Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft
File:                     64P0iA8jV15XUXhcbgqyvgskm8M.mft (raw, json)
Hash identifier:          pGNULSGKfnW1pWY4pW91aRFqhlhxCjN5kHoZv116bmM=
Subject key identifier:   B1:6F:68:3C:EA:84:47:57:8E:38:8D:E4:20:AC:5A:61:02:21:07:42
Authority key identifier: EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3
Certificate issuer:       /CN=A917C0F3/serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3
Certificate serial:       0121
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft
Manifest number:          011D
Signing time:             Fri 17 Jul 2026 06:59:24 +0000
Manifest this update:     Fri 17 Jul 2026 06:59:24 +0000
Manifest next update:     Fri 24 Jul 2026 06:59:24 +0000
Files and hashes:         1: 64P0iA8jV15XUXhcbgqyvgskm8M.crl (hash: rIKFia5GCsQzbeGOuCUHcvuTLxVPrZRhOnY49FA4+uo=)
                          2: 028452F0D0BA11EFA8B5A526C4F9AE02.roa (hash: VwphhGhSSxLYmxwzAbdpnMPMVv5nEltMnX3C48e6dF4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl
                          rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:59:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 289 (0x121)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917C0F3, serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3
        Validity
            Not Before: Jul 17 06:59:24 2026 GMT
            Not After : Jul 24 06:59:24 2026 GMT
        Subject: CN=6a59d2cc-9b2b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:cb:ce:ab:cc:e0:32:92:8e:fa:e0:08:da:1e:
                    ae:39:c5:fc:58:d8:12:a9:51:b8:96:c2:ce:80:78:
                    bd:70:67:e7:27:9a:67:80:f6:a7:a1:8b:45:a5:1e:
                    55:69:ce:ad:5b:e2:dc:2b:22:8a:24:ed:7c:f4:1f:
                    2b:94:c4:0a:8e:46:1e:f1:d8:6b:39:be:ef:ed:1b:
                    b8:bb:d5:bf:34:67:ef:67:de:15:34:c4:49:72:cf:
                    f6:00:f6:e7:9e:a9:5a:e8:f7:ec:b3:ad:4f:8c:f5:
                    35:ba:aa:c0:da:0a:24:7b:5a:1b:39:e5:af:4e:c3:
                    59:01:f2:25:55:59:f7:21:b7:b3:39:25:9b:86:7c:
                    29:f4:4e:59:3a:3e:be:1a:ce:e1:ca:a3:97:89:4f:
                    1a:d9:be:5f:7a:90:af:9e:c6:7a:c6:7e:29:6e:ca:
                    17:fe:19:4e:8d:9a:7f:70:0a:e9:9c:81:92:30:41:
                    a3:b5:4a:40:53:cf:ea:de:42:41:92:2c:33:15:a6:
                    22:36:1d:75:ac:90:d6:4c:85:c1:e2:22:c6:de:2f:
                    27:1f:f1:07:9a:28:8c:6f:ec:b6:1f:c7:be:91:cf:
                    48:78:0a:09:df:fd:e3:a9:4e:22:9d:64:dc:eb:45:
                    88:01:82:04:88:47:9f:4a:e8:6d:2c:0a:05:64:ed:
                    69:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:6F:68:3C:EA:84:47:57:8E:38:8D:E4:20:AC:5A:61:02:21:07:42
            X509v3 Authority Key Identifier:
                keyid:EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:60:d5:29:34:a6:f5:86:0f:c9:80:a8:ae:49:fd:6e:e3:94:
         6a:90:dd:a1:4a:d4:8a:53:67:ea:f4:03:b3:92:c6:36:6c:f1:
         5e:11:b0:4a:c5:bb:7d:ba:40:54:1e:06:f8:5d:5e:96:07:a3:
         03:2e:b6:7e:a1:07:c0:eb:31:88:2a:a3:d3:60:45:5a:84:dd:
         38:ae:e7:48:bd:16:7b:17:c3:12:8f:16:ab:45:18:85:10:30:
         94:5c:ec:82:15:23:26:13:fb:7e:3d:8c:0b:4b:1a:77:71:ec:
         14:c2:5d:1c:7f:7c:e5:9e:ee:97:3c:17:61:81:69:c7:3b:bd:
         83:38:4c:14:b5:54:67:ce:4a:57:1e:55:55:50:d7:90:53:77:
         79:85:72:b9:5c:7f:53:b9:56:f8:9c:e6:6d:e1:3c:92:be:7f:
         7e:79:87:de:32:bc:6e:0f:3b:86:f0:7c:65:8c:54:52:5d:11:
         b6:09:a2:2b:34:5a:92:54:22:39:0b:ff:e7:45:ac:ec:4b:45:
         15:2a:aa:b2:5a:eb:9f:15:cc:8e:a2:24:41:19:4a:2f:b0:b9:
         46:51:34:04:f1:6a:bb:12:75:58:cf:ad:2f:31:9c:9c:f6:db:
         ac:f8:32:88:34:4d:b2:90:00:30:6a:79:ca:99:27:d0:1f:4c:
         68:b7:6e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:37 2026 by rpki-client