Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft
File:                     aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json)
Hash identifier:          wvIKgTfM46AhQGinDABHX8tH5rCKQsc3jAx2xnVl4ic=
Subject key identifier:   E8:E4:A1:FF:78:9F:6D:9C:41:49:A5:E6:25:0B:2C:41:E2:2B:04:41
Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7
Certificate issuer:       /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7
Certificate serial:       0157
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft
Manifest number:          0146
Signing time:             Tue 07 Jul 2026 06:25:06 +0000
Manifest this update:     Tue 07 Jul 2026 06:25:06 +0000
Manifest next update:     Tue 14 Jul 2026 06:25:06 +0000
Files and hashes:         1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: jZha4bpE6fjjVjCXgR+PjH8LFBkznQlM03TAqPgEBOk=)
                          2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EUtWxQAE1BFRn9M5BHJ1aea0TybMQyltaStUs+wgA48=)
                          3: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: AFwVZfcUHzwe9j0UrSqlyKnxLzWcBfDiYKBuQr8Nbjs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl
                          rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 06:25:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 343 (0x157)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7
        Validity
            Not Before: Jul  7 06:25:06 2026 GMT
            Not After : Jul 14 06:25:06 2026 GMT
        Subject: CN=6a4c9bc2-0ca2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:35:bd:f7:54:2a:66:74:6e:49:89:51:98:18:
                    99:b1:c4:9c:8a:71:90:16:ff:d3:00:17:e8:f3:64:
                    68:40:4b:a0:40:ec:18:59:5c:e2:e0:e7:60:dd:7f:
                    af:2e:d5:cc:36:51:d9:5f:c0:9a:33:3c:66:5b:c9:
                    72:b7:a6:87:1d:8b:be:b9:ad:80:3e:46:56:f1:df:
                    6c:52:1c:56:be:a7:95:86:30:a0:5c:8b:28:71:3d:
                    d7:21:9d:71:1e:2c:24:84:80:87:37:86:f6:85:86:
                    5c:f0:f5:f6:42:a8:ae:5f:4e:87:73:3b:17:93:cc:
                    1f:13:d5:b9:33:a0:97:3c:c0:65:2a:01:c6:c4:4a:
                    d2:71:9e:88:2d:61:fb:74:99:9b:b0:fb:3e:b3:f2:
                    43:00:9e:f5:67:4a:b8:14:b0:16:d1:30:be:5a:f7:
                    6c:95:c3:26:67:69:11:4f:bb:5f:92:f9:63:98:3b:
                    94:82:82:25:9d:f5:4f:fa:53:ab:2c:40:55:f1:0e:
                    d4:5d:9d:c7:de:eb:78:2b:6a:4f:8a:de:10:d9:15:
                    08:9a:cd:70:c2:a2:81:a4:23:41:43:d9:92:c2:ec:
                    61:13:3d:f8:4f:37:f2:aa:7f:1b:99:7e:88:b9:0c:
                    53:9a:25:0c:ac:25:bf:40:bb:30:3b:84:02:46:e7:
                    2f:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:E4:A1:FF:78:9F:6D:9C:41:49:A5:E6:25:0B:2C:41:E2:2B:04:41
            X509v3 Authority Key Identifier:
                keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         cf:7a:f5:25:c1:c7:31:c5:b8:2d:1a:35:55:cf:ef:a5:db:55:
         30:90:c5:8a:47:1a:48:62:91:f9:b8:42:fb:82:be:a9:92:b3:
         80:46:1e:78:b5:ac:41:83:49:79:2e:e6:f3:d6:6d:1e:d1:23:
         91:0d:71:47:dc:e2:d0:b1:9d:e2:e4:3f:de:7c:59:37:d5:85:
         10:8b:e6:28:0e:a8:ea:ce:d4:ea:83:6f:1a:71:7a:37:a5:04:
         5b:26:0d:6c:ed:09:65:e0:79:14:ea:d6:cd:f2:20:50:ff:81:
         48:c8:40:0b:49:52:8b:66:42:e4:e7:84:19:8c:10:56:c6:24:
         fa:67:22:cc:c4:9b:0c:72:4b:62:f8:ba:c3:e4:84:eb:51:dd:
         6b:d2:df:81:92:ac:0b:84:e6:33:f0:ed:59:e6:c0:f7:aa:c3:
         1f:8f:00:d7:10:66:12:22:39:93:10:b1:76:19:6d:da:a4:6c:
         e9:43:8a:34:b5:b4:25:9d:ae:47:af:f1:02:33:11:ee:04:57:
         47:48:c4:14:ac:5d:54:be:7c:80:42:01:1b:d6:27:36:94:21:
         d3:12:52:30:e7:9b:3d:19:ea:5c:bb:d4:14:93:40:af:a0:7a:
         94:60:55:87:f1:22:2e:83:fc:76:c2:59:2d:57:c2:e5:1e:e1:
         31:b4:21:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 23:58:33 2026 by rpki-client