5:03:9c:8a:4e:42:6f:5a:c9:aa:f2:08:c8:80:36:d9:
         3e:7e:7d:94:b6:aa:6a:57:f3:05:ac:bb:34:7c:d8:4b:1b:6b:
         bb:fb:62:ea:d5:89:bc:30:e2:ef:24:f2:97:31:3e:8f:ac:38:
         50:4e:57:c6:a5:18:ad:3e:b4:81:46:e4:da:36:b6:a1:49:d0:
         63:c2:59:dd:32:9a:9c:bf:fe:40:87:de:a6:84:94:64:24:07:
         42:6c:d4:bf:bd:c8:f9:4c:39:76:49:8b:c2:7b:04:fd:4b:4a:
         10:f3:93:2e:5d:84:e7:3b:99:ba:82:ff:56:e4:54:ed:74:58:
         06:a2:00:b8:b1:c3:3b:03:4c:40:4b:21:68:a0:8f:28:4f:93:
         eb:73:f9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:31 2026 by rpki-client