Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft
File:                     kbx5rhXMrqROT-eEX7_KY-f6654.mft (raw, json)
Hash identifier:          aurhTkL592eOMEuX7KFp36nLZkoX6/S3xqpYqFgHE1w=
Subject key identifier:   1C:D5:02:4D:C1:3E:66:AB:04:D4:FE:BC:D0:18:BE:75:AD:B0:BD:67
Authority key identifier: 91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E
Certificate issuer:       /CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E
Certificate serial:       10D1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft
Manifest number:          10AC
Signing time:             Mon 06 Jul 2026 17:38:13 +0000
Manifest this update:     Mon 06 Jul 2026 17:38:13 +0000
Manifest next update:     Mon 13 Jul 2026 17:38:13 +0000
Files and hashes:         1: kbx5rhXMrqROT-eEX7_KY-f6654.crl (hash: Gq60JpK+pfACsjLZY2CJo49G/w8KqnQ5jX1VquMgXm8=)
                          2: 30BF32F2C28C11EAB764BF4CC4F9AE02.roa (hash: 9oD7ePq9FUpAKk3w/IsQePKTLx2iOd3tFZxiCRUR3No=)
                          3: 122F83AAC4AD11EA9E35F20AC4F9AE02.roa (hash: TLISGWppoBnnfbHZFjULlfKEwbQDopU4rmYPr0nU0OE=)
                          4: 13C01CC0C4AD11EA9E35F20AC4F9AE02.roa (hash: qwQKPoIUFxOPN3MeCcCPfp5jviDrGHMY5L0x8rUXkG0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl
                          rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 17:38:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4305 (0x10d1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9194335, serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E
        Validity
            Not Before: Jul  6 17:38:13 2026 GMT
            Not After : Jul 13 17:38:13 2026 GMT
        Subject: CN=6a4be805-6f4a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:05:48:6c:31:1c:ec:d1:54:10:f6:07:a1:00:
                    2e:73:1b:60:98:27:f1:f4:b7:4a:3f:34:bb:93:1b:
                    88:60:4b:98:5d:72:eb:0e:0c:e3:48:55:03:cc:cb:
                    82:99:ec:46:eb:f0:09:01:84:86:ef:13:ba:f4:cb:
                    a1:7d:60:21:68:25:60:3d:f2:55:04:e4:53:2d:61:
                    2c:f3:54:ac:10:18:41:97:5d:e3:79:0d:b3:ca:65:
                    94:08:ce:fa:e2:31:17:0e:fd:e2:57:cc:04:33:a4:
                    2e:13:62:c5:83:e0:f0:23:70:01:fd:45:1b:97:25:
                    23:4f:a1:5a:6c:15:2e:51:c8:02:ef:99:56:fe:10:
                    4a:9c:66:40:8a:97:47:cf:cc:78:21:1b:24:cd:c9:
                    22:cd:58:f9:9f:70:89:0f:0e:7b:6e:17:83:76:2d:
                    38:5e:4e:17:03:24:ed:d0:e1:8a:0a:3c:a8:8b:f0:
                    a7:dc:8b:e5:f1:07:8d:03:bb:e8:52:b3:7b:04:4b:
                    ef:c7:90:a0:d7:f6:d4:6f:96:39:7d:30:14:f9:bc:
                    74:3e:b5:db:81:f1:c9:73:f7:2a:4f:4b:8d:a3:d8:
                    cb:05:8a:ce:1e:c0:b9:7f:fd:3d:d0:84:35:d1:bc:
                    f3:9e:97:20:98:c9:f5:6a:a1:cd:25:02:47:b4:ef:
                    29:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:D5:02:4D:C1:3E:66:AB:04:D4:FE:BC:D0:18:BE:75:AD:B0:BD:67
            X509v3 Authority Key Identifier:
                keyid:91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:a6:50:09:ce:fb:73:ef:b9:46:46:7d:22:6a:52:24:dc:11:
         e8:ec:f6:df:e8:a0:46:43:eb:e4:56:16:39:84:c1:0d:aa:98:
         ae:7e:df:88:51:24:15:ce:2e:b9:0e:69:d7:1e:83:19:07:a9:
         96:16:8a:e5:cb:ad:0d:d4:bb:d9:6a:fd:bb:3b:ac:be:4a:34:
         9b:14:b2:93:65:fb:42:43:b5:5e:5a:90:2b:65:5b:55:0e:0b:
         fe:86:07:dd:a5:a1:2a:09:65:91:2a:77:17:c3:0f:71:24:6f:
         65:51:e8:90:0e:20:da:e0:0d:f0:c4:96:95:9d:23:4f:1a:e0:
         10:21:df:53:cc:38:e8:38:32:cb:40:2a:b3:33:9b:b3:9e:4c:
         45:e8:8e:dc:7f:2f:24:63:28:ea:9c:b4:86:27:8e:3a:0b:dc:
         2e:23:eb:e1:d0:b2:5c:f1:c9:76:bd:0d:4e:eb:a3:7e:5f:0b:
         b5:19:ff:f7:d6:41:f1:cc:21:b6:84:ac:e9:82:da:18:8e:90:
         06:89:a3:4e:b7:58:7a:90:a8:e1:8b:57:c9:c9:82:70:a0:ed:
         89:85:ea:ea:df:c0:c2:5b:d0:ea:44:d6:d3:8c:2a:49:d0:ae:
         ee:a8:ec:94:5a:b6:41:69:36:0b:79:2b:b0:d2:8e:dc:d9:8c:
         09:5e:53:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:20:44 2026 by rpki-client