Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
File:                     CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json)
Hash identifier:          zLHHiuz+xrSR/3qydWuSn/KRH027inZ34j3werOGooQ=
Subject key identifier:   FA:52:1B:9E:8B:87:32:75:3A:C2:B0:0E:A2:8A:1C:09:50:D7:11:FC
Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37
Certificate issuer:       /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337
Certificate serial:       017B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
Manifest number:          0174
Signing time:             Fri 17 Jul 2026 00:50:32 +0000
Manifest this update:     Fri 17 Jul 2026 00:50:31 +0000
Manifest next update:     Fri 24 Jul 2026 00:50:31 +0000
Files and hashes:         1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: hjCwa5QfakQllZUoP8dYmrkjdg7zegqQ3ASJyS5Ipxs=)
                          2: A6D577E2754D11F18B0D078183A30FBC.roa (hash: 55tJBQHzkVQe/2MtjgyE37tRr0q4GYCshDeazyFaUhU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl
                          rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:50:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 379 (0x17b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337
        Validity
            Not Before: Jul 17 00:50:31 2026 GMT
            Not After : Jul 24 00:50:31 2026 GMT
        Subject: CN=6a597c58-6219
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:b3:d4:67:3d:93:2a:52:64:05:98:b7:9b:5a:
                    c6:cb:35:66:39:9e:29:c2:c0:73:fc:2e:2b:5b:dd:
                    37:72:d5:99:7d:ef:5a:c4:ec:b0:9a:0f:d3:b4:15:
                    b7:a7:c7:b2:4a:65:d9:07:aa:5e:06:b2:5b:d1:41:
                    77:66:53:88:9d:a3:49:38:c3:54:ab:ff:b3:21:1a:
                    fc:a2:12:a7:60:4f:f4:5b:3e:ce:d7:53:bf:47:2b:
                    0f:be:dc:d1:2b:b3:81:64:48:ec:c5:03:9e:4f:38:
                    27:32:26:fa:f0:78:6c:30:8e:7d:36:e7:81:b8:d7:
                    3d:21:9e:67:01:07:72:cc:9b:d6:af:e1:ed:29:6b:
                    8e:3b:d8:e3:cb:36:ce:f3:73:8f:3c:00:3b:f7:5d:
                    e7:6c:90:2d:86:d0:d8:44:ca:e5:71:da:1b:1a:42:
                    bb:92:23:25:36:05:c3:7a:ad:1c:5e:50:10:48:a4:
                    e1:80:a9:ee:e4:cd:92:3e:99:fa:3b:96:29:a2:73:
                    a5:26:f7:42:ee:12:91:58:ad:57:c5:77:c4:25:bf:
                    64:bf:6c:7b:04:7e:80:73:9f:92:cb:ab:62:29:81:
                    0b:9b:2a:9b:4a:54:02:1f:67:15:1c:f5:fd:23:1f:
                    70:0f:ca:91:50:25:42:f3:a0:10:c0:34:d7:cb:55:
                    36:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:52:1B:9E:8B:87:32:75:3A:C2:B0:0E:A2:8A:1C:09:50:D7:11:FC
            X509v3 Authority Key Identifier:
                keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:df:83:37:73:b1:db:24:c2:4b:2e:9a:9e:5d:2e:bb:75:dc:
         bf:2f:ee:88:f6:be:41:80:84:25:ac:e6:3f:1a:5c:49:4d:bd:
         8d:ad:ca:99:32:98:33:23:de:13:47:e1:02:b4:4c:cb:d9:8e:
         bc:d1:8a:93:fe:bd:ba:1e:04:29:ff:aa:74:db:de:68:0a:3f:
         96:6b:8b:6d:9a:e9:d8:6a:61:c0:ce:3e:a2:b5:4b:47:d4:b9:
         4c:a3:76:f8:5c:08:bf:84:50:f3:61:36:98:8b:1d:18:1d:d8:
         c5:5a:67:5a:e3:69:5e:c2:1c:ba:29:5e:1c:82:68:31:58:c1:
         16:6f:66:92:80:30:50:37:dc:75:b0:9d:57:c3:74:dc:81:a3:
         60:78:df:97:f1:38:68:90:da:35:3b:81:87:b6:8a:7b:74:bb:
         15:27:3b:ee:4c:14:5a:14:91:96:c5:ad:62:ab:6a:6a:04:f8:
         f4:d7:86:b0:05:e3:d3:09:0f:0e:2b:99:8b:8a:7f:87:b6:d4:
         16:6a:ea:38:70:cf:26:eb:ea:5d:0a:14:e1:66:4e:8c:1d:7a:
         b4:da:6b:2a:2e:99:2f:8b:e2:1d:95:d7:e6:1c:fc:ff:0b:8f:
         52:63:2d:23:8c:90:a1:61:b1:44:39:1f:09:ea:0f:f6:5e:97:
         a7:90:79:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:12 2026 by rpki-client