Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft
File:                     S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json)
Hash identifier:          oqp2B+YZfgN3+PA5RTaD5tEZRJd0PFi/xJ5xat7Vjz8=
Subject key identifier:   F2:14:49:31:38:57:5A:16:0B:E3:C6:2F:D4:4A:8F:FB:3A:6C:F8:90
Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19
Certificate issuer:       /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319
Certificate serial:       0252
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft
Manifest number:          023F
Signing time:             Fri 17 Jul 2026 03:24:47 +0000
Manifest this update:     Fri 17 Jul 2026 03:24:46 +0000
Manifest next update:     Fri 24 Jul 2026 03:24:46 +0000
Files and hashes:         1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: d7BRohOkVuLcOLd0cXd+WMevBoHWKmKhIXutVNkYpjA=)
                          2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: 59D9zQ+RBL5Fvi3gvp0OtvuM1QHSjOAbItynN8Kr7yQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl
                          rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:24:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 594 (0x252)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319
        Validity
            Not Before: Jul 17 03:24:46 2026 GMT
            Not After : Jul 24 03:24:46 2026 GMT
        Subject: CN=6a59a07f-3b84
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:12:a7:be:df:c1:dd:3f:ad:24:04:4f:37:eb:
                    26:27:ac:b9:2c:2f:4a:cc:e9:b0:b6:6e:07:03:28:
                    cd:05:21:8a:ce:a6:22:81:38:a6:73:f6:15:eb:71:
                    79:2e:b9:fa:72:1c:03:50:54:9f:d4:f7:be:05:53:
                    87:7e:94:4e:d7:fd:59:83:6d:21:03:53:c0:2f:33:
                    2f:ba:39:3c:32:99:8e:75:6c:0e:29:1c:6d:a8:a8:
                    87:b8:11:2e:33:10:ba:44:e6:5f:8c:52:20:4c:16:
                    9a:5a:81:6e:e1:3c:36:78:1c:c8:eb:c9:b9:01:ba:
                    ae:4b:e7:0b:f8:5b:43:94:db:f6:ac:2c:88:c4:bf:
                    41:de:d2:cd:22:29:d3:7c:cf:4d:1c:dc:e6:3d:37:
                    4e:be:7a:fc:c3:93:1c:b5:d5:42:10:ab:f0:84:35:
                    92:2a:d2:8d:55:20:c8:27:da:a7:a9:da:45:b5:1b:
                    59:ae:a3:23:4d:e4:5c:9f:fd:0c:e1:98:63:b6:39:
                    a5:95:38:fa:ce:47:a7:58:8a:cd:0d:3c:ff:21:95:
                    c8:21:1e:f1:45:ff:89:ce:05:77:40:bd:a3:c7:c8:
                    eb:e4:d6:f7:c2:66:b5:c8:8c:e7:4c:42:95:44:62:
                    20:12:b4:5b:45:21:9c:0b:b6:cc:30:04:d9:b4:c7:
                    c1:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:14:49:31:38:57:5A:16:0B:E3:C6:2F:D4:4A:8F:FB:3A:6C:F8:90
            X509v3 Authority Key Identifier:
                keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:bf:89:0f:4f:26:9f:7c:a7:b1:9c:b8:28:66:be:2e:33:79:
         26:e1:d3:34:03:2d:75:4f:a5:5d:78:29:04:1b:9c:4f:5a:80:
         15:01:9e:7c:af:48:c0:01:be:87:7c:0b:1e:af:2a:ae:5d:3f:
         e4:07:97:eb:90:41:83:d5:d9:37:c3:7a:d6:55:d6:88:32:51:
         78:ed:6e:27:4f:05:63:a5:5e:11:9a:a8:c0:e5:2e:ea:8a:af:
         74:6d:c8:99:e8:f4:9a:0e:c4:87:4d:96:fb:89:e2:6e:68:67:
         91:08:e9:e8:67:4e:46:de:a9:23:57:19:9e:62:e9:fb:ee:ea:
         40:4f:38:01:36:20:c1:fe:cf:86:fc:ae:9f:e8:f4:d4:e1:66:
         e4:a3:80:d4:f4:49:b9:83:9a:fe:33:be:28:cf:67:f3:61:26:
         51:64:4b:65:ab:d8:2e:1c:47:21:d3:f9:f7:5d:03:b9:78:c4:
         e6:79:ad:67:8a:61:8b:18:23:92:0f:14:fa:57:4c:42:a1:d1:
         1c:5d:d4:77:a0:28:48:80:05:e8:37:b5:cc:51:b1:91:b3:e1:
         eb:c3:76:f9:4e:3e:97:ca:08:62:33:04:6f:10:06:6a:83:d3:
         57:4c:62:ec:c0:cc:a2:22:0c:99:64:40:11:f8:9b:7f:6c:13:
         3d:39:99:c7
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB
NkYzQTYzMTkwHhcNMjYwNzE3MDMyNDQ2WhcNMjYwNzI0MDMyNDQ2WjAYMRYwFAYD
VQQDEw02YTU5YTA3Zi0zYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAsRKnvt/B3T+tJARPN+smJ6y5LC9KzOmwtm4HAyjNBSGKzqYigTimc/YV63F5
Lrn6chwDUFSf1Pe+BVOHfpRO1/1Zg20hA1PALzMvujk8MpmOdWwOKRxtqKiHuBEu
MxC6ROZfjFIgTBaaWoFu4Tw2eBzI68m5AbquS+cL+FtDlNv2rCyIxL9B3tLNIinT
fM9NHNzmPTdOvnr8w5MctdVCEKvwhDWSKtKNVSDIJ9qnqdpFtRtZrqMjTeRcn/0M
4ZhjtjmllTj6zkenWIrNDTz/IZXIIR7xRf+JzgV3QL2jx8jr5Nb3wma1yIznTEKV
RGIgErRbRSGcC7bMMATZtMfBWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPIUSTE4
V1oWC+PGL9RKj/s6bPiQMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC
RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ
eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6
TEp2UFV1VG5jdUNtODZZeGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAWr+JD08mn3ynsZy4KGa+LjN5JuHTNAMtdU+lXXgpBBucT1qAFQGefK9IwAG+
h3wLHq8qrl0/5AeX65BBg9XZN8N61lXWiDJReO1uJ08FY6VeEZqowOUu6oqvdG3I
mej0mg7Eh02W+4nibmhnkQjp6GdORt6pI1cZnmLp++7qQE84ATYgwf7Phvyun+j0
1OFm5KOA1PRJuYOa/jO+KM9n82EmUWRLZavYLhxHIdP5910DuXjE5nmtZ4phixgj
kg8U+ldMQqHRHF3Ud6AoSIAF6De1zFGxkbPh68N2+U4+l8oIYjMEbxAGaoPTV0xi
7MDMoiIMmWRAEfibf2wTPTmZxw==
-----END CERTIFICATE-----
Generated at Sat Jul 18 16:30:02 2026 by rpki-client