Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft
File:                     opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json)
Hash identifier:          ir38zHiTRI8y0Mn0p9asEBCcEpDXvIArgx9w2sgdXAk=
Subject key identifier:   3E:DC:3C:4F:1F:6A:F6:5A:4E:6A:1C:97:76:8C:99:73:2B:D8:E1:9F
Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD
Certificate issuer:       /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD
Certificate serial:       07F5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft
Manifest number:          07E7
Signing time:             Thu 02 Jul 2026 21:37:04 +0000
Manifest this update:     Thu 02 Jul 2026 21:37:03 +0000
Manifest next update:     Thu 09 Jul 2026 21:37:03 +0000
Files and hashes:         1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: O9QEc9Z4t0wGlt/KuklRCB+wNUd0dM5A4qw0lCXlULw=)
                          2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: wqignbbOOBT+SZZkFeJmJ04WZ59PELTSk8fHzU8aK4s=)
                          3: 95FD50623E6511F1AEA6C186CD833773.roa (hash: l7NMwYErPFX+9MH6lT3nSuiEqkaf/DGpFJaT5BlukYk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl
                          rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 21:37:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2037 (0x7f5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD
        Validity
            Not Before: Jul  2 21:37:03 2026 GMT
            Not After : Jul  9 21:37:03 2026 GMT
        Subject: CN=6a46da00-d558
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:96:6d:3a:01:23:53:dd:43:b0:fe:3a:6b:b5:
                    dc:7e:cc:f3:15:cd:64:d6:53:c7:cb:13:a9:ea:31:
                    13:86:61:a1:c6:79:6d:5c:e3:82:73:71:f5:ea:34:
                    f4:ce:75:55:40:80:64:da:7a:0d:bf:05:97:18:7f:
                    12:13:20:50:93:76:bc:17:c6:d0:a2:a4:51:63:34:
                    b9:ba:b9:c7:f8:97:81:c6:f7:93:6b:1f:d7:5f:e9:
                    1b:63:00:c5:4c:35:bc:76:84:ec:ce:43:49:a7:a6:
                    51:30:67:0b:d9:c5:7e:22:f3:48:82:ee:96:a8:30:
                    fa:c1:c4:99:cb:4d:ea:3d:2f:0d:b6:03:eb:2e:0a:
                    5b:62:f0:f9:c3:95:2e:eb:5e:65:29:2b:e4:ba:17:
                    69:90:9a:e6:59:16:36:5b:af:48:e7:93:a5:05:f2:
                    73:50:f5:3f:78:69:e3:67:70:7e:47:40:1f:bb:39:
                    cf:35:16:d9:7e:74:15:93:25:84:e3:9d:9f:05:74:
                    88:15:0d:70:42:27:16:07:e9:39:fe:bf:8c:5a:24:
                    47:91:41:a4:7a:55:7e:ee:18:99:5f:1c:d9:fa:62:
                    0c:1f:c4:52:bc:0f:72:ac:f5:5b:c5:24:5a:ce:4e:
                    96:3b:a3:68:a1:8c:74:6b:3a:73:1c:ef:a8:1c:24:
                    b0:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:DC:3C:4F:1F:6A:F6:5A:4E:6A:1C:97:76:8C:99:73:2B:D8:E1:9F
            X509v3 Authority Key Identifier:
                keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:dd:40:c8:70:7d:f2:e0:3c:31:02:c5:0f:fd:c3:2a:55:c7:
         33:5e:56:67:5a:a9:0f:6b:eb:53:45:85:40:81:30:8f:17:a9:
         32:21:fc:f3:99:fe:9f:f9:f8:df:32:fe:5c:ab:3e:e9:f9:87:
         3c:ea:c9:75:a6:75:f2:5a:78:b4:9e:7e:d3:ac:03:2e:81:f8:
         02:4d:6c:3a:5f:40:a4:34:6d:83:dd:56:d4:d2:e0:62:28:2d:
         49:d6:e7:bc:81:eb:b8:e9:bc:97:f9:61:9a:d8:9c:05:30:e7:
         ac:b1:f6:7c:0d:2c:f7:7a:7c:15:47:f3:31:c4:0c:b5:aa:e5:
         95:0b:8f:46:09:ee:8a:6d:31:90:89:85:d5:0e:09:7f:29:00:
         3d:3e:34:9d:71:9c:9b:65:e3:2c:60:03:e1:a6:42:91:69:88:
         37:1e:be:f4:d6:14:bb:21:49:b9:6b:3d:b6:c7:2e:3c:7c:26:
         29:8d:1b:9b:03:4f:82:17:97:59:0b:4a:de:de:6e:ec:46:5c:
         f9:b0:ac:7a:91:23:5e:df:49:a4:22:65:ed:52:ed:3d:03:36:
         1c:82:6a:f0:84:ba:07:ce:21:fa:c5:7a:10:3c:2e:20:8c:92:
         77:c1:25:b4:20:e8:80:ba:4e:05:29:8e:e5:b3:cb:da:8a:c4:
         a9:cf:f6:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 16:08:15 2026 by rpki-client