Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
File:                     t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft (raw, json)
Hash identifier:          fLCJxg3FUY+7cv/qRSOdx0lXzAiqg7BdfS3tC7BBtWo=
Subject key identifier:   C7:FF:C5:7D:7E:3C:9F:61:A2:FF:78:C0:05:2D:D0:E2:B2:2A:22:F2
Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21
Certificate issuer:       /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21
Certificate serial:       088C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
Manifest number:          0870
Signing time:             Thu 16 Jul 2026 21:09:08 +0000
Manifest this update:     Thu 16 Jul 2026 21:09:07 +0000
Manifest next update:     Thu 23 Jul 2026 21:09:07 +0000
Files and hashes:         1: t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl (hash: 6hyRy+ZGdOdFPM416oz/Zi2l98N7LS9S2McIZNyred4=)
                          2: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (hash: sI6tR4a2HYfJurDOPfrB4Umd60Gjw1lCZTz+9gBI5MI=)
                          3: CD284E600CEE11EB88376B5BC4F9AE02.roa (hash: 816YLoIvH9Oaj07rOnlACoUv6ymscAs9lYY/BFhZ/Lc=)
                          4: B811CFA2BF7811EE80314533C4F9AE02.roa (hash: 3fw6mHPeADEWBETyQZxIVf42hLtCqb+tAcCFeXIzWNM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl
                          rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 21:09:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2188 (0x88c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919EE77, serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21
        Validity
            Not Before: Jul 16 21:09:07 2026 GMT
            Not After : Jul 23 21:09:07 2026 GMT
        Subject: CN=6a594874-b077
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:b5:c8:b2:98:e7:14:f2:39:ce:07:a0:c8:47:
                    bd:ed:d9:62:70:2f:cc:ce:72:ed:39:01:b6:1d:21:
                    3d:5c:c7:2c:10:87:35:bd:e8:59:95:3c:05:d4:6f:
                    20:40:68:3e:6a:14:b5:92:d8:40:57:b9:75:38:34:
                    2a:03:d2:96:f2:35:9e:82:76:88:9e:46:b3:a7:2b:
                    c1:94:8a:76:64:f6:c9:b3:82:f0:dd:00:88:c7:49:
                    27:9f:22:8a:72:af:d9:7a:34:2b:99:72:98:10:46:
                    a1:ec:c8:fe:6f:09:19:8e:e1:4d:2d:96:b0:62:ba:
                    ce:4e:af:a3:b0:6c:a5:9a:15:58:14:df:2c:3c:95:
                    56:47:bc:e0:9b:21:12:9d:e7:06:0a:0b:73:b8:e5:
                    83:cc:c2:0f:ac:1f:70:dc:01:2a:5c:0b:8b:c1:f0:
                    f5:59:fb:f3:20:1c:66:81:bb:22:50:d6:2f:20:e1:
                    e0:c1:15:53:fd:94:f7:24:cb:b1:31:de:e8:f4:fc:
                    76:33:e6:92:8b:b8:47:46:3d:e9:41:ae:c2:9f:35:
                    5b:d4:cc:cc:38:11:12:6c:4d:04:bf:15:da:c5:5c:
                    e9:06:9c:68:47:d2:20:ab:ab:ec:1c:16:5b:18:1d:
                    3a:c6:e7:4a:02:07:7b:7f:93:c7:e0:48:ce:78:22:
                    d5:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:FF:C5:7D:7E:3C:9F:61:A2:FF:78:C0:05:2D:D0:E2:B2:2A:22:F2
            X509v3 Authority Key Identifier:
                keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:ad:54:3d:95:d2:f3:5d:65:07:72:2e:9f:16:27:cd:df:13:
         29:79:8f:04:bf:28:a7:07:af:da:5f:2d:55:6e:8c:74:1f:42:
         ad:e9:cb:bd:7c:9d:14:14:60:e8:19:eb:24:1b:72:05:98:e0:
         ee:b5:3f:a9:1f:1d:23:bb:71:28:6b:6a:46:b2:2f:7b:54:17:
         38:db:18:ca:9e:6a:21:78:5a:3c:05:fa:b6:2f:45:29:c4:0e:
         ee:f3:eb:09:b1:75:66:d3:a8:8a:d8:70:56:0e:4e:e2:35:e0:
         db:55:4a:4a:68:25:f4:4a:36:98:b8:cd:1f:20:5f:e3:be:95:
         4b:e0:47:13:ab:5d:10:9a:9d:6a:bc:cd:e3:34:20:e1:48:bc:
         e9:00:10:fb:40:ec:fb:07:52:77:b0:01:78:34:ea:86:9f:98:
         df:e5:62:7d:c1:d1:d7:9f:7b:60:df:34:a6:e9:be:77:61:bb:
         13:8f:31:1c:6f:cc:9e:2c:71:33:29:6b:ff:64:a5:4e:73:e7:
         23:fc:70:65:0c:27:a8:bb:8c:ec:59:77:30:0a:40:49:dd:98:
         27:d0:f5:7e:85:eb:6e:7f:01:38:16:34:60:d6:81:2c:22:d1:
         b8:80:a3:37:8e:cc:3c:db:78:f5:91:f2:b8:6d:c5:c9:96:03:
         4e:c3:54:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:16:56 2026 by rpki-client