Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
File:                     bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json)
Hash identifier:          Rfjzg0cBuJUJNx8cUp4DYKnTI0qpRyssjOY7kPwYbig=
Subject key identifier:   E7:E7:9A:75:CF:30:69:CD:EC:F6:6F:94:3C:A4:94:72:68:96:9E:E2
Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4
Certificate issuer:       /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
Certificate serial:       038C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
Manifest number:          0385
Signing time:             Fri 17 Jul 2026 01:23:51 +0000
Manifest this update:     Fri 17 Jul 2026 01:23:51 +0000
Manifest next update:     Fri 24 Jul 2026 01:23:51 +0000
Files and hashes:         1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: f0tkNDGhcgvUqwy044VE/6M4zMmm1wAzY4U97Tj5nak=)
                          2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: KC4FexlexjRXq5lyOPd7yXPhSCmSDo/9sSF69OZy7iE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl
                          rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:23:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 908 (0x38c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
        Validity
            Not Before: Jul 17 01:23:51 2026 GMT
            Not After : Jul 24 01:23:51 2026 GMT
        Subject: CN=6a598427-5c81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:49:3c:4c:2c:a5:02:ad:e6:29:c4:60:0e:2a:
                    cc:86:4e:78:ab:f7:ff:8f:2f:1f:64:33:34:a7:2a:
                    9c:06:db:47:4c:93:4f:85:32:b1:40:d9:ad:66:e1:
                    4b:e6:c1:e5:74:f2:2b:25:43:56:29:3a:d4:a3:e1:
                    63:60:9a:15:99:c2:2b:31:8e:d3:8e:bb:cb:60:a2:
                    95:22:91:a2:5b:03:3c:ac:0f:ea:77:98:6e:cc:d3:
                    56:4e:0f:ee:40:f6:6f:3a:14:74:99:54:5c:35:2c:
                    a5:58:b8:18:bc:3b:16:01:14:24:57:70:93:39:65:
                    a2:9a:16:69:5f:ea:da:80:21:94:97:ed:8d:eb:f7:
                    f6:c3:82:80:ba:59:3b:9a:89:a1:73:b8:4c:6e:d2:
                    87:c5:a6:61:6b:1a:e8:69:18:9f:34:86:20:5d:b6:
                    3b:30:df:d0:e2:4c:96:7a:19:04:c9:12:d2:6f:8e:
                    54:2a:eb:c9:7c:f1:5a:35:dc:52:ff:fe:15:7e:8d:
                    b3:e0:81:db:21:11:39:7c:c6:39:ff:82:69:e3:4a:
                    08:ad:5d:a4:32:16:8d:0d:eb:6c:5e:82:59:99:7c:
                    bd:85:cd:ca:7d:a3:a3:2c:c4:a5:9b:af:6b:e7:2c:
                    c4:9d:e2:4b:29:04:4f:4d:1f:04:48:48:c0:3d:bd:
                    98:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:E7:9A:75:CF:30:69:CD:EC:F6:6F:94:3C:A4:94:72:68:96:9E:E2
            X509v3 Authority Key Identifier:
                keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:f0:4e:e4:da:52:62:fa:d7:99:ac:2f:65:46:b4:ae:85:db:
         1a:26:1a:b6:b3:54:ab:cb:a4:31:70:26:a4:84:1f:38:6a:26:
         ce:1d:51:71:f7:28:30:03:42:17:a0:c7:14:2f:95:5b:50:3f:
         16:ba:f1:3c:9a:8e:e7:65:c2:af:5d:ea:49:73:1f:50:8d:85:
         9b:e5:e4:3d:d7:f0:c2:2b:da:aa:93:47:d1:1a:2d:61:82:62:
         19:00:db:3e:69:02:52:f7:8c:e9:24:b3:cf:78:4f:ae:e1:9c:
         06:ce:72:0e:8c:aa:f8:9c:d0:35:51:df:58:1b:e1:02:fd:7e:
         f3:cd:f0:26:ab:a5:6d:36:3c:38:74:36:5d:91:02:74:ad:9d:
         50:b6:ae:1a:13:8f:2e:8b:ab:14:23:80:a1:f9:75:1b:5f:03:
         d7:fd:24:6d:48:bd:d8:ab:53:28:79:0c:e1:6b:77:e4:92:fe:
         31:6d:16:45:9f:8f:a0:69:04:c3:41:3b:07:03:e6:42:c8:eb:
         bb:1e:d3:bb:bd:d6:ae:b5:05:7a:7c:30:9c:fa:a9:be:66:21:
         ec:99:f5:a6:db:a8:ad:62:ce:02:3c:bf:54:37:23:f8:2a:fa:
         5e:07:88:11:9f:79:82:62:c6:f8:a7:db:3e:a4:d4:51:de:00:
         b3:cd:cd:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:45 2026 by rpki-client