Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft
File:                     dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json)
Hash identifier:          Q10MW6oWXgUyjAqtD4RdgKH+qYMdH8awyDVC9xwb3Cs=
Subject key identifier:   31:2F:24:CD:AD:35:1B:65:79:E5:5A:E1:C8:F6:17:B1:26:E8:D0:A0
Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F
Certificate issuer:       /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F
Certificate serial:       108E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft
Manifest number:          1063
Signing time:             Tue 14 Jul 2026 17:28:01 +0000
Manifest this update:     Tue 14 Jul 2026 17:28:00 +0000
Manifest next update:     Tue 21 Jul 2026 17:28:00 +0000
Files and hashes:         1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: U1LmNI42EBmOtg9sApsk8tH7uEddcb5Dl9AgZX3s+sQ=)
                          2: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: v5H4fJJFXDpxvnkvndLnuywB0eTLMDeUHDuPRNGLC1o=)
                          3: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: URL1ReTticLSrWgLn6MiNA2clbnttkHn48DN8d9RREQ=)
                          4: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: lEGaA4sdvdJB9ZdOckx6GXw78zY9nH89g3CEg6GczLQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl
                          rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 21 Jul 2026 17:27:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4238 (0x108e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F
        Validity
            Not Before: Jul 14 17:28:00 2026 GMT
            Not After : Jul 21 17:28:00 2026 GMT
        Subject: CN=6a5671a0-bb4d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:bc:ef:54:c2:ed:43:c5:b0:57:b9:a8:6b:74:
                    8a:23:c1:aa:27:7e:99:02:1e:62:90:1b:0a:f2:4e:
                    c8:fb:05:20:fe:df:d3:1b:3c:4e:46:ae:f9:af:7c:
                    76:78:3d:c9:7f:00:32:64:95:f0:8d:74:03:f6:25:
                    f5:64:d5:9a:c1:c4:73:8c:44:86:73:8f:e3:67:0a:
                    f8:fe:f7:e0:25:19:d8:4e:a9:dc:53:0b:d2:ce:ae:
                    be:39:b5:4d:8b:55:3e:96:2b:27:32:9c:ee:5d:57:
                    82:30:24:75:c2:92:0b:05:66:03:44:ff:94:8d:a2:
                    66:fd:12:4b:f1:d3:53:b4:35:fd:2b:ad:a7:83:11:
                    56:b8:26:9e:93:93:42:8f:f1:f1:ab:43:00:18:43:
                    d4:d6:50:bc:e3:64:8f:05:27:01:ec:cf:a0:b3:1b:
                    7e:cc:c3:df:4e:af:cb:b5:32:36:73:bb:b7:19:06:
                    a3:78:83:c0:8f:08:80:0b:d9:49:65:34:17:cf:80:
                    e6:b0:e2:5c:b1:98:4e:01:3c:e7:94:12:d3:b0:69:
                    8d:df:12:77:de:27:57:35:d3:94:88:2f:dd:0f:52:
                    17:7d:2b:2c:21:83:5e:f1:ac:47:5c:cd:f0:ed:17:
                    73:2a:2f:e3:f4:c3:80:24:4a:21:d1:e5:2c:17:fc:
                    25:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:2F:24:CD:AD:35:1B:65:79:E5:5A:E1:C8:F6:17:B1:26:E8:D0:A0
            X509v3 Authority Key Identifier:
                keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:87:b9:d3:9d:5a:4a:6d:49:fc:90:57:4f:66:01:67:6a:7c:
         6c:3d:36:34:17:34:d8:71:45:4e:ad:50:49:08:a5:2f:9a:4f:
         13:e6:ca:c9:29:93:2d:e6:9a:95:d5:cb:32:be:33:03:c4:42:
         b4:fa:0d:45:05:45:61:a3:ee:13:1e:c0:79:04:81:db:56:5e:
         aa:c7:7e:42:ec:7e:8b:08:19:f9:68:e7:b4:0f:84:22:ce:94:
         ce:24:a3:4a:96:4b:c7:73:66:0f:08:a1:bd:c5:5e:3c:30:c9:
         6c:ed:99:4b:3c:6a:de:81:65:da:18:3b:cd:7a:7b:84:cf:14:
         8e:86:a0:25:23:3f:f6:d1:e4:ea:09:2e:d1:a4:01:49:56:ba:
         d1:72:15:af:19:a8:d4:cb:3a:e8:1e:8e:a8:61:d7:14:88:9b:
         a7:e5:55:7c:5d:19:8d:f9:5f:19:47:52:74:b4:3b:0a:e9:68:
         a2:c9:51:1b:3c:a3:51:5e:0b:30:8a:2e:9d:e5:22:b6:b2:03:
         7d:d9:54:8f:57:38:28:1d:56:95:48:c5:8e:d1:55:8e:dd:6e:
         09:34:a8:e2:bc:6d:d8:c7:a9:9e:9c:3d:30:78:62:6c:21:65:
         d9:11:41:cf:6a:78:04:35:5e:67:03:0b:89:2b:ae:fc:71:a9:
         6d:66:e7:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 14 23:53:21 2026 by rpki-client