Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft
File:                     489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json)
Hash identifier:          j+rieb8TPneFmweiQMzg9uw0j7dYq4JqGivmc0xCFtA=
Subject key identifier:   13:04:D7:25:AC:61:D5:9C:52:14:ED:3C:AD:22:3E:FE:1D:B7:85:C9
Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B
Certificate issuer:       /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B
Certificate serial:       03B8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft
Manifest number:          039E
Signing time:             Fri 17 Jul 2026 01:24:12 +0000
Manifest this update:     Fri 17 Jul 2026 01:24:12 +0000
Manifest next update:     Fri 24 Jul 2026 01:24:12 +0000
Files and hashes:         1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: YV+7gz5z11UtTvs0MPrj/WK3gGhKWcVtATj2ZpUjTys=)
                          2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: WIB+DaMR2Ho4TV5ghi0y5dK6Bf7NomVsRIG38qN6/F0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl
                          rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:24:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 952 (0x3b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B
        Validity
            Not Before: Jul 17 01:24:12 2026 GMT
            Not After : Jul 24 01:24:12 2026 GMT
        Subject: CN=6a59843c-7a7a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:98:35:c0:98:06:35:bc:64:89:78:1b:60:18:
                    d1:21:23:90:dc:fb:65:66:1e:5e:ce:78:ab:cc:e2:
                    2d:ae:d8:5f:ad:a7:00:51:99:e9:ef:69:be:97:48:
                    76:10:90:6e:8f:82:71:86:3c:ce:cf:3b:e9:b3:51:
                    7d:10:3c:e7:0c:83:9d:55:29:cc:24:c8:aa:ce:90:
                    81:b6:d9:c4:70:e5:e6:26:32:cd:77:e6:90:29:1a:
                    bf:df:41:8a:99:9a:a4:8a:44:08:73:4f:31:f8:7c:
                    14:41:35:d8:48:69:c1:00:a0:91:f5:0b:8c:f7:56:
                    e0:2b:64:cd:30:f7:66:52:05:97:76:08:7f:db:7b:
                    3d:cb:80:77:29:61:42:3a:0e:ac:09:09:ff:79:3b:
                    c4:a7:d0:7f:60:ea:c3:37:cd:f4:9c:ec:9e:71:d2:
                    a6:f7:99:c7:3f:cf:13:73:29:31:e5:c4:ff:16:fc:
                    e7:af:a0:69:6c:9d:7d:25:af:38:5d:a2:dc:ec:c6:
                    12:16:4c:8e:6b:86:a3:46:7a:dd:a7:05:7f:fb:b5:
                    17:c8:68:ee:4b:bd:34:70:bf:e0:a2:ea:6f:f3:09:
                    10:a0:2e:b3:c8:93:fb:3e:e1:b1:b5:43:fa:e0:a5:
                    d1:e9:62:56:6a:ea:28:2b:5b:1c:2a:d4:ed:27:3b:
                    c4:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:04:D7:25:AC:61:D5:9C:52:14:ED:3C:AD:22:3E:FE:1D:B7:85:C9
            X509v3 Authority Key Identifier:
                keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:e3:46:1b:a4:13:2d:0f:33:d6:08:9d:cc:0b:77:fb:27:f5:
         ca:f3:f0:c6:c1:89:00:b3:21:0e:a1:f1:fc:39:c4:70:84:d7:
         1c:91:a0:5b:49:67:80:69:2e:10:0d:6a:3a:a2:f2:ea:41:14:
         30:27:72:71:63:5e:e9:4d:dc:30:86:82:fc:e4:65:ee:85:32:
         42:70:12:0e:e0:d2:31:be:d0:aa:1a:da:e8:11:0b:61:62:a0:
         32:fa:55:90:6b:d7:11:9e:ad:74:d1:56:48:68:3d:92:2c:28:
         b7:5a:0c:8a:6d:11:a2:ba:52:15:75:b1:f8:d3:d1:43:b5:32:
         ab:79:5d:94:0a:c2:66:60:18:0c:a6:bc:45:b2:ae:6e:9a:53:
         51:67:5b:1a:f2:f2:dd:e1:38:99:9b:cf:c2:d5:14:ca:5f:df:
         65:0e:fc:67:ef:d3:a8:1c:ba:b5:c0:3a:b4:79:29:27:d0:7c:
         61:15:91:0c:74:1d:f3:20:d6:e9:fe:26:38:38:f2:e0:a2:20:
         8e:e0:84:87:18:b9:64:43:85:3d:c2:52:93:25:73:5c:7e:8f:
         54:92:7c:89:b1:1c:1e:4c:9b:ff:80:48:0f:57:63:dd:29:b9:
         be:37:41:c0:ae:80:14:4d:b7:66:14:dd:d9:b6:9b:68:aa:1a:
         76:67:76:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:19:08 2026 by rpki-client