Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
File:                     uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json)
Hash identifier:          ll6yQTDLQXUsXLeclHTirCh6vM+AoBy5msUDE9Vmqgk=
Subject key identifier:   18:93:8A:7E:FF:F8:7D:B2:55:21:2F:FD:AF:80:FC:38:B5:BF:67:27
Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8
Certificate issuer:       /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8
Certificate serial:       04E8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
Manifest number:          04E1
Signing time:             Fri 17 Jul 2026 00:20:32 +0000
Manifest this update:     Fri 17 Jul 2026 00:20:32 +0000
Manifest next update:     Fri 24 Jul 2026 00:20:32 +0000
Files and hashes:         1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: Xi6d5DT+iSUBdphNAGQwazhOmuz7mJrX05g8dZMod1w=)
                          2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: OpFOQ/Qs7pTcBKY6eGcg4iGZBHwfeCp3YAy8fBKvp0Y=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl
                          rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:20:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1256 (0x4e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8
        Validity
            Not Before: Jul 17 00:20:32 2026 GMT
            Not After : Jul 24 00:20:32 2026 GMT
        Subject: CN=6a597550-acf3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:ab:b0:e0:12:93:1d:91:ee:ba:cd:fc:65:73:
                    0c:f8:6c:cb:85:4f:a2:a8:9f:87:7c:e5:a3:e8:56:
                    cc:5f:89:55:cd:a5:68:67:b6:ee:b7:36:d2:64:e2:
                    69:3e:64:eb:3f:fe:08:59:88:ee:64:ae:25:9e:f2:
                    4c:b0:e5:b9:e9:d9:6d:6c:1c:42:18:22:05:a7:9e:
                    55:a4:c3:b4:4b:1b:bf:c6:16:ec:83:c6:56:b4:f1:
                    52:57:e2:d0:09:4c:34:04:2f:c4:9c:82:8e:cf:f5:
                    6a:1a:ae:8c:32:eb:14:e6:72:fc:e3:c3:4d:72:b5:
                    35:c3:7b:bb:43:d3:bc:0a:85:fd:7b:14:f1:63:42:
                    5c:71:f2:b7:f6:43:f9:4d:1f:a9:dc:cb:25:04:3b:
                    b6:7e:c0:8c:ab:24:f8:a3:d1:20:93:a6:fd:44:bb:
                    8d:f0:f2:1d:d8:c6:2c:26:90:a9:ac:f1:b1:0b:09:
                    74:1c:52:70:e9:d1:6e:05:51:f0:1e:99:91:70:1b:
                    49:6f:83:51:07:52:49:fd:8c:81:39:20:31:fd:78:
                    25:a3:b5:7d:ad:e6:b4:3c:5d:26:d2:9c:dd:3f:c0:
                    ac:ea:95:3d:c2:c0:69:ef:89:c4:dc:19:53:ee:6c:
                    13:07:f1:b6:bf:5b:a9:d3:f4:a4:a8:1e:2b:46:d1:
                    e3:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:93:8A:7E:FF:F8:7D:B2:55:21:2F:FD:AF:80:FC:38:B5:BF:67:27
            X509v3 Authority Key Identifier:
                keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:33:41:12:63:24:6b:36:ec:ca:9b:03:53:0b:be:e5:5d:c2:
         a9:c8:47:a4:1e:0b:d6:32:3b:89:00:8f:f4:65:32:e6:c1:16:
         ba:9b:7b:91:a6:4c:62:b8:cf:80:aa:3f:8c:29:1c:50:08:3e:
         7c:06:cd:65:81:df:f6:19:db:48:69:71:9f:c0:6b:ca:8b:75:
         21:75:4e:c5:b3:a7:4e:1b:bf:66:5c:83:56:74:ed:23:83:ec:
         48:b5:e6:3d:8d:6d:8b:d3:be:86:72:43:81:b7:97:57:96:b6:
         05:06:0a:11:a5:47:a1:c3:1a:f8:98:aa:40:14:a1:86:37:a1:
         20:61:12:b8:09:c6:39:e1:22:6f:ae:fb:a9:c0:05:c3:19:6d:
         87:d0:9b:1e:c6:0d:9a:5a:fb:e0:79:e5:a6:89:14:42:66:55:
         cd:62:55:50:80:29:a3:d1:7f:20:1e:38:85:19:42:82:76:b5:
         ba:8e:bb:0a:f3:34:60:f7:2b:df:fe:4d:fa:1b:d7:66:47:a7:
         35:3c:9e:91:06:50:bc:2b:20:fb:6b:fa:61:24:e7:52:5b:a6:
         aa:dc:f4:e8:9c:7a:a0:de:81:c4:29:ab:49:b0:58:43:e4:1b:
         04:49:84:cc:e7:98:83:33:43:80:d0:48:88:fc:25:e8:a2:33:
         07:70:b0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 13:33:31 2026 by rpki-client