Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft
File:                     zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json)
Hash identifier:          +nOA0SRqsYRgWB5bt+8tuq2tcNt92I1YtAy0VqMSpdw=
Subject key identifier:   CD:DB:04:92:68:FF:A5:41:FB:E9:F3:70:61:E7:EA:83:A7:D6:C9:6D
Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31
Certificate issuer:       /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431
Certificate serial:       0204
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft
Manifest number:          01FB
Signing time:             Thu 16 Jul 2026 16:48:44 +0000
Manifest this update:     Thu 16 Jul 2026 16:48:44 +0000
Manifest next update:     Thu 23 Jul 2026 16:48:44 +0000
Files and hashes:         1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: qIOvWKlnBFX6/kum/ooJg2czvfUqDKz59sxZm0229yU=)
                          2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: sPimiMMVQ8HhWMH3h4YYvgrI9mvp3guGNNGoHKdWxG8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl
                          rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:48:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 516 (0x204)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431
        Validity
            Not Before: Jul 16 16:48:44 2026 GMT
            Not After : Jul 23 16:48:44 2026 GMT
        Subject: CN=6a590b6c-c21e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:e9:64:64:4f:ac:0e:51:a6:67:ac:6f:47:aa:
                    8b:2b:f9:6a:c8:7a:17:41:ff:a6:70:69:dc:68:fd:
                    64:c5:ba:7a:3d:32:27:2b:9a:5a:c1:a5:a2:62:bf:
                    45:1a:90:1c:75:cf:c0:03:7a:46:4e:f7:cf:2b:ca:
                    4e:1d:77:c1:9e:83:04:fd:bd:65:55:90:ee:67:66:
                    30:5c:20:c7:16:ae:98:25:07:fb:e3:04:1b:10:26:
                    e3:26:ed:41:fd:94:b6:df:f2:0f:2d:dd:4d:b5:70:
                    05:30:cc:b7:fe:36:fd:fb:a6:99:f7:3e:a4:ee:2c:
                    2e:48:a5:02:fa:f7:ea:c0:63:a3:68:66:e5:af:86:
                    df:c8:8a:be:92:fb:86:07:e5:e0:d0:db:1b:21:19:
                    01:24:0f:82:70:25:c5:ec:f1:4e:04:5c:ab:9f:70:
                    54:c4:8e:05:b6:7d:3a:ce:8c:e9:fe:4a:f5:ce:ee:
                    59:b0:41:c3:f8:73:65:c3:e4:63:91:5e:aa:e0:73:
                    e0:7b:2e:2f:a6:ad:0c:fe:fb:b4:67:8c:32:ec:08:
                    32:c0:7d:96:68:67:96:40:4e:5a:81:d6:f0:36:09:
                    e0:9a:b7:c7:54:68:bf:f3:48:89:01:8d:57:a2:1d:
                    0a:86:eb:b5:62:1f:74:bd:4b:92:6f:90:f7:3d:10:
                    b3:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:DB:04:92:68:FF:A5:41:FB:E9:F3:70:61:E7:EA:83:A7:D6:C9:6D
            X509v3 Authority Key Identifier:
                keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:02:cc:b4:c3:8d:c3:53:fe:83:af:81:09:e4:f8:c0:27:69:
         cf:de:09:99:b1:b2:06:c2:b9:39:5e:78:c8:fc:0a:5b:6e:75:
         73:59:10:1c:50:ec:26:99:99:da:be:7c:89:e3:5d:47:c8:dc:
         67:c5:f2:ca:0d:bc:5e:83:5d:c7:92:7f:d7:07:84:d7:6a:75:
         31:af:21:ca:76:3f:f9:bf:46:8f:5c:15:57:18:3c:5c:77:a7:
         26:79:f9:53:79:cb:61:54:c1:92:3f:cb:e7:8e:5f:4f:6d:d9:
         28:16:a1:b5:95:87:28:19:dc:b7:1f:14:56:65:8a:bd:53:25:
         06:e2:48:e6:14:53:61:fe:8b:13:a9:cd:ce:7a:e8:e7:3d:dd:
         2b:36:38:47:47:62:7c:c0:18:a9:75:ce:73:80:e3:92:03:99:
         57:39:39:75:64:f8:c1:74:a0:aa:66:70:58:a6:a8:3f:65:61:
         a3:f1:00:69:62:51:47:cc:38:fa:97:01:8f:eb:6c:be:77:94:
         b9:88:7c:75:59:1e:27:a5:74:45:19:17:ba:e6:98:d2:66:af:
         3c:80:e5:45:46:a4:ca:aa:78:3f:a7:64:44:cc:77:a4:8d:c3:
         1c:9e:bc:ff:e7:b6:98:0d:ff:1b:d2:6c:9b:aa:c2:63:91:13:
         19:a5:fb:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:57 2026 by rpki-client