Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
File:                     iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json)
Hash identifier:          iX7e1skVKQUrCcaOoPgvrjbtOXyT2iP336wmuV+TrI8=
Subject key identifier:   AA:43:A4:35:95:F7:F4:2D:9E:8E:71:C1:2C:B9:EC:9E:72:B8:AD:CD
Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89
Certificate issuer:       /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89
Certificate serial:       0522
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
Manifest number:          0515
Signing time:             Fri 17 Jul 2026 07:26:40 +0000
Manifest this update:     Fri 17 Jul 2026 07:26:39 +0000
Manifest next update:     Fri 24 Jul 2026 07:26:39 +0000
Files and hashes:         1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: JKv+Kuw7Xm19CZQ4jfbKy/E7wA4q0QC1MPoXqZSFCN4=)
                          2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: PglW3T12IKlMircnLLUZ33j6kRlzVW56A2kCHbmh2rY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl
                          rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:26:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1314 (0x522)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89
        Validity
            Not Before: Jul 17 07:26:39 2026 GMT
            Not After : Jul 24 07:26:39 2026 GMT
        Subject: CN=6a59d930-bdf4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:1c:03:5a:e8:a3:c0:6b:fc:cf:be:52:73:a7:
                    e9:69:1b:02:26:9f:9d:15:c5:a1:66:6a:8f:07:9e:
                    39:83:5e:b0:c5:9c:2a:69:e0:f8:6b:28:17:63:2b:
                    7b:72:93:57:b1:fd:a1:cd:ab:05:e2:93:1f:6e:6f:
                    e6:a3:cd:44:32:b2:ff:71:16:ef:73:63:4d:5c:6b:
                    15:82:26:3c:f2:65:cb:94:85:70:7c:87:a2:4b:7a:
                    7b:c1:8c:94:d5:07:76:a6:24:6e:f7:7f:fe:f1:fb:
                    69:b0:34:97:ac:9d:96:3b:37:4a:77:23:1c:9c:13:
                    19:c9:a4:9e:93:f4:e0:bf:23:dd:21:5e:51:d2:2f:
                    4b:49:2c:9a:7f:8b:07:a4:9e:1f:f5:f6:f7:bf:62:
                    68:9b:36:ec:94:df:50:86:32:b1:50:81:2e:4e:2e:
                    2a:43:78:4b:a5:dc:c8:5d:dd:d5:e5:73:d5:70:5e:
                    19:98:fe:80:0d:7f:eb:2e:1f:14:c9:37:ae:2b:04:
                    ec:6d:d1:b4:19:be:e5:e7:63:ea:c0:77:99:06:66:
                    38:71:92:2a:f8:e3:ed:8e:48:3d:1e:d4:8e:87:8d:
                    4a:46:66:96:bf:a6:62:c2:67:da:15:a6:a5:37:4b:
                    56:b4:b2:9f:85:e9:9e:02:33:e6:f5:df:43:22:48:
                    1d:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:43:A4:35:95:F7:F4:2D:9E:8E:71:C1:2C:B9:EC:9E:72:B8:AD:CD
            X509v3 Authority Key Identifier:
                keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:ec:88:4d:4b:59:04:bd:84:4c:17:87:f6:4e:ff:ae:cb:5d:
         78:ab:cc:db:9f:81:29:4b:46:4d:e3:dc:13:c2:e0:49:93:e3:
         9d:60:4b:cb:48:d4:de:92:7c:39:b9:55:00:0a:48:42:90:d2:
         e5:fb:6b:70:a7:de:ce:24:20:2f:33:ce:25:19:8f:55:72:5e:
         dc:6d:d4:35:34:ec:0b:64:f4:3d:d7:13:b1:04:1e:01:5a:69:
         2b:2a:68:f4:78:c4:19:d3:e4:68:97:a3:12:95:fd:70:56:c6:
         c8:26:49:1b:01:88:b0:56:24:ba:69:b5:fc:0d:43:e8:30:39:
         49:42:02:bb:fd:6d:d4:09:39:ed:7d:53:8f:79:f6:be:45:0e:
         dd:69:80:88:8e:d7:de:23:25:00:9d:15:61:93:e0:9e:94:49:
         0e:48:ae:ee:35:0a:35:26:f4:a4:49:5d:ac:89:b3:c0:56:5e:
         b3:ed:65:fd:f8:5a:c2:2e:d4:f4:94:98:99:40:61:8a:b4:de:
         9f:a3:35:37:4e:ad:71:3b:f9:c6:20:c0:28:30:34:22:30:06:
         16:77:13:35:ab:fc:18:e2:ec:8a:cb:10:55:d5:20:2b:f6:18:
         8e:d5:50:64:9d:51:e4:84:4a:88:7c:33:b6:32:8d:9c:e8:85:
         9d:ef:ba:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:35 2026 by rpki-client