Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
File:                     FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json)
Hash identifier:          Xq46DarayGFMhuXLOgvHhZptksaqQIuPTnzooCO2PUo=
Subject key identifier:   F7:B9:AA:3A:A0:8F:EF:7B:19:F9:76:E2:1D:9F:01:F9:36:C8:2F:1C
Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71
Certificate issuer:       /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571
Certificate serial:       0C32
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
Manifest number:          0BF6
Signing time:             Sat 04 Jul 2026 19:00:46 +0000
Manifest this update:     Sat 04 Jul 2026 19:00:46 +0000
Manifest next update:     Sat 11 Jul 2026 19:00:46 +0000
Files and hashes:         1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: 51i7lXp9sOOl5OH4+eDUX9YBN/kq1UXQwnT9y9R80hU=)
                          2: 8137CEBC07E911F18CE8BD7B223D8C67.roa (hash: wHgEjCXqndOJLXZ9J6FfS2MgjM1Wq0AwJ0Oymtfq0bs=)
                          3: BA16840475D911F1B46C33AD6CA30FBC.roa (hash: /qKxnSXL8e1JhFVlrKwLNg4T/NwR0oewdz+ElfcHN+w=)
                          4: 614D895A75DC11F19A6AA48A6DA30FBC.roa (hash: a9aKl465v7NDdlNX+gkLCpTJES/Srn/edKpf/fvxxmo=)
                          5: B899690275D911F1B46C33AD6CA30FBC.roa (hash: fmi7Xv25W86/nRUdBaLjYoJWXUK1k9Dy00DZvttwrRQ=)
                          6: BB848D8675D911F1B46C33AD6CA30FBC.roa (hash: hKK67kho1xmsmO4LWvmGhYdHu4g9sHo6GKRHNdTGbfY=)
                          7: BCA6A73A75D911F1B46C33AD6CA30FBC.roa (hash: 200zdhmpRY9TDWyoBotBxLY/NlAK1wTrZHNyeeHEV/Q=)
                          8: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: RzHBWYWw5IHkZGciQV9CfmaSyQYYH4ManuyCrGOl3Iw=)
                          9: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: m6A5k7GrCQsQt6UQStLqk4vDI2cF1RjOvSbk8wVUoVE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl
                          rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 19:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3122 (0xc32)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571
        Validity
            Not Before: Jul  4 19:00:46 2026 GMT
            Not After : Jul 11 19:00:46 2026 GMT
        Subject: CN=6a49585e-00cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:01:e1:75:29:58:94:d0:c2:7d:84:6d:ba:9f:
                    a4:10:52:fc:b0:72:87:aa:bc:08:08:8f:35:d8:5e:
                    94:9a:61:e5:66:ad:98:9e:c5:54:40:e1:79:27:21:
                    c9:59:dd:cc:30:c7:c3:d2:68:c6:4a:3d:dd:50:0d:
                    5e:b5:a5:96:04:17:38:bc:51:e7:f6:e1:47:a4:ad:
                    ba:a9:b6:d7:1a:26:51:91:32:1d:87:98:8a:fa:a4:
                    c9:a7:73:bf:dd:a9:33:e2:73:b8:95:9e:65:4f:9f:
                    98:c9:ca:77:1c:fe:0d:97:58:03:0d:24:5e:38:26:
                    06:b2:21:49:b0:ad:4a:d8:d3:e5:53:84:9c:21:d8:
                    47:5e:f8:1b:85:47:d3:3f:c2:a8:26:81:34:49:e8:
                    e3:2b:83:c4:a6:3a:d5:6b:d5:be:42:25:6e:36:c4:
                    d1:4a:7e:77:a3:8e:00:08:d9:23:91:4c:39:32:b7:
                    d8:84:ba:e9:2a:92:88:ba:c0:63:c2:0e:1a:02:5f:
                    14:9f:c0:35:1d:62:3f:45:ef:83:9e:57:34:fc:22:
                    11:50:32:8c:0c:c1:78:20:52:ed:ce:55:42:74:34:
                    80:c5:47:52:47:98:df:5f:7c:02:35:47:7b:21:52:
                    16:f4:49:c4:bf:84:75:c2:5c:d7:ec:1b:92:1c:b5:
                    4f:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:B9:AA:3A:A0:8F:EF:7B:19:F9:76:E2:1D:9F:01:F9:36:C8:2F:1C
            X509v3 Authority Key Identifier:
                keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:83:d0:be:26:79:64:9b:73:b4:e2:3a:22:37:cd:87:c9:d6:
         f0:cf:93:00:58:cb:d9:a0:a3:16:90:6d:96:1d:8b:51:b0:7e:
         89:b5:57:71:3a:e6:80:b0:6c:7e:b9:97:86:14:db:a2:ca:12:
         9f:f7:37:1d:ad:d2:88:94:2e:49:0b:93:da:d8:1b:3f:d5:ff:
         f0:cd:65:88:64:d9:91:29:9a:00:46:13:4a:9d:d0:3e:3d:c2:
         99:ae:73:e2:cf:1d:19:a4:b7:b3:61:d5:be:67:33:2a:8d:2c:
         17:b2:3f:da:b7:07:56:1d:84:ba:1c:3c:ff:7e:f5:f1:f4:fe:
         17:da:60:dc:29:98:2a:37:73:51:73:07:28:ad:02:f3:8b:0f:
         71:16:9e:77:bf:4b:2f:55:90:a5:80:18:62:10:85:45:73:a9:
         82:3a:86:9f:5b:07:4e:0a:e8:34:54:91:65:34:40:1f:c5:f2:
         de:13:1a:89:ba:87:86:09:05:01:a4:d3:e9:0d:6b:fe:ab:09:
         8f:0b:72:f8:94:38:8d:90:8a:e5:61:04:a7:5a:e9:ad:05:e7:
         ed:90:35:8d:97:00:34:04:b7:5a:4c:85:9e:ca:d0:7d:1e:ff:
         cc:12:2e:ed:5b:7c:87:28:3e:c6:46:ef:14:5c:4a:c2:53:1d:
         ef:fc:6c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:51:43 2026 by rpki-client