Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
File:                     du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json)
Hash identifier:          iVDub49DEJ23UBtiUEX2iGjlQuArLmWt2C0OnWd/p8g=
Subject key identifier:   42:51:2B:62:C0:FA:4F:4E:FF:28:D3:D4:35:8F:FA:BF:0F:F2:DA:B7
Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A
Certificate issuer:       /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A
Certificate serial:       01D6
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
Manifest number:          01D0
Signing time:             Thu 16 Jul 2026 20:05:17 +0000
Manifest this update:     Thu 16 Jul 2026 20:05:17 +0000
Manifest next update:     Thu 23 Jul 2026 20:05:17 +0000
Files and hashes:         1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: 1smklZXi72gZqalDq6JfWk6IsSf4wEjTsgIvSuTNBlw=)
                          2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: lwkdt0p18j+EGoMj/NlkIlwaZeWIUPoZjTEhgtn7WSY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl
                          rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 20:05:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 470 (0x1d6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A
        Validity
            Not Before: Jul 16 20:05:17 2026 GMT
            Not After : Jul 23 20:05:17 2026 GMT
        Subject: CN=6a59397d-e10f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:d4:99:61:12:7b:af:b0:57:e9:01:aa:bf:fc:
                    b8:71:cf:80:ca:40:d6:40:6d:18:07:bf:47:bf:6b:
                    cb:66:1b:7b:2e:00:9d:2e:77:ef:a1:36:2f:26:6b:
                    57:f2:cc:35:33:48:86:67:61:15:f4:a6:61:8b:9c:
                    1c:a0:7f:68:f7:57:3b:0b:1f:62:73:f9:54:f5:1b:
                    16:65:88:b5:42:ba:42:57:d9:6e:01:a2:f7:c7:e4:
                    84:0b:af:1d:65:3a:99:c7:53:9a:5d:b9:6e:f8:94:
                    21:48:db:40:cf:9e:e4:0c:f9:28:70:6d:4d:60:b6:
                    ca:c4:b6:19:f2:a2:df:5c:c9:fd:69:a5:6c:ff:71:
                    d7:2f:3e:1a:65:c2:56:fa:0b:f4:7f:04:e0:1a:d0:
                    66:31:0e:42:ca:2f:f1:08:7a:bd:e6:58:8d:5e:04:
                    c0:d6:7c:cf:f2:1a:2f:ad:92:02:b2:7b:2a:88:ef:
                    7b:c8:d7:7c:04:fd:c5:6a:f1:99:10:22:85:f5:e1:
                    10:1d:2a:f5:f0:1d:bd:1d:0f:fb:2d:24:6e:48:48:
                    3c:0b:5f:c3:c9:12:77:76:4c:3b:c3:d2:ea:3e:6c:
                    49:7a:71:65:3e:a9:de:37:42:42:e8:f8:16:69:b3:
                    32:32:d6:43:7f:51:d2:37:9a:23:51:14:27:4f:9f:
                    3a:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:51:2B:62:C0:FA:4F:4E:FF:28:D3:D4:35:8F:FA:BF:0F:F2:DA:B7
            X509v3 Authority Key Identifier:
                keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:6c:b0:93:1f:01:37:7e:3a:d9:dd:a7:9d:e5:51:36:1f:83:
         ce:61:0e:23:65:6a:60:19:6d:10:d2:6c:d9:d3:1b:ca:46:35:
         26:67:0f:1f:3f:5f:46:e4:0a:83:30:1f:c1:a1:26:43:e4:8d:
         28:fb:c0:af:04:6a:ed:da:6d:3d:3b:34:6c:94:1c:50:ec:1e:
         29:e1:18:a3:17:5e:6d:b8:14:df:e4:59:a5:e4:9f:38:05:5f:
         b2:76:9a:7b:b9:71:e7:7e:b9:96:3a:79:d6:3c:81:83:f1:01:
         44:c3:d2:a6:d5:32:1d:01:30:4c:f1:fb:09:5f:90:2e:9e:3c:
         c9:b6:c5:00:8f:d6:c7:2e:f9:4e:b3:ac:7a:34:5c:e3:16:1f:
         4e:11:21:1b:90:2d:20:64:ba:5f:03:28:a0:bb:38:a8:f2:bf:
         e3:c8:96:aa:3f:e6:31:8b:c6:a2:93:e3:fa:02:b0:55:2e:65:
         21:1d:cf:4e:f6:d2:09:59:60:1a:11:cb:1b:16:54:f0:b3:d3:
         d6:43:aa:7f:86:af:f3:2b:4c:e8:dc:94:f3:07:55:74:f5:32:
         15:3e:f5:16:54:7e:b9:d6:98:9d:82:35:0d:f5:53:5c:01:b2:
         e1:4d:9b:64:79:bd:7b:6b:82:4d:39:59:ce:1c:7a:e3:97:20:
         aa:2e:6a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:10 2026 by rpki-client