Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
File:                     kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json)
Hash identifier:          iRaEnkLn7TwF1R8ckzNlnVoOUNPFav76p4s+gfcgIe0=
Subject key identifier:   D5:E3:DF:65:42:5C:CE:91:41:B0:78:A2:9E:5C:C9:98:14:AD:75:89
Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A
Certificate issuer:       /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A
Certificate serial:       0CE3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
Manifest number:          0CD2
Signing time:             Thu 16 Jul 2026 18:37:54 +0000
Manifest this update:     Thu 16 Jul 2026 18:37:54 +0000
Manifest next update:     Thu 23 Jul 2026 18:37:54 +0000
Files and hashes:         1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: RIUTK63YezHeHwjd94DFZTGggd22HfLObqHzR3O1+mQ=)
                          2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: 8Kzq8ge3wSUVu+VYpnFOyTT3NcPx0P4ByioHfNwqHSQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl
                          rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:37:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3299 (0xce3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A
        Validity
            Not Before: Jul 16 18:37:54 2026 GMT
            Not After : Jul 23 18:37:54 2026 GMT
        Subject: CN=6a592502-8d96
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:99:7e:00:55:55:9f:e1:4a:48:2d:9a:00:5b:
                    b6:91:c6:e8:43:2e:73:36:0b:81:fb:5f:b7:48:c4:
                    f8:9c:c4:11:70:a1:97:4f:04:5c:70:8e:56:25:8b:
                    c8:ab:a6:f4:a8:03:0b:5c:70:2b:b0:6e:b6:e0:0b:
                    76:36:23:9e:2a:78:4b:d0:74:e8:42:88:72:88:c4:
                    06:4a:ce:b3:52:7f:95:81:ce:c6:ff:17:43:fb:2b:
                    37:2f:8e:50:28:f2:73:17:4b:18:a3:cf:d0:9d:b2:
                    51:7f:92:25:7e:b1:76:94:87:f7:17:42:11:de:92:
                    91:d5:9a:99:1f:de:6c:17:b8:0e:16:6b:50:56:d6:
                    68:a3:ed:e9:93:5c:d9:d8:ee:98:03:43:d4:6a:97:
                    d1:a3:e4:4c:6d:17:0b:b4:a6:7c:52:97:c2:e9:b5:
                    b1:26:f1:10:81:53:2b:e2:c8:4f:1f:69:ab:a7:ca:
                    56:7f:51:c8:ca:4f:c0:92:f4:33:07:c9:4e:d2:ef:
                    b9:04:1f:2d:cc:3d:af:01:ab:9e:8f:64:5d:5f:36:
                    64:7f:4a:2d:ee:09:86:dc:20:24:59:09:54:e2:4a:
                    9b:0d:bb:95:2a:73:49:19:4e:db:70:e9:bd:b9:86:
                    8f:24:08:e7:07:66:17:15:54:33:a4:73:96:57:31:
                    2a:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:E3:DF:65:42:5C:CE:91:41:B0:78:A2:9E:5C:C9:98:14:AD:75:89
            X509v3 Authority Key Identifier:
                keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:38:be:5c:e7:c9:5b:fc:c7:d4:d5:24:40:b5:4d:6e:0a:64:
         a4:3a:34:b7:1f:14:1b:9e:91:f7:ef:f2:56:f7:fe:88:f8:28:
         02:9d:25:18:62:b1:88:a0:b6:be:b2:0e:3e:00:13:cb:70:5f:
         5a:e1:d0:27:76:8b:48:49:47:00:6c:28:2b:2e:4b:d0:a9:99:
         57:f3:5a:11:6a:2f:87:7f:5b:39:6e:69:01:14:a1:f6:9f:54:
         04:2e:ae:dc:92:3d:42:a9:ee:89:ef:e6:e9:71:49:6e:4b:d2:
         38:66:9a:01:0c:af:fb:5f:7c:a1:2a:0a:04:3e:36:40:34:26:
         a1:0e:05:76:6c:55:e9:31:72:59:ec:a9:30:19:f0:e6:96:5c:
         f3:a8:37:68:f0:70:54:67:37:9c:cb:b1:86:1f:ba:f7:3a:1d:
         4b:da:4e:86:59:d5:05:f5:ce:9b:11:ab:ba:1d:b2:dd:20:ee:
         8c:df:2f:88:0c:3c:72:17:b2:9b:bd:7e:5d:05:bc:69:6a:be:
         c6:e8:f3:ee:c9:d5:4a:3a:12:72:9f:d0:a9:d2:78:8f:6a:a1:
         b2:db:b2:79:66:8e:2b:19:29:fb:b0:f9:fa:0d:71:44:04:43:
         62:fc:f6:28:7b:bc:83:c8:ca:61:33:54:d2:a0:e1:7e:57:1e:
         fe:71:98:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:20:43 2026 by rpki-client