Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft
File:                     jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft (raw, json)
Hash identifier:          ZFa9HDWClljOHLg4t+6FMMzX6nGRd24pvQWt4CMrHoQ=
Subject key identifier:   98:69:12:F1:E2:56:B1:59:9C:09:99:21:FC:4D:29:02:66:BE:B5:9A
Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62
Certificate issuer:       /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162
Certificate serial:       04DB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft
Manifest number:          04C6
Signing time:             Fri 17 Jul 2026 00:25:48 +0000
Manifest this update:     Fri 17 Jul 2026 00:25:48 +0000
Manifest next update:     Fri 24 Jul 2026 00:25:48 +0000
Files and hashes:         1: jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl (hash: 31pee2b3TWjZ6RaMZntSRoV3R9JNd0PUo3QH8blFiag=)
                          2: D9470BFE7DC811ECB84BD174C4F9AE02.roa (hash: JfIAFCu2MeeRSwrWxSJdpgjG5VN2LpU2/LUPIGp49hg=)
                          3: 84F58DCA7DCB11EC99806E25C4F9AE02.roa (hash: swlQZjAkWhXNW6074Sbt7r3gkxAfSn83J/kMG93FCcA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl
                          rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 00:25:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1243 (0x4db)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B8265, serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162
        Validity
            Not Before: Jul 17 00:25:48 2026 GMT
            Not After : Jul 24 00:25:48 2026 GMT
        Subject: CN=6a59768c-c1e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:35:0a:3a:e0:7d:d7:63:94:f1:9f:48:d4:b4:
                    58:d7:7f:2b:40:e6:34:40:a3:eb:3d:3f:7c:af:6d:
                    af:18:5b:80:28:10:cb:89:33:36:71:9d:ca:f1:a8:
                    05:42:8d:85:81:c3:d2:d8:c4:73:87:42:c5:22:66:
                    3f:95:3f:71:5c:dd:c7:64:10:83:f3:e2:fb:2c:0f:
                    30:b4:4b:24:63:36:c3:09:13:31:33:4e:48:48:c8:
                    54:9e:bc:3d:0d:75:92:14:b9:a3:07:48:49:84:5b:
                    e6:ad:69:6d:81:da:a9:74:08:5e:b8:d6:6c:7b:31:
                    02:84:4d:b6:19:b7:86:09:bc:2b:5e:2a:41:bd:54:
                    5f:69:65:e9:2a:0b:56:30:c1:cb:ef:16:a8:bd:c8:
                    0a:c7:dd:1f:1a:bf:76:48:89:48:83:c4:c3:99:38:
                    a7:b2:cc:50:54:8d:8a:4e:b1:a9:da:f6:ac:65:50:
                    57:df:70:26:55:a4:e4:f9:ff:40:ac:c8:4a:04:91:
                    c1:9d:6e:0d:bc:52:b1:be:21:1a:59:3b:f3:b9:d7:
                    03:9b:67:06:a9:cf:77:ed:24:1f:1c:11:3b:34:4e:
                    a9:5b:4b:1d:8d:3e:d3:5e:7d:56:41:02:6b:a0:a2:
                    a7:b8:1c:1d:ac:fa:a1:61:5e:30:d8:3c:3f:13:cf:
                    73:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:69:12:F1:E2:56:B1:59:9C:09:99:21:FC:4D:29:02:66:BE:B5:9A
            X509v3 Authority Key Identifier:
                keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:b3:fd:7c:a4:55:cc:b6:a8:9c:3c:cb:4c:34:2c:c9:c8:be:
         5a:3b:9b:1e:42:2c:06:e8:b8:0d:48:f6:fc:fa:04:56:f6:c0:
         7c:2d:df:ed:95:43:11:f2:c2:4c:02:78:bb:15:a7:b5:b4:6a:
         13:63:63:b5:80:0b:e9:8a:3e:a6:33:06:15:bc:ec:c9:60:6d:
         04:0b:6c:9e:87:73:3a:16:3b:22:57:fd:a9:ff:5b:1e:48:21:
         1b:08:6c:a4:0e:c7:9c:0d:69:70:46:6b:5d:9b:09:83:02:7d:
         8f:2e:d1:ab:16:97:22:d4:15:5d:f0:79:c7:07:3c:a4:12:37:
         47:89:c9:25:71:74:89:ed:43:0b:57:07:93:12:ca:3f:4e:07:
         80:74:8a:6c:c2:55:fb:70:7e:f8:96:0d:c3:9a:b6:1a:ff:96:
         cc:5c:c7:23:20:f0:7e:dc:5b:74:39:20:14:16:13:3f:43:4f:
         cf:a2:cb:8b:de:28:96:6e:a1:72:c8:85:6e:3a:c3:0c:47:db:
         86:9b:9f:11:15:39:c2:54:e7:c5:7b:f3:df:ea:b0:30:e8:56:
         f3:2a:7b:69:a7:b3:ed:d9:f7:18:83:33:e4:49:29:ee:32:d6:
         21:8a:c4:5b:6f:db:02:e7:ea:18:b3:1d:6b:e3:42:40:59:bc:
         05:de:d6:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 11:33:59 2026 by rpki-client