Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft
File:                     0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json)
Hash identifier:          TQ61FYPyw8L5uey8nmvN1t7rTKhAQ1v3qiMcazyfKzA=
Subject key identifier:   39:1B:1E:71:4F:1D:28:7D:83:E6:48:4C:A4:E6:03:18:AE:04:ED:48
Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10
Certificate issuer:       /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10
Certificate serial:       0155
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft
Manifest number:          0145
Signing time:             Fri 03 Jul 2026 06:11:39 +0000
Manifest this update:     Fri 03 Jul 2026 06:11:39 +0000
Manifest next update:     Fri 10 Jul 2026 06:11:39 +0000
Files and hashes:         1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: lbMUYbDw3xFPb5u6bj83Cz8ERa/FxC0kGYPnNbIqzSc=)
                          2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: RSWSsqKVGFqnc5MjQ5V0wfdqY1cc/uC9LzB1g38vtcs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl
                          rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 06:11:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 341 (0x155)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10
        Validity
            Not Before: Jul  3 06:11:39 2026 GMT
            Not After : Jul 10 06:11:39 2026 GMT
        Subject: CN=6a47529b-8a8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:65:38:f8:f0:2a:f3:c0:e8:9f:fc:cd:81:14:
                    28:79:1f:20:52:cc:c0:de:86:fe:62:11:5e:74:cb:
                    5c:5c:f7:bf:58:ee:31:ec:03:1e:15:e4:31:71:ce:
                    5d:b5:db:62:d3:08:aa:42:90:8d:d2:9f:a2:f9:79:
                    60:e7:29:17:22:79:d7:23:0d:1d:16:71:89:06:f4:
                    e0:ee:97:a0:72:77:86:98:a9:7f:4c:da:3c:7f:8c:
                    e7:a3:43:6e:19:b3:53:07:37:84:52:a5:64:12:25:
                    32:1a:f7:46:fb:7d:9c:b2:da:0f:93:cd:c2:d6:9a:
                    88:20:ad:15:2f:2e:ca:bb:5d:5a:0e:79:b1:c3:8c:
                    ad:7c:83:49:f2:1c:84:40:be:1a:a6:cc:dc:9a:a2:
                    21:b1:1a:e6:63:5b:9d:08:99:ba:42:6b:b2:0d:cc:
                    7d:cf:64:4a:38:85:a0:26:aa:4f:4b:7d:3a:23:b1:
                    31:97:93:ce:19:bc:5c:b0:4d:0a:00:7c:ce:33:5d:
                    b5:2b:d0:77:1e:cf:e7:0f:b2:84:d7:be:5f:f9:a6:
                    6b:8f:8e:f9:23:37:5f:48:47:64:92:0c:e7:aa:79:
                    fb:34:1b:0e:fe:e6:43:5c:6f:3c:e8:3f:01:37:25:
                    3b:c2:11:9d:f4:c5:43:31:90:d1:61:b0:8e:17:b9:
                    0a:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:1B:1E:71:4F:1D:28:7D:83:E6:48:4C:A4:E6:03:18:AE:04:ED:48
            X509v3 Authority Key Identifier:
                keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:7b:8d:8f:ca:08:15:9d:46:a9:7e:1e:e7:99:57:7a:6b:33:
         7e:1f:52:5e:48:3d:3f:9c:41:56:0c:5a:58:2c:c7:eb:40:41:
         b5:03:d3:58:ff:76:f1:52:ff:e9:30:39:48:4d:e3:a7:4e:d6:
         41:d9:26:06:d3:d9:97:3f:8c:b2:77:2e:80:d0:91:ca:ff:7f:
         98:c9:1a:42:c6:a8:18:43:17:3d:cd:63:27:d5:64:fd:ab:61:
         e3:ba:5c:24:18:07:bc:c0:54:83:14:20:3f:7b:60:0d:45:04:
         b3:ca:7c:12:6e:6b:fb:8b:6a:7f:ef:3d:42:d6:7c:e1:a1:c2:
         85:34:3a:0e:2e:36:90:44:0c:c7:74:e0:97:2d:93:64:01:4e:
         52:65:fb:ae:4e:5e:4f:8e:f8:f9:0c:1f:7a:21:82:da:a6:70:
         26:80:ac:9e:96:c5:ba:e5:b7:b6:de:2f:ac:63:ea:71:55:7d:
         76:f5:e1:a3:f6:4a:35:95:73:0f:55:82:36:1c:85:08:7b:00:
         f8:ac:45:9a:4a:bf:11:a9:85:43:73:d4:ba:7d:74:b7:a9:37:
         24:7c:06:ea:13:b3:7a:e7:bc:87:e5:77:99:fb:59:ca:67:25:
         77:2b:ea:b8:d6:f6:0c:5b:06:12:a1:38:ca:01:e6:67:10:a2:
         c1:54:63:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:52:28 2026 by rpki-client