Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
File:                     QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json)
Hash identifier:          jC03NGFlBpLrq1m3ZxdWKNRzfWcM8vbjnVBz9ZnSL4Q=
Subject key identifier:   57:EE:04:D6:F4:48:E3:41:00:38:51:90:60:38:4A:14:C3:2E:1C:20
Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59
Certificate issuer:       /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259
Certificate serial:       04C3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
Manifest number:          04BA
Signing time:             Sun 05 Jul 2026 00:15:25 +0000
Manifest this update:     Sun 05 Jul 2026 00:15:24 +0000
Manifest next update:     Sun 12 Jul 2026 00:15:24 +0000
Files and hashes:         1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: f5OMLXingRXZJ7IJROf8TBJYG6rDvHHdZbet20dGtoo=)
                          2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: UDGIexCjWZjf9oWBoZsn81ywHvMY4QFQvNjug6FA+Yo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl
                          rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:15:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1219 (0x4c3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259
        Validity
            Not Before: Jul  5 00:15:24 2026 GMT
            Not After : Jul 12 00:15:24 2026 GMT
        Subject: CN=6a49a21d-3e3d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:4e:39:fd:3c:4c:c6:20:46:2b:52:75:21:ed:
                    76:d8:ff:f0:c6:45:c6:4a:f3:4d:5b:f0:e1:a9:f6:
                    c4:6c:74:85:22:9b:a4:cf:16:51:9e:ce:17:00:77:
                    43:c2:ac:49:7d:8a:fa:45:82:a9:d2:ef:c4:6d:57:
                    66:b7:85:0e:5d:91:f5:cf:09:01:45:c2:10:21:a9:
                    fc:b1:63:63:72:3e:e0:62:ad:a6:c4:28:ed:b5:60:
                    80:39:f6:74:02:a1:12:6b:e7:7b:5e:25:ed:47:2a:
                    d9:b2:4d:15:f6:23:d7:53:10:cd:b7:77:b6:81:81:
                    a2:c1:aa:53:ce:d0:47:dd:84:6b:76:1f:63:c2:7d:
                    d2:c8:9f:1b:7e:c0:38:9c:ca:d2:03:e1:48:2e:ba:
                    fb:c7:56:f5:cd:c6:25:21:51:0d:ab:c3:ac:de:12:
                    70:8e:82:31:b5:f8:95:4f:f9:2c:91:dd:5d:05:75:
                    6a:6d:e8:7d:35:fe:2b:16:65:5b:b1:f7:0f:d2:5c:
                    69:bd:55:f0:40:f9:ac:24:92:a7:97:cd:4f:6b:53:
                    9b:38:14:83:9d:8e:da:60:c6:b8:27:5f:af:ca:3e:
                    7f:20:a1:1e:e2:56:34:ee:f7:ce:b9:ae:a9:09:d5:
                    e8:dd:35:d2:4e:ba:fc:70:cb:b3:b2:8f:6d:50:ad:
                    da:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:EE:04:D6:F4:48:E3:41:00:38:51:90:60:38:4A:14:C3:2E:1C:20
            X509v3 Authority Key Identifier:
                keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:17:99:23:db:05:d0:2e:1e:0b:4d:6c:79:36:29:96:64:39:
         23:16:f1:2c:bf:b0:d2:c7:bf:a2:63:6f:ed:38:9b:0d:9a:16:
         ce:0e:76:69:25:74:4c:7d:b5:72:ff:88:39:03:a2:97:c5:7d:
         ba:4c:91:8f:48:42:24:a0:d4:53:83:91:a9:26:d1:6f:8a:67:
         d5:bc:40:51:ff:27:fd:a1:17:6e:a2:db:4d:05:43:8c:90:04:
         a0:2c:30:2c:df:51:4a:65:ba:9e:5f:76:3d:5e:fe:a6:0a:18:
         47:ef:20:dc:47:64:e8:bd:93:79:11:b1:50:89:a8:e8:ac:15:
         b6:30:2a:b4:b3:32:5d:c7:70:9c:f5:02:5b:36:26:03:14:c3:
         cd:9a:af:8b:aa:39:fe:f3:68:17:c8:7a:8f:47:70:03:1f:5b:
         d9:a6:6f:bd:32:12:23:78:8c:3f:9f:7e:1c:af:60:65:fd:cb:
         79:65:bc:1c:40:0c:74:57:31:22:d7:a5:55:7d:3c:a4:d6:5b:
         8a:3a:d1:37:ba:78:5c:2b:73:c0:6d:f8:90:66:b7:bf:36:28:
         7e:5e:87:92:57:e6:8e:88:73:9b:bf:dd:3c:ec:5e:b5:45:04:
         38:85:5a:11:03:81:3c:5d:81:d9:52:15:a8:47:d1:02:ad:1c:
         72:53:99:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:46 2026 by rpki-client