Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft
File:                     -3sFh4NlHpP6MN2W1iZebi81JVQ.mft (raw, json)
Hash identifier:          X1WorpPCx28ruEr5uIS461ijuETgTBMOOG0umF1O+AI=
Subject key identifier:   CC:7B:03:E4:01:33:27:0C:2F:7C:06:46:A0:27:39:B2:7E:9B:3C:2D
Authority key identifier: FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54
Certificate issuer:       /CN=A916C473/serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554
Certificate serial:       C0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft
Manifest number:          BE
Signing time:             Fri 17 Jul 2026 08:08:41 +0000
Manifest this update:     Fri 17 Jul 2026 08:08:40 +0000
Manifest next update:     Fri 24 Jul 2026 08:08:40 +0000
Files and hashes:         1: -3sFh4NlHpP6MN2W1iZebi81JVQ.crl (hash: 9a15zHZoGxNC+ACHDIbayHbZ88BrNfrJ4X6hj88qcfc=)
                          2: 2BB9711E5DE111F09B775D76C4F9AE02.roa (hash: U9tyCvMDlceVXMLQfDjCprercZZxtbmQBQkbmthwKe4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl
                          rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:08:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 192 (0xc0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916C473, serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554
        Validity
            Not Before: Jul 17 08:08:40 2026 GMT
            Not After : Jul 24 08:08:40 2026 GMT
        Subject: CN=6a59e308-ba92
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:2c:5e:58:91:bd:2b:58:27:d2:33:e8:f4:4d:
                    52:c7:4d:f4:72:4b:f9:19:ca:e7:e7:fb:9c:dd:db:
                    97:6d:41:15:79:8b:3f:c1:03:47:89:b0:4f:ac:06:
                    f1:3c:5d:77:cb:e3:ec:79:a8:4c:2c:0d:6c:91:f0:
                    ee:a6:be:a5:39:66:15:d6:54:92:ec:53:80:7f:be:
                    df:78:af:76:27:84:f8:2d:ee:72:38:34:58:c2:f8:
                    c0:b8:a7:34:0e:83:b3:82:46:25:74:c4:f0:8b:95:
                    74:87:3b:e5:eb:ae:26:f1:1a:d5:f3:26:e1:b3:22:
                    eb:cf:0a:0e:c5:5a:d3:28:91:bd:7a:0b:81:11:c7:
                    91:50:3e:16:11:3b:e7:e4:8f:7e:63:87:17:99:f4:
                    6e:58:60:60:e2:ee:60:bc:63:32:eb:19:c3:d9:0b:
                    46:3b:7b:7e:f3:32:6c:7e:5c:d9:a1:26:64:c3:f9:
                    7a:8e:bb:1e:96:2e:53:ab:74:15:f3:ac:8e:dc:a3:
                    a9:8e:e4:9c:a5:0b:2a:2c:3e:67:5f:8f:61:cc:88:
                    d1:3f:45:d9:79:4c:61:29:c4:fd:11:7f:26:12:86:
                    57:c9:3a:e0:4c:47:55:ca:10:b3:28:00:f2:1d:50:
                    0e:f7:f7:d3:78:91:ff:b3:45:42:25:65:a0:7b:7b:
                    a2:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:7B:03:E4:01:33:27:0C:2F:7C:06:46:A0:27:39:B2:7E:9B:3C:2D
            X509v3 Authority Key Identifier:
                keyid:FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:cb:d2:8d:de:42:24:a8:80:c8:7b:b3:e0:f3:1c:c1:fb:d7:
         89:5c:3e:4c:b0:54:b0:18:ee:17:eb:7b:d0:dd:08:f9:48:82:
         b0:87:cc:cb:36:7c:84:9d:11:09:d2:a3:8f:fd:ee:0f:c4:3a:
         6f:48:f8:bd:c5:1e:48:2a:f7:0a:21:24:70:03:f1:5e:c4:cf:
         20:33:95:f7:d8:b3:6b:6d:8c:6e:cd:a0:f8:dd:9f:3d:69:d6:
         95:97:70:55:dc:79:ec:87:d9:c7:ce:1b:54:a6:22:ea:e9:37:
         b7:7a:0d:86:8a:10:d3:ed:39:7f:6a:4c:28:00:59:c6:83:5a:
         eb:ad:a5:67:f3:d8:80:b7:6e:45:7e:22:28:d9:72:f9:f6:cf:
         8e:24:93:48:fc:1f:f9:8c:02:1b:00:a5:a8:69:3e:a9:56:5c:
         fa:51:40:14:5f:e2:42:b4:50:3f:32:6d:2b:2f:35:bd:8f:93:
         f8:b3:83:33:14:7d:48:58:93:45:ad:ba:7a:6d:33:4c:bb:53:
         31:23:73:5d:10:4b:84:28:7f:ce:c4:eb:ff:90:ed:2b:a7:2b:
         0c:2e:33:8f:c2:1a:a5:92:5e:1c:51:36:17:34:b3:1d:f5:e6:
         22:94:48:25:71:6e:44:b2:3d:69:5c:19:26:64:6c:1c:92:ad:
         e7:89:a6:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:16:43 2026 by rpki-client