Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
File:                     Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json)
Hash identifier:          UHq4sxjMvUE/uv2HLMbh5m9jXjPrGS3A/ujqcu6nS/M=
Subject key identifier:   C7:F8:E8:5C:C1:4F:2B:E7:2C:84:16:CA:D7:1E:03:CE:D5:B8:5C:E3
Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9
Certificate issuer:       /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9
Certificate serial:       C6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
Manifest number:          C4
Signing time:             Fri 17 Jul 2026 08:04:41 +0000
Manifest this update:     Fri 17 Jul 2026 08:04:40 +0000
Manifest next update:     Fri 24 Jul 2026 08:04:40 +0000
Files and hashes:         1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: s5Ofd2CS92y4VzyCneCvQY9JxmnNFaFwelCGCCD3nJs=)
                          2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: GVEpvnEFQk1r8mTWmBDvESje+/1MN9Uk5AtUa2pXkUI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl
                          rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:04:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 198 (0xc6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9
        Validity
            Not Before: Jul 17 08:04:40 2026 GMT
            Not After : Jul 24 08:04:40 2026 GMT
        Subject: CN=6a59e218-0c69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:d0:08:fc:9d:63:97:55:1d:cd:c1:e2:61:3e:
                    8c:a5:26:0e:a4:31:7f:1e:75:62:b6:a2:85:29:50:
                    ec:67:e6:8a:53:23:14:f8:27:ec:a4:e5:82:bc:c0:
                    f8:a5:5a:59:75:00:90:92:c5:a0:d1:8a:3f:93:58:
                    6d:ad:c9:bb:62:2e:75:18:81:39:c9:1c:d3:38:de:
                    ec:34:c1:78:9b:12:a8:a6:f7:22:5e:5c:0e:3e:24:
                    2a:f1:68:31:e1:8e:24:29:1a:1f:9a:e9:f9:18:21:
                    73:90:e7:06:ec:5e:55:98:11:f1:ff:b9:06:82:94:
                    12:ee:54:5f:84:1f:c9:61:71:06:e1:4d:a7:6d:a4:
                    01:4e:0f:aa:e5:8e:01:26:60:b4:fe:e7:ba:f8:9d:
                    ac:c5:e8:b6:00:34:c9:18:8f:fa:00:c4:b1:13:65:
                    60:7c:29:11:cd:a1:8d:5c:3b:4e:6f:0b:1d:50:ca:
                    a9:95:5b:da:28:39:7f:aa:6a:58:66:c0:42:25:df:
                    85:75:74:0c:dd:11:d6:56:ab:37:e2:bc:c1:b2:40:
                    96:f6:b2:bf:22:55:10:a8:1a:09:0c:97:48:ec:03:
                    68:66:d2:22:07:7f:ee:49:1c:10:9e:8c:a9:ed:67:
                    97:e1:f0:fd:c4:e3:ad:bb:11:dc:0c:8f:99:14:92:
                    50:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:F8:E8:5C:C1:4F:2B:E7:2C:84:16:CA:D7:1E:03:CE:D5:B8:5C:E3
            X509v3 Authority Key Identifier:
                keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:fa:69:73:34:c6:34:f8:17:41:ce:5c:83:cc:86:b8:ac:c0:
         5c:a4:55:1a:2e:69:50:0e:54:8a:6f:e9:27:94:a8:6a:5b:0f:
         b6:df:6f:c7:94:ae:b1:eb:bc:ce:26:5c:62:65:93:ba:3c:ba:
         3d:a9:c5:fe:2c:dd:cf:b8:8d:8c:a0:d4:ca:05:f5:20:4c:ef:
         e5:4b:39:c9:96:66:c2:8c:c2:df:a3:2d:3b:a7:b4:a2:79:92:
         cc:ef:a4:43:6c:32:5e:37:49:7c:86:18:6e:04:16:7f:65:06:
         0b:2e:60:dd:fe:f0:37:c4:42:7b:2d:48:2d:63:6f:af:b7:56:
         3c:18:c3:4f:63:26:df:25:15:80:61:9e:e5:00:db:02:c7:aa:
         7e:2b:46:d5:7f:33:ab:ba:f5:5e:b3:62:e5:3b:45:e5:31:b3:
         24:de:7a:10:56:45:8f:e0:22:c5:f9:d9:c5:fb:0d:0f:63:6a:
         47:e9:13:8c:3e:80:99:10:0f:7e:ca:02:22:6c:3a:b9:5f:04:
         a5:b3:24:f6:4b:54:aa:ef:91:24:9e:70:1f:2a:a6:e9:a1:fe:
         06:39:96:69:e5:72:a1:fe:88:4a:0d:b6:98:b0:90:df:a1:15:
         ac:b7:fb:a2:f7:aa:40:e9:cd:85:ab:2b:82:fe:8e:a0:34:52:
         f4:7e:9f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:11:31 2026 by rpki-client