Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
File:                     n095sMMg0u--SKvL-paoRdZHlu8.mft (raw, json)
Hash identifier:          EPD9FB5m0dfpJvN4iJ6LpmljztMEHMQfpF0ozmP0KWM=
Subject key identifier:   E2:E3:E2:63:CE:F4:69:E5:0E:7C:51:CA:4D:71:D4:B1:52:D3:9C:A0
Authority key identifier: 9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF
Certificate issuer:       /CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF
Certificate serial:       02A5
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
Manifest number:          02A5
Signing time:             Fri 17 Jul 2026 01:37:34 +0000
Manifest this update:     Fri 17 Jul 2026 01:37:33 +0000
Manifest next update:     Fri 24 Jul 2026 01:37:33 +0000
Files and hashes:         1: n095sMMg0u--SKvL-paoRdZHlu8.crl (hash: 7HTzMnbHSwHA4zBG+/yGLWhR3yCZ1dOES17zh+oQleM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl
                          rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:37:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 677 (0x2a5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A78A7, serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF
        Validity
            Not Before: Jul 17 01:37:33 2026 GMT
            Not After : Jul 24 01:37:33 2026 GMT
        Subject: CN=6a59875e-3bb6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:7f:ed:7a:dc:3b:e1:69:0e:8f:41:a3:a6:ac:
                    e4:c1:78:fd:d7:3b:76:69:21:23:36:ef:56:b0:c4:
                    f7:2b:0a:59:93:6d:2e:5c:65:60:30:00:8d:d5:30:
                    f3:f1:28:3c:88:a0:40:3a:97:b3:eb:b8:4d:c5:89:
                    71:f8:b0:fe:24:55:29:be:ee:64:ac:1d:1e:72:5b:
                    a3:48:f8:88:2b:dc:87:b3:26:02:cd:42:cb:80:24:
                    47:a9:84:eb:d1:ad:98:b8:c7:29:7d:36:cf:75:53:
                    63:3d:ad:4e:b1:59:16:01:0d:89:e0:1b:db:9d:03:
                    c6:ce:12:bc:8a:51:7f:18:7f:86:fb:e9:e3:7b:41:
                    2c:e0:a7:74:a3:c5:06:79:25:55:d7:e7:38:26:27:
                    1a:bf:ab:fb:f7:c8:09:2a:4d:4e:72:2c:ad:b1:c4:
                    47:59:d9:d3:49:fc:76:79:77:23:58:5b:11:3c:b5:
                    a2:c6:fc:4b:87:90:ef:e2:bc:46:7c:0e:d0:7d:f2:
                    ba:64:34:29:27:1f:a1:6d:f5:b5:69:88:5b:78:56:
                    ed:15:33:ca:02:a6:4c:1d:58:d3:28:a5:be:ab:3f:
                    ba:8f:27:b1:1d:d4:84:74:b6:64:49:c4:ce:a8:1b:
                    59:0d:11:46:64:46:2d:62:48:a2:db:8d:a8:43:ff:
                    8e:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:E3:E2:63:CE:F4:69:E5:0E:7C:51:CA:4D:71:D4:B1:52:D3:9C:A0
            X509v3 Authority Key Identifier:
                keyid:9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:03:9e:cb:3d:50:c9:d4:70:0c:fc:73:79:ea:74:5c:32:2b:
         81:27:df:8f:1d:9b:16:f6:58:e4:d8:1a:46:de:6f:1a:22:aa:
         f1:83:da:f2:61:e3:fc:76:7a:bf:40:ce:c8:b4:ad:34:c8:f6:
         8b:cb:90:55:85:94:a0:3f:c3:3c:6f:d4:02:16:9b:3e:ed:bc:
         4a:1e:30:87:8c:8b:97:7d:77:e0:bd:7a:28:61:bc:d8:ca:ea:
         a0:b1:bc:d9:a4:57:b6:01:74:ca:50:7a:09:e1:d4:df:47:2f:
         d8:a7:0c:ec:c6:31:d8:39:4c:a6:67:77:43:32:f4:5c:c3:e9:
         a6:ed:64:ce:a7:f7:f3:43:28:c4:2e:8e:a6:4c:c6:2a:77:0e:
         e2:a6:de:2b:0d:33:5d:d6:79:41:9d:ac:1d:48:34:23:f3:0d:
         b5:d2:9e:62:34:3c:19:e7:09:6c:2c:97:68:d0:72:aa:0d:16:
         2c:20:1b:62:22:d1:73:4b:67:cb:4f:87:2d:0f:78:01:22:a3:
         64:44:61:cd:43:70:7d:00:c4:b3:bb:09:5d:f3:b0:aa:a4:1b:
         b3:b5:29:09:69:bf:a3:be:70:68:f3:65:1f:99:93:15:44:cd:
         2e:8d:14:e8:e1:16:e9:66:2d:40:45:a8:34:89:5d:8f:26:d1:
         0c:ea:b0:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:35 2026 by rpki-client