Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft
File:                     b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json)
Hash identifier:          I3F5Lb22tNLNf+YKVRQ75cYEVKIBP3+3P1h+Xq2/q+U=
Subject key identifier:   FC:13:2C:B4:79:57:82:5C:6B:23:E3:79:86:AA:F5:D9:48:13:66:2A
Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88
Certificate issuer:       /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188
Certificate serial:       013D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft
Manifest number:          0139
Signing time:             Fri 17 Jul 2026 06:37:53 +0000
Manifest this update:     Fri 17 Jul 2026 06:37:52 +0000
Manifest next update:     Fri 24 Jul 2026 06:37:52 +0000
Files and hashes:         1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: gt6voWRWVe+MIRyyBFOCiMe0PUl31WyPpgrbavVAv5w=)
                          2: 31E9AEC6E30411EFBC0C3B2CC4F9AE02.roa (hash: uV8rFDqMxRMdCRvkDEsV2MUMii9vsIlS/hRAm+P4Yu8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl
                          rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:37:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 317 (0x13d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91706E4, serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188
        Validity
            Not Before: Jul 17 06:37:52 2026 GMT
            Not After : Jul 24 06:37:52 2026 GMT
        Subject: CN=6a59cdc1-ab54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:1a:e6:68:28:23:df:ad:f2:d4:0b:4d:bf:3e:
                    ee:82:fc:0c:13:4d:a8:11:8a:35:ad:ae:06:6d:30:
                    df:59:5e:20:2c:5e:2a:e8:01:1a:2f:65:29:26:ce:
                    14:fa:41:57:9f:ba:37:5d:96:07:f8:1a:2c:dd:fe:
                    c0:49:11:26:35:0d:19:9e:73:4a:5f:b7:80:a1:81:
                    38:04:db:4d:ca:70:5f:c6:53:a2:f1:1b:07:c1:0d:
                    06:31:73:03:d6:03:1b:3e:d4:25:ae:46:bb:d3:bc:
                    33:71:fc:a8:fd:02:fc:d5:08:16:ef:4b:af:06:9e:
                    5b:86:ce:56:d8:65:a7:8e:4d:94:d0:a2:cd:df:46:
                    c1:6a:88:07:b7:61:7d:0d:a8:b5:e5:a3:fd:68:3e:
                    c4:43:a0:17:b4:cd:dd:71:1e:b2:37:81:53:cb:e2:
                    e9:99:58:2b:07:fa:a0:f9:c0:45:96:08:07:3e:a8:
                    4b:1d:32:1c:81:13:9b:6a:10:31:ce:31:3d:5a:ba:
                    66:f6:42:11:57:bd:57:e1:f7:77:c7:c1:d9:6b:f8:
                    2a:16:6e:a9:22:84:41:d0:ea:f6:94:07:38:82:47:
                    15:07:7d:4b:ac:af:58:59:50:3b:f5:7e:35:34:91:
                    c8:b2:e3:a6:68:b9:7c:b0:55:7f:e4:20:72:69:20:
                    49:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:13:2C:B4:79:57:82:5C:6B:23:E3:79:86:AA:F5:D9:48:13:66:2A
            X509v3 Authority Key Identifier:
                keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:ee:6f:1d:a9:59:ba:32:da:71:c1:c0:aa:db:f9:d7:db:d3:
         4b:96:02:91:5e:cf:08:95:db:31:56:8d:a4:80:69:32:25:00:
         1e:46:4d:55:32:ee:d4:96:6d:71:3a:f0:85:d3:72:9a:87:bc:
         cf:fe:0e:8f:e8:5b:a7:7b:f6:c5:c3:0e:db:fb:f4:3f:da:10:
         d0:fa:52:74:99:77:21:ad:a2:5b:f3:d3:a2:7b:db:71:4d:ce:
         74:4d:e0:09:28:6e:74:5d:87:2e:a9:a6:67:0e:84:06:99:cd:
         da:c4:d2:0c:21:58:c3:b6:ac:16:bc:ff:35:be:19:f2:a5:5e:
         ae:d7:a2:67:b3:a3:4c:dc:4e:bb:8a:5e:61:14:2e:67:74:d3:
         15:df:6c:9b:86:30:74:2f:93:0a:f5:c0:13:bc:0a:f1:30:15:
         29:7c:9a:d5:c7:d6:e9:fe:0a:b8:fa:fd:56:2b:3c:30:8c:f7:
         f1:64:f9:20:8e:7b:95:ab:dd:ca:ab:b4:1a:c1:da:6f:16:ef:
         c2:24:0c:9b:41:de:0d:74:66:74:18:33:bb:5a:5d:68:8d:be:
         1e:07:a7:40:e4:65:6f:77:31:0f:87:3b:49:8b:ff:f4:10:66:
         d9:48:19:6d:51:8b:15:47:c1:33:77:89:5f:72:3a:10:ac:e0:
         7e:11:9d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:20:59 2026 by rpki-client