Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
File:                     0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json)
Hash identifier:          yxMhV+qJCzUJWV48HEGCWMoo0Q9ewjaLNVHulC3RxyM=
Subject key identifier:   B6:22:D3:D5:70:D3:DC:59:E1:A9:CB:DF:99:A6:7B:DA:64:C5:A3:51
Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
Certificate issuer:       /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89
Certificate serial:       0418
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
Manifest number:          040C
Signing time:             Fri 17 Jul 2026 00:59:48 +0000
Manifest this update:     Fri 17 Jul 2026 00:59:47 +0000
Manifest next update:     Fri 24 Jul 2026 00:59:47 +0000
Files and hashes:         1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: /TjzZhZw10A76gJsMNwzKLW9yda8DNxkyxaX8PHo5QI=)
                          2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: Q8R/e0WkRoUvhV/duXOH10RMzYjCZjcCedO7vhrkXRQ=)
                          3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: lA+CaygcBrj0YtEqp60seW0ZCX6+tWFwXRqNraQ10Ek=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl
                          rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:59:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1048 (0x418)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89
        Validity
            Not Before: Jul 17 00:59:47 2026 GMT
            Not After : Jul 24 00:59:47 2026 GMT
        Subject: CN=6a597e84-e45f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:8b:ac:11:89:ab:c0:d3:2a:ee:25:97:d5:c5:
                    a6:60:f8:04:79:a0:3f:b5:4b:47:7a:fa:31:57:ce:
                    19:93:84:02:5a:ed:23:18:79:77:dc:93:2c:73:82:
                    2f:76:a8:8d:2f:1e:aa:bc:bb:25:e2:a6:b7:ca:e6:
                    7b:62:0b:2b:8d:cd:db:f8:25:8d:4f:18:af:94:c4:
                    8a:12:94:69:3a:de:bc:7f:83:06:76:1b:b4:c9:80:
                    d8:02:55:4f:11:f7:a0:a7:84:d0:3e:6d:26:14:14:
                    7d:89:c4:49:b4:e1:50:1b:14:c3:ad:37:42:4d:e3:
                    ee:d3:1e:74:7d:64:32:a0:5f:9e:0c:55:cc:4c:57:
                    5b:2d:ae:3b:a3:ce:67:6f:ee:46:aa:0a:99:15:5a:
                    93:fe:80:a5:6d:b1:bc:2c:d2:02:e4:c8:9a:28:35:
                    2f:62:f7:b6:83:0c:68:fe:cb:2e:71:9a:7a:f0:ef:
                    a4:2c:fe:62:3a:3f:eb:87:53:9d:f7:b5:2a:9e:70:
                    6d:7c:0f:1d:e8:d2:95:bd:3d:b0:76:e2:cc:6b:a8:
                    88:2c:99:d6:79:81:71:12:d6:31:6d:a5:ec:1b:2c:
                    99:c9:90:cd:c2:a8:41:43:99:06:d2:f0:b5:2e:8f:
                    b8:b1:ec:d8:b7:a9:c4:80:10:69:0a:08:bf:f9:46:
                    1f:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:22:D3:D5:70:D3:DC:59:E1:A9:CB:DF:99:A6:7B:DA:64:C5:A3:51
            X509v3 Authority Key Identifier:
                keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:15:91:94:59:7a:b9:0b:89:34:e9:2e:26:dd:1d:dd:52:a4:
         7b:f8:b6:5e:78:7f:bf:fc:05:68:94:1a:9a:44:ed:92:63:57:
         67:61:17:f3:13:65:4e:29:35:61:11:b3:f8:19:e6:c2:c8:8a:
         59:5a:14:3f:51:45:e2:aa:28:be:f2:1a:7e:0a:85:57:3d:21:
         6b:c0:ed:13:03:fb:09:b7:79:a7:99:2b:ab:fb:05:dc:0a:48:
         62:54:4b:ce:00:a2:ae:66:c1:e0:4b:2a:04:d8:1f:50:d5:4b:
         28:57:b9:ce:4c:73:98:25:5e:2c:74:4f:63:e8:35:cd:46:7c:
         ec:e8:6a:35:22:5b:dd:58:0f:22:af:65:0a:60:80:65:49:25:
         66:14:6e:60:d2:38:d0:ce:d0:e1:70:3d:28:8a:27:94:c8:d4:
         c2:c2:80:54:da:e0:7a:67:a2:7b:0c:81:aa:7d:07:d0:5d:1a:
         09:fa:fb:62:9f:bf:e0:8c:23:13:6d:c0:3c:4f:82:bb:8b:71:
         86:ed:06:5e:45:1b:1d:e6:e7:f6:70:2c:49:de:f1:ed:b7:a6:
         e6:a1:3b:ae:12:af:d2:bc:fd:31:9b:05:ed:59:fc:61:87:b8:
         b6:40:06:1d:c8:6e:b9:a8:5a:52:75:7d:7b:bf:57:d5:11:d1:
         9e:4e:6c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:28:12 2026 by rpki-client