Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
File:                     CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json)
Hash identifier:          01BRLdCyArGudyrjoBr62oZYgjZK2HddsgwME1L3b3U=
Subject key identifier:   78:BF:A3:A9:34:0E:A4:CA:C9:FD:A5:42:52:22:DE:F4:3E:39:74:C5
Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED
Certificate issuer:       /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED
Certificate serial:       0570
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
Manifest number:          054E
Signing time:             Sat 04 Jul 2026 23:49:40 +0000
Manifest this update:     Sat 04 Jul 2026 23:49:40 +0000
Manifest next update:     Sat 11 Jul 2026 23:49:40 +0000
Files and hashes:         1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: fsFqD2Uo0wQqiL4nNSfiz3TI8ApnwthrjwrGVAgKkGw=)
                          2: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: zOR5TgVBsSHkOmvQ/lOL+jCdE7mO8zRHpP652KPFcEI=)
                          3: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 6VGJIXHJFD6gG6e/bpw0km40IC6Vms57Pyehvnv97As=)
                          4: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: 3Nz0u0qKawbNn//HDkZr80q3+/OhbNMzbbOUzKEulCE=)
                          5: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: qtZVADdmFN9d5j6ch3m5PUYodnBui2LsIftYffK0ss4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl
                          rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 23:49:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1392 (0x570)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED
        Validity
            Not Before: Jul  4 23:49:40 2026 GMT
            Not After : Jul 11 23:49:40 2026 GMT
        Subject: CN=6a499c14-cd02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:c9:51:f3:1e:b7:da:99:55:b8:dc:a5:39:a2:
                    ce:07:4a:31:ab:d7:19:3d:07:ce:2d:fa:6d:ab:ca:
                    f2:1e:d0:9e:55:29:62:0d:1d:db:99:94:f2:37:bf:
                    cd:25:26:90:d2:0e:57:85:bd:a9:7c:5f:51:b1:15:
                    8c:a0:0b:e1:31:27:94:cc:2f:de:52:6c:06:e5:fb:
                    bc:8d:52:d9:f4:17:68:c7:e9:64:8a:3e:7b:eb:77:
                    94:7c:5e:51:af:e3:d7:12:28:e1:10:e6:02:56:55:
                    f4:bd:d2:e0:6d:f1:9f:4b:35:a6:66:a4:14:e9:85:
                    85:ed:23:29:5f:88:f5:9d:ad:98:3c:c7:1f:00:60:
                    64:00:89:90:b2:cf:b8:6e:09:f4:86:88:c6:dc:72:
                    74:ab:37:ea:dc:21:a7:9f:d5:14:d9:22:11:aa:f3:
                    46:86:68:a5:c1:91:10:8a:04:84:64:78:f0:64:4f:
                    7c:66:90:2e:f2:7c:cb:ab:31:c1:c5:79:a2:c3:3a:
                    09:5f:ce:1e:5c:bb:89:80:26:b6:c2:e6:e7:be:7c:
                    84:95:25:c5:3f:d5:3c:5e:c9:81:b6:4f:ac:a1:80:
                    e9:03:83:3d:75:a9:b9:6e:ce:43:07:46:b7:67:79:
                    30:a8:b6:12:65:63:c3:00:31:3b:db:19:f0:da:70:
                    38:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:BF:A3:A9:34:0E:A4:CA:C9:FD:A5:42:52:22:DE:F4:3E:39:74:C5
            X509v3 Authority Key Identifier:
                keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:20:32:eb:4b:5c:53:5a:94:d5:68:0c:a8:05:a7:35:ac:df:
         db:05:7c:a2:fa:19:99:4d:3b:95:06:e7:0b:8c:b7:42:c6:eb:
         fe:13:26:ce:8d:ca:47:1f:cf:eb:7f:37:a0:16:a9:b2:68:cb:
         ee:04:9f:37:c3:25:65:39:2b:1d:ed:26:60:e0:f2:1b:66:64:
         12:4c:aa:ff:91:d1:b2:0f:5c:96:fc:3e:81:88:41:4e:f4:cb:
         3d:ea:c7:42:c6:cf:7c:63:90:28:0b:a3:f7:7b:01:85:8b:da:
         e2:b9:1f:8c:27:29:94:fc:fe:ea:55:7d:c3:b3:bb:a1:63:4c:
         ef:d2:96:02:b1:4f:ca:06:8c:bb:ed:e7:37:b9:d2:ad:d4:d1:
         9c:ec:5b:80:1c:57:59:34:fc:ab:c8:f6:7f:25:11:16:18:4c:
         c8:9f:ce:c8:5d:b8:1b:7a:79:d5:8c:0d:01:4d:2f:bc:3a:04:
         9a:76:74:f4:98:d7:28:58:aa:e7:89:da:7f:ad:75:95:95:70:
         9b:2f:b1:d8:06:5f:81:ad:aa:6a:d4:f9:d7:7f:65:c3:29:d6:
         4f:0a:e5:13:39:e2:73:be:a3:d0:e3:33:f6:a8:73:da:ba:ca:
         5d:29:17:94:03:ec:d2:10:32:a4:5a:1b:e7:46:00:c2:99:98:
         bc:68:db:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:14:01 2026 by rpki-client