Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft
File:                     bP1Wp36tnhWbyxjrbehic1CRtUo.mft (raw, json)
Hash identifier:          5CftOjRrjikUdYCBeXepXBeQF+qVUA3h/jV5UiaCfck=
Subject key identifier:   D0:FE:46:05:85:3A:FE:F6:0F:D7:72:4F:B8:F0:72:97:AE:4E:27:17
Authority key identifier: 6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A
Certificate issuer:       /CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A
Certificate serial:       1AA5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft
Manifest number:          19F7
Signing time:             Thu 16 Jul 2026 16:26:53 +0000
Manifest this update:     Thu 16 Jul 2026 16:26:52 +0000
Manifest next update:     Thu 23 Jul 2026 16:26:52 +0000
Files and hashes:         1: bP1Wp36tnhWbyxjrbehic1CRtUo.crl (hash: yaCtI7zJVsB+NJN/m5BJU/+yumRdQXve9KkeTawfPcc=)
                          2: 682214D6505711F08AA6EA60C4F9AE02.roa (hash: 8RyJVpVnTfDYz/EklqnHcDET6Xj6NFvwxjvfIQ/ueG0=)
                          3: 7AF2C29C50C811F09EF54B31C4F9AE02.roa (hash: YTRTTxAoOuduYEtCiwkMqucnJnkRWP138bJsPpjcIEA=)
                          4: 4DFB5FE4B79211EFA70E7C4CC4F9AE02.roa (hash: 8hPdJ+q+s4j61afe+3Feh7lBjaDcubwrfYqwZ4evmJc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl
                          rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:26:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6821 (0x1aa5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918E319, serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A
        Validity
            Not Before: Jul 16 16:26:52 2026 GMT
            Not After : Jul 23 16:26:52 2026 GMT
        Subject: CN=6a59064d-3bb5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:e7:bb:1d:e2:21:cf:6a:17:c6:e9:f2:ba:93:
                    f6:05:a2:ab:b2:0b:71:f7:cc:6f:82:39:95:ed:43:
                    b7:4d:2d:be:1b:a0:95:c6:76:b0:77:5e:42:b2:ef:
                    e8:08:e4:d7:89:19:85:40:e3:01:16:05:56:5a:92:
                    75:23:08:14:7d:8d:8b:26:49:c3:95:d4:0e:2c:87:
                    1a:b8:e4:72:24:8a:5a:10:90:86:db:22:23:fc:5b:
                    2e:6e:27:4b:95:f8:70:46:78:16:ca:c0:96:92:0b:
                    02:77:40:4c:63:e1:ea:10:a3:50:a9:b1:de:97:4f:
                    8a:c3:aa:76:47:4b:9d:03:f0:04:41:74:1b:1a:1b:
                    73:de:15:17:48:11:b3:4c:24:ba:aa:5d:ab:7c:b2:
                    bc:ca:2d:7e:8a:7c:5d:8d:5f:ac:ff:62:ff:bc:03:
                    c5:a1:0d:93:8e:50:9b:8f:07:fd:60:77:e9:49:44:
                    9b:aa:76:85:5b:0c:39:9f:a1:76:6b:2e:1b:a5:1b:
                    e1:ba:cb:b4:d6:f7:7e:3a:6c:18:3c:9d:ba:65:ee:
                    5d:2b:07:95:30:d4:0d:50:9e:00:0b:b5:b3:42:23:
                    d4:4e:c7:6b:d6:19:aa:b2:13:33:bc:81:e4:f6:0a:
                    39:7f:d3:9e:fc:85:9a:ab:d6:55:45:c3:79:09:90:
                    d9:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:FE:46:05:85:3A:FE:F6:0F:D7:72:4F:B8:F0:72:97:AE:4E:27:17
            X509v3 Authority Key Identifier:
                keyid:6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:0d:ca:d6:3c:f0:cb:e4:cd:dc:b6:b9:8c:49:7d:ea:98:28:
         eb:fe:16:db:eb:7e:c7:0d:a6:c9:09:01:1b:5b:fc:f5:08:0b:
         8f:ec:17:13:c5:7f:75:bf:2d:68:d7:4b:b3:da:be:87:12:2d:
         09:11:60:9d:ed:34:8c:77:18:9b:1b:00:c4:05:c2:a3:ee:92:
         ac:a0:dd:f5:9f:f4:23:b0:c7:8c:0e:1a:bf:86:d6:5a:b3:fd:
         05:38:14:6c:f5:90:37:1f:72:aa:62:ec:71:80:5b:c3:e3:85:
         6b:14:81:e8:45:d6:05:9b:8c:c5:93:ce:c6:e4:3c:86:95:50:
         a4:eb:9c:f3:76:93:15:a6:a1:ed:e8:38:7b:7f:d7:58:90:58:
         91:5c:26:58:6b:04:a7:ba:16:d5:33:b1:38:78:ca:fc:22:d1:
         cd:6d:ad:f6:3f:a8:bd:2c:df:62:d5:90:69:e5:0a:85:73:c3:
         a3:11:f5:38:0f:17:e4:27:08:8f:c4:2f:29:bd:88:e5:75:64:
         ba:e4:51:99:49:f8:8f:3a:12:59:be:46:34:79:d2:6e:a9:18:
         b4:da:95:b7:9f:ac:5c:2f:40:87:f7:9d:6d:2a:bb:2b:98:c5:
         cc:a6:a0:b2:a4:95:96:17:4c:54:b9:9b:fb:5a:18:b8:d8:2e:
         fe:38:03:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 14:00:28 2026 by rpki-client