Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
File:                     JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json)
Hash identifier:          LF8CnsNM7sc5+f5pmKTrGzw1pSlEW6H7813CWYDpVCs=
Subject key identifier:   A7:FE:38:A6:FD:03:14:19:56:C4:0D:3E:81:A9:E9:A7:E4:E1:1A:1C
Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A
Certificate issuer:       /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A
Certificate serial:       016A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
Manifest number:          015D
Signing time:             Fri 17 Jul 2026 06:12:10 +0000
Manifest this update:     Fri 17 Jul 2026 06:12:10 +0000
Manifest next update:     Fri 24 Jul 2026 06:12:10 +0000
Files and hashes:         1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: 1Dba8bHSdgCnF0HvyBwmw3/OawY5mBf7q30rGh6d+EQ=)
                          2: 00E00D025BC711F0886C5B59C4F9AE02.roa (hash: XkQ1uVk/uXSTQGxlpz6vDp4cVf/noCzCGg0tuyD68XM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl
                          rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:12:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 362 (0x16a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916D6C1, serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A
        Validity
            Not Before: Jul 17 06:12:10 2026 GMT
            Not After : Jul 24 06:12:10 2026 GMT
        Subject: CN=6a59c7ba-d48c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ff:de:e2:e2:06:ac:e8:a1:56:72:84:48:f6:
                    3d:d6:c7:6d:49:81:45:eb:59:b9:06:5a:9b:05:b9:
                    d2:a0:0d:e1:e8:45:aa:e4:44:bb:cf:83:9f:7a:19:
                    72:a7:d8:86:97:ac:61:7b:01:f0:1c:41:6d:2a:79:
                    54:c7:a4:2c:54:cf:8a:62:24:86:02:ac:ca:65:aa:
                    86:2b:76:29:40:87:64:82:08:0f:37:07:21:b9:b5:
                    3e:82:d4:5f:49:3c:27:ab:67:94:c8:e8:98:d5:02:
                    b6:30:4b:dd:82:bf:d4:55:7c:cc:dd:17:8b:42:6a:
                    91:aa:72:f7:20:9e:79:d1:38:b9:5f:6d:5b:30:15:
                    f8:a5:91:2c:6d:17:6f:5a:15:c6:11:a8:78:2e:db:
                    73:b4:a7:0b:5d:c9:0b:f0:e0:17:22:58:5b:ed:fe:
                    70:7c:ee:6d:e4:a0:f6:da:62:b8:90:a7:ba:f7:e9:
                    2d:3f:e0:9e:31:45:70:17:a0:11:66:29:e9:05:d0:
                    ae:d2:5a:30:66:7b:ab:94:06:74:4e:7d:37:74:f2:
                    75:05:af:63:86:c5:8e:84:2d:d0:d8:0e:d2:38:ab:
                    44:b7:9f:95:71:05:29:89:fd:30:a4:06:00:2f:56:
                    d9:22:91:fb:6e:45:dc:51:b9:7e:15:67:96:61:56:
                    87:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:FE:38:A6:FD:03:14:19:56:C4:0D:3E:81:A9:E9:A7:E4:E1:1A:1C
            X509v3 Authority Key Identifier:
                keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:a1:47:b6:c5:38:e6:16:75:98:28:6a:ea:5f:bf:55:5f:c2:
         07:ef:90:12:68:1b:16:51:dd:8a:a4:22:41:4c:eb:15:69:90:
         3e:3d:19:90:54:f1:a3:78:81:cc:41:ea:60:58:4f:0e:71:db:
         dd:b3:a2:dd:5e:7f:ea:47:94:ae:9b:64:b2:5d:bd:22:27:e1:
         1e:6c:a6:2c:cd:bc:6d:43:86:80:6d:7a:f5:cd:57:4f:db:f5:
         ba:52:50:ab:d9:7b:e0:85:d1:a5:39:96:da:f8:06:30:a6:ca:
         7d:b2:47:ab:3a:4c:f0:55:e8:e5:f7:10:96:18:c4:6b:84:7c:
         a2:50:f9:11:ad:c5:d7:c9:d7:46:d1:e4:17:2b:01:a8:55:38:
         28:89:bd:d4:3f:78:fd:ff:ca:52:77:6e:4c:2b:eb:2b:59:ba:
         25:a9:4d:4e:68:3e:c7:63:b2:8c:ba:41:84:da:b1:4e:85:89:
         ca:32:54:2d:b8:51:03:99:5f:64:a4:a5:88:72:0d:17:40:76:
         9d:1f:1a:53:3a:a4:30:9b:22:fd:ef:24:28:46:e7:b7:03:03:
         0d:d5:9c:41:57:98:1f:80:c0:f7:5a:fd:72:20:89:9c:54:10:
         ae:2c:61:29:53:e7:1f:2b:05:3b:ee:22:36:6b:69:83:4d:e7:
         54:40:7d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:20 2026 by rpki-client