Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft
File:                     o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json)
Hash identifier:          94wnBArA31e2OyiWUJ287R2SA0IRlUdJTOCYu8Emn9k=
Subject key identifier:   C0:09:7A:84:5F:3F:6D:ED:27:36:BA:34:E3:5D:89:88:99:B8:EE:0D
Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A
Certificate issuer:       /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A
Certificate serial:       0185
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft
Manifest number:          017F
Signing time:             Thu 09 Jul 2026 06:21:08 +0000
Manifest this update:     Thu 09 Jul 2026 06:21:07 +0000
Manifest next update:     Thu 16 Jul 2026 06:21:07 +0000
Files and hashes:         1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: tDkt/awfv21i3N2EPmcFVFiiuCUnJt9SiCufrQBuVIM=)
                          2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: DyACrMkOfJlPNhHPts7x+Wbv5pZAYUHiquFq75vV6IQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl
                          rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 06:21:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 389 (0x185)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BD4DF, serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A
        Validity
            Not Before: Jul  9 06:21:07 2026 GMT
            Not After : Jul 16 06:21:07 2026 GMT
        Subject: CN=6a4f3dd4-d2d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:d7:9b:dd:19:3f:41:e7:e6:1a:0f:d7:a8:47:
                    4e:8b:b5:1c:1b:f1:d2:22:51:a0:82:c2:19:93:eb:
                    1c:49:d8:58:91:b8:da:d3:59:b2:b2:90:e2:ac:02:
                    2e:de:db:9f:c7:11:d3:50:5d:a5:1b:44:3b:7e:a5:
                    5f:3d:56:c1:87:53:26:de:b7:03:0d:56:7a:b4:e0:
                    24:cb:fc:80:be:7f:d2:15:7b:8c:8b:38:bb:55:cb:
                    18:02:f0:99:a9:a2:25:2f:0d:d2:5f:53:96:08:1e:
                    0b:2c:3d:84:b4:5e:5f:93:44:f6:42:9c:2a:8b:15:
                    6a:2f:d5:d5:db:fa:26:48:07:e4:c1:f9:73:4e:f3:
                    10:5a:29:09:a8:52:ae:76:62:a9:49:d6:4c:91:f9:
                    7f:7c:61:de:4d:cc:df:c7:05:65:cb:f2:be:5d:11:
                    31:0c:88:9e:f6:d5:b9:3c:97:d0:18:a7:66:04:a0:
                    33:cd:bd:ad:83:5c:81:52:62:2f:9b:91:56:ed:7c:
                    76:65:b6:5a:71:21:79:f5:97:b0:11:3d:74:fc:2a:
                    95:88:1b:df:27:bf:8a:8e:d6:dd:dc:3a:4a:ed:aa:
                    6c:30:4b:db:16:de:3d:8b:7c:a2:06:69:3d:e2:a7:
                    23:7d:ec:cc:37:6b:20:7a:b5:92:4b:23:41:3d:54:
                    9a:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:09:7A:84:5F:3F:6D:ED:27:36:BA:34:E3:5D:89:88:99:B8:EE:0D
            X509v3 Authority Key Identifier:
                keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:07:5a:65:da:60:fb:92:1a:a7:73:03:ec:22:35:30:e5:24:
         4c:9b:06:03:76:14:2c:92:3d:58:2b:ee:b4:0a:78:c7:da:ff:
         a0:d0:10:40:1c:46:93:8f:b1:6d:c4:db:56:e6:b7:ea:f2:f4:
         ee:54:cf:f9:13:8f:bf:37:0d:f5:bd:63:37:b1:0b:7f:94:e2:
         a6:a9:0b:fa:8d:3d:dc:0a:3d:a5:98:b8:cf:4c:0a:b7:60:cb:
         84:77:f7:de:ab:a2:d4:89:56:19:20:b8:12:ee:fb:1c:b7:9c:
         c5:5b:46:94:63:d6:31:6a:80:cd:59:b6:a2:e0:a2:e9:a1:85:
         b9:d5:4d:25:b9:8e:c8:a4:7c:54:9a:bf:71:bc:5d:a6:2c:6c:
         57:9f:f8:8e:38:93:44:4f:8f:c7:7a:cf:f7:83:92:f6:ab:c9:
         3c:ae:db:b3:aa:6c:bb:7c:4f:e9:14:96:6b:e6:31:94:55:d0:
         14:8a:ef:ef:2c:2d:68:11:b4:d8:9d:72:8c:a1:1f:c0:34:12:
         c9:b8:2f:cf:33:a8:04:87:ee:68:ad:a9:1d:a7:0f:90:f3:1f:
         61:fd:16:b9:81:dc:35:c3:36:f0:00:ea:42:41:f9:ba:ac:86:
         e1:5d:79:7c:f5:d1:66:5e:66:1f:77:0b:ba:52:a6:e6:63:0c:
         99:0f:2d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 11:07:24 2026 by rpki-client