Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft
File:                     I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json)
Hash identifier:          uneME0TnVHgi/h0xJ08iuDfKCR5mbJogPtY5PjT80W0=
Subject key identifier:   C6:B6:52:B1:0E:23:E5:DB:42:CB:EF:31:FF:E0:77:0D:31:12:60:D6
Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E
Certificate issuer:       /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
Certificate serial:       36A3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft
Manifest number:          3619
Signing time:             Sun 12 Jul 2026 14:58:54 +0000
Manifest this update:     Sun 12 Jul 2026 14:58:53 +0000
Manifest next update:     Sun 19 Jul 2026 14:58:53 +0000
Files and hashes:         1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: Qe5gYAF4Dx803hZpjhiZL89yPyURqJpXE1p70k4/caA=)
                          2: 14C7EB3E4A0311F188B4A0B8BF833773.roa (hash: uuHcdBkxccty/weIenIOJopCypBlJDPkgRjWEztGkA4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl
                          rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 14:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13987 (0x36a3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E
        Validity
            Not Before: Jul 12 14:58:53 2026 GMT
            Not After : Jul 19 14:58:53 2026 GMT
        Subject: CN=6a53abae-4ad7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:9a:a6:3e:80:d1:9a:21:7e:c5:ee:f0:f4:86:
                    4e:ff:5a:a9:56:69:68:7e:1a:e8:68:a3:3e:d4:18:
                    dc:2f:d6:d3:8c:ce:21:ec:d0:22:5e:70:54:7e:a3:
                    cb:b7:17:90:1b:55:88:41:80:1c:12:3a:a0:6d:be:
                    97:f9:ec:40:38:e6:0e:54:fc:8d:93:06:81:69:57:
                    85:d5:5b:24:a3:c2:cc:55:dd:d0:d6:a6:8f:84:55:
                    62:ba:bf:79:99:0d:56:c5:1f:8c:99:ac:c2:fa:96:
                    ca:97:64:1a:30:82:4f:2f:91:4f:11:f1:f8:06:2e:
                    5b:df:c0:47:0e:4f:81:33:0f:6a:77:cf:3b:21:61:
                    fd:66:c2:65:f0:23:4e:04:d8:fb:61:64:ef:b2:67:
                    ff:17:7d:cf:c6:45:46:94:a0:d3:51:c6:56:2e:a2:
                    cd:d8:90:e1:94:8c:fe:36:02:13:4d:86:13:8c:b6:
                    00:98:30:f5:58:b2:51:c6:b2:28:73:77:a6:fe:95:
                    a2:14:82:4e:4d:22:e6:06:26:3e:52:6e:fc:43:0d:
                    e9:d1:c2:40:28:58:13:b5:19:0a:d4:92:a2:4d:46:
                    49:ef:d2:a2:7f:49:e3:c5:8a:ed:10:8a:0b:52:9c:
                    66:53:c8:b9:79:01:a3:88:9a:5b:92:81:ce:f6:4f:
                    75:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:B6:52:B1:0E:23:E5:DB:42:CB:EF:31:FF:E0:77:0D:31:12:60:D6
            X509v3 Authority Key Identifier:
                keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:c0:53:19:d8:ea:af:94:12:29:b4:8a:eb:cc:d3:08:c1:d4:
         70:d8:92:aa:e4:77:79:de:43:f8:4a:3c:27:0d:3d:23:66:6b:
         c9:4c:5d:ee:f9:b5:e8:0c:68:8d:a8:f8:db:28:ea:d9:94:58:
         23:c6:dd:d7:ee:e0:1f:cb:06:77:45:e6:e2:76:06:f7:85:d3:
         ab:3b:1e:61:9b:38:4d:ed:f3:10:0a:b4:97:05:90:52:4c:ca:
         d9:3c:bf:ad:d2:c8:88:81:59:da:6a:13:55:23:be:94:41:2a:
         94:41:7a:25:2f:0f:41:b9:96:d4:ec:bb:39:ed:a5:1c:aa:78:
         85:c8:e1:39:2a:68:16:81:04:6d:da:7c:42:0b:15:7e:fd:fa:
         60:1a:24:e7:05:fb:05:2d:84:95:69:f7:1e:18:5b:e4:04:9d:
         00:f4:00:4a:f2:15:27:00:61:9a:0b:b7:ba:37:18:a2:aa:ab:
         12:fa:f1:7c:7d:28:16:48:7d:c9:6e:c2:c0:71:3a:ed:b1:88:
         fe:1d:7e:55:41:6b:f5:3c:b2:71:5b:93:47:51:16:ff:d7:ae:
         56:63:6c:0d:e6:22:07:e7:f5:bc:93:b4:53:4f:27:8c:33:bf:
         be:b8:74:79:1f:33:57:d7:1c:6a:ee:b0:3c:2c:a9:78:b1:bd:
         ad:43:81:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 14:49:01 2026 by rpki-client