Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
File:                     O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json)
Hash identifier:          kivJR6IYFwePufDAfDNy+IdEt3NHCfsorYSVX6yMQPY=
Subject key identifier:   95:5F:71:BF:D2:15:68:F1:34:9B:33:A8:31:D7:9E:F8:BF:81:8F:A4
Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1
Certificate issuer:       /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1
Certificate serial:       037E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
Manifest number:          0376
Signing time:             Fri 03 Jul 2026 01:16:42 +0000
Manifest this update:     Fri 03 Jul 2026 01:16:41 +0000
Manifest next update:     Fri 10 Jul 2026 01:16:41 +0000
Files and hashes:         1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: 4N4pQQwz1cmdHrVMyO9MUkDeMwKs0dxzbIKCj0aLrzk=)
                          2: C78C216A070211EDB5178252C4F9AE02.roa (hash: fyu14Jx6k1oTAKIdxEeJ8rrmDDiNJP7D4BIKAgsLJek=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl
                          rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 01:16:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 894 (0x37e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1
        Validity
            Not Before: Jul  3 01:16:41 2026 GMT
            Not After : Jul 10 01:16:41 2026 GMT
        Subject: CN=6a470d7a-b4a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:c2:14:a6:2d:7e:da:60:97:cf:1c:5c:c4:70:
                    7c:05:d1:ac:b5:ee:38:ac:5a:ee:82:4a:48:7b:40:
                    b3:3f:dd:21:a0:d2:e8:18:ba:17:ab:64:ac:c0:17:
                    5c:3a:f7:ef:0b:70:b0:24:40:73:3d:a6:a4:0c:c5:
                    a5:57:ec:e3:11:b9:3f:2e:b7:e6:14:74:cb:c4:e8:
                    99:dd:79:42:dc:1c:29:91:47:c7:87:f9:82:76:c9:
                    f9:13:ca:43:37:4a:bb:20:85:aa:95:1b:df:0d:af:
                    ad:ea:58:7d:87:2a:ab:e6:52:7e:4f:13:e4:3c:fc:
                    31:0d:c1:4e:11:34:0d:b5:02:13:7e:45:cf:f1:74:
                    e0:50:6f:1e:34:50:6b:76:9e:98:64:38:d5:eb:ae:
                    fe:83:3d:3d:00:68:76:85:50:91:b6:9a:1a:c6:ab:
                    61:d5:f0:86:e2:e6:50:ea:1b:e4:f0:af:fe:4f:d1:
                    23:62:f9:c9:ec:27:f2:41:48:32:6e:98:f1:4e:00:
                    4c:4f:3b:e0:d9:7e:10:a8:24:a0:f4:a6:1e:b6:f1:
                    37:86:b0:ca:68:74:87:76:16:4a:9d:75:e3:2d:91:
                    09:ec:63:86:b1:33:d7:b1:35:c5:49:15:2b:07:88:
                    92:92:5d:b6:a5:ea:2d:25:13:3d:96:02:87:22:b9:
                    22:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:5F:71:BF:D2:15:68:F1:34:9B:33:A8:31:D7:9E:F8:BF:81:8F:A4
            X509v3 Authority Key Identifier:
                keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:a4:bd:66:d5:71:65:17:ad:09:2d:2c:46:3c:5d:66:d9:1f:
         f6:82:59:4e:52:58:58:31:86:89:1c:4e:fe:46:0c:a9:72:fa:
         4a:6e:a3:46:1c:d0:d3:90:91:ef:3d:1c:f1:3c:04:8e:d4:a7:
         c2:96:c0:99:ab:01:7b:d0:9d:66:5a:5b:00:0d:e0:50:92:f0:
         34:a7:3c:d6:83:41:3e:c9:5f:6b:22:88:55:ba:1e:72:bc:70:
         45:ec:9d:d9:f5:b4:f8:38:8a:d3:bc:4c:b0:9c:8a:93:7b:72:
         bf:c4:5d:33:83:9f:1f:4a:ae:f3:83:ae:5b:0e:a4:bc:4e:e8:
         3a:a8:32:99:2c:14:ec:b1:0a:2b:10:f7:7d:85:c3:9e:5d:be:
         e5:2e:60:17:64:dc:14:58:0e:e5:44:96:9c:15:c3:57:bb:76:
         54:40:d3:37:b6:d6:7b:6a:45:e9:87:34:22:1d:89:65:a3:27:
         2b:e2:cd:b3:72:59:fc:14:82:25:80:66:a5:c7:23:4e:10:65:
         a6:a7:d7:13:48:9a:70:cd:5b:c1:24:15:df:34:ef:f6:17:f5:
         a6:37:29:9c:f8:22:c0:cb:07:45:dc:1a:d9:a1:83:de:ee:72:
         54:d4:77:f9:89:94:82:f1:b9:ad:54:a8:62:29:76:3a:20:7f:
         67:4f:4d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:47:27 2026 by rpki-client