Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft
File:                     IRcCLfYdpCG55OG7hIPYXkmCv5E.mft (raw, json)
Hash identifier:          v8dyBPk2D4NnTj3o5x6IfOMElU5/PGObkEYrSjjlTU8=
Subject key identifier:   D5:BD:DC:FE:0D:34:03:FD:B7:0B:90:B9:DD:75:50:BC:35:DA:74:C7
Authority key identifier: 21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91
Certificate issuer:       /CN=A9169382/serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91
Certificate serial:       05C8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft
Manifest number:          05B4
Signing time:             Thu 16 Jul 2026 23:38:20 +0000
Manifest this update:     Thu 16 Jul 2026 23:38:19 +0000
Manifest next update:     Thu 23 Jul 2026 23:38:19 +0000
Files and hashes:         1: IRcCLfYdpCG55OG7hIPYXkmCv5E.crl (hash: v0REsslSiJ8OXQLNBsAV0I6srZ6Q/sAGUBznU4AM3RE=)
                          2: E41BF8841CDC11ECBA794120C4F9AE02.roa (hash: +WJvFTxAonY5wxNQGiwRI3ZI8HmyeaPv5VFRCqzMfWE=)
                          3: B5D70D9ACE3311EFA7B9B640C4F9AE02.roa (hash: Axsa0uyuPTjbrC5wnPZ4BHAIMgaPThG3uMiLY0ziBzQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl
                          rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:38:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1480 (0x5c8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9169382, serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91
        Validity
            Not Before: Jul 16 23:38:19 2026 GMT
            Not After : Jul 23 23:38:19 2026 GMT
        Subject: CN=6a596b6c-647c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:33:d0:da:cd:97:53:45:9b:77:6d:9c:40:62:
                    c0:4b:31:af:1d:2e:4a:df:d2:a4:ed:6f:c5:96:da:
                    04:e5:86:c4:2a:89:b2:fc:c4:a0:de:d1:38:10:b2:
                    2a:e6:1e:ed:e1:cd:11:63:78:44:2d:83:1c:d8:a4:
                    36:09:19:2c:48:b0:25:81:11:13:d1:66:18:b4:84:
                    5f:bb:77:cd:14:6a:94:bd:e3:fb:91:e5:b1:0b:83:
                    75:53:e8:9e:eb:3e:af:33:cc:74:56:d7:45:b6:df:
                    3b:b2:32:fa:d5:1e:a7:f5:5a:af:99:c5:7e:5c:cb:
                    a0:dd:46:0e:23:81:7a:59:5e:46:93:3c:4c:4d:d6:
                    d9:95:51:cc:b8:46:9c:58:7d:1c:6d:7b:93:36:42:
                    26:51:5e:84:36:b2:66:6c:7e:58:aa:ea:b0:7e:b7:
                    be:db:d2:b5:5f:03:36:f0:9b:a4:33:49:ec:6b:80:
                    a8:36:80:8d:80:48:8f:2f:8b:99:10:81:b5:27:15:
                    a4:28:94:66:8e:fd:09:83:c3:29:76:b2:00:bf:21:
                    da:5e:6e:7c:ad:e0:ed:5d:ac:ae:ff:c6:03:eb:99:
                    59:b8:ab:ba:ca:b8:20:3e:e4:1c:a1:17:73:95:62:
                    14:91:61:22:b2:0a:ce:1a:79:97:8f:56:4e:22:3a:
                    be:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:BD:DC:FE:0D:34:03:FD:B7:0B:90:B9:DD:75:50:BC:35:DA:74:C7
            X509v3 Authority Key Identifier:
                keyid:21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:6c:87:40:4c:0c:58:b9:a3:b7:2b:ca:6a:9c:47:5a:83:cd:
         c6:8f:83:3e:4e:02:80:d1:09:7d:0d:01:97:7d:61:c6:7a:84:
         9a:a3:c7:31:1f:94:79:32:17:74:b4:2e:cc:83:92:e9:42:48:
         f5:37:f5:90:69:9a:ff:ac:88:56:59:74:d9:9f:0f:69:81:47:
         8d:59:41:59:b8:d2:9e:89:19:1f:0e:c3:12:56:df:38:a3:fe:
         91:e0:10:dc:f2:9d:a4:1f:26:7c:db:9b:df:31:60:6d:12:19:
         6f:c5:25:5b:93:9b:5a:44:8f:28:e7:34:12:c8:b4:2c:bf:c5:
         89:b0:b0:38:97:c0:11:91:db:51:4c:88:55:50:44:8c:60:58:
         14:92:cb:b5:cc:ad:40:7b:48:71:16:0e:d3:f0:76:9d:30:f2:
         b6:94:ab:6e:4a:36:ad:2c:d9:77:cd:2d:03:39:30:ae:0b:68:
         0c:bf:90:d4:1d:49:68:da:5c:3f:28:0a:2d:9c:fa:45:18:22:
         19:a6:94:5c:89:1a:b1:ce:21:2a:c1:3e:08:c2:bf:fa:2d:b7:
         bf:db:19:58:f9:07:ec:cf:5f:0c:33:5b:16:52:7d:e6:7e:32:
         aa:46:00:b1:53:dd:27:1d:f8:b1:94:7e:aa:52:b9:2a:9f:73:
         d1:fc:6e:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:54:51 2026 by rpki-client