Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft
File:                     uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json)
Hash identifier:          t9jA12BMmXM4X9OTevf5u6qTY6Sgg/Aq++IcRa3pfEM=
Subject key identifier:   36:F8:C0:05:B4:6D:78:25:DC:61:FA:E8:51:D4:93:D2:38:80:BE:1C
Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40
Certificate issuer:       /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540
Certificate serial:       0CCC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft
Manifest number:          0CC2
Signing time:             Thu 02 Jul 2026 18:37:51 +0000
Manifest this update:     Thu 02 Jul 2026 18:37:50 +0000
Manifest next update:     Thu 09 Jul 2026 18:37:50 +0000
Files and hashes:         1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: ZPAdkqBn/6H8Xv6eWhT0RaGb1PDOR2JECHdcsr2FW9k=)
                          2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: 3OqTGjIgsHVDPUYnbHar2FaPmlN2uunJHFoJ3j2NcEg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl
                          rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 18:37:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3276 (0xccc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540
        Validity
            Not Before: Jul  2 18:37:50 2026 GMT
            Not After : Jul  9 18:37:50 2026 GMT
        Subject: CN=6a46afff-ee8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:f0:15:9e:2c:f6:98:d4:60:39:7e:13:7f:2a:
                    16:ab:2b:de:08:e5:6e:73:6b:f5:47:b9:98:1c:9e:
                    66:29:7f:b5:b7:b8:0c:25:bf:86:17:37:cb:be:be:
                    ac:ab:13:9b:88:e3:3f:1f:b4:e3:3d:26:64:5b:bf:
                    bf:25:99:ae:ed:40:d7:0d:01:4d:89:2d:d5:1d:aa:
                    f0:0e:7c:a8:3c:c5:86:91:53:f0:f2:9c:96:e5:7a:
                    60:25:fa:fa:0d:68:3a:e0:ec:91:a4:7f:00:51:cf:
                    3a:bb:72:68:fe:aa:7d:0e:46:f2:4f:3b:b8:87:68:
                    45:72:46:17:48:a7:dc:e3:ff:25:d2:f9:66:e8:cb:
                    c0:cb:f3:04:74:0b:ed:46:10:49:59:72:81:a9:9a:
                    7e:2c:26:61:05:32:c4:88:9d:e7:3b:5d:e4:41:93:
                    0b:81:77:3d:75:79:41:ca:1e:34:5e:ab:34:89:9a:
                    ae:4b:25:a5:db:ae:45:11:27:cd:54:25:6b:84:47:
                    ed:5d:eb:c9:7b:d4:cb:0c:7e:50:32:ef:df:91:8e:
                    bd:30:fe:c0:cf:1b:a3:23:33:ac:73:51:32:35:bb:
                    9f:19:2d:ce:3a:b0:be:ba:64:66:80:d5:a8:45:4d:
                    1f:5a:9b:50:21:1e:1b:d0:d5:b6:b8:62:70:b5:dd:
                    62:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:F8:C0:05:B4:6D:78:25:DC:61:FA:E8:51:D4:93:D2:38:80:BE:1C
            X509v3 Authority Key Identifier:
                keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:a2:08:25:e5:9e:bc:0f:fc:6d:ec:5c:a1:48:eb:df:e8:de:
         aa:a1:bf:32:09:1f:19:37:4e:52:1b:46:f5:e1:4c:53:7e:7f:
         ff:3d:81:0a:24:d3:43:6a:55:01:cc:25:93:7b:bf:ad:87:77:
         a8:75:4e:ea:54:aa:70:1e:3a:6b:01:fe:82:53:6c:73:01:2f:
         21:94:90:dc:a1:4c:36:7d:dc:b2:7a:0e:fc:1a:93:fd:22:74:
         09:41:b7:94:45:23:16:10:96:13:56:99:ab:49:98:ea:e5:96:
         cc:20:82:63:d7:e8:d4:cb:81:4b:36:c9:6b:09:27:0f:b7:6f:
         e9:47:b0:97:7b:9d:ce:b1:a6:69:8c:53:a7:bc:3e:33:16:9b:
         32:07:e1:25:56:06:62:b8:7f:9d:b9:14:f1:9f:0c:08:0f:48:
         1a:55:dd:b1:39:82:3e:98:50:79:ca:4b:a4:a2:aa:f0:fa:a7:
         38:ad:fb:b7:94:4c:e6:df:2d:2c:3d:2d:9e:81:0b:31:e6:46:
         30:b8:95:d1:86:b7:d9:c0:59:b8:eb:e3:d9:c5:4d:b9:a5:12:
         62:d5:c0:ec:29:1d:dd:d8:ab:ad:b5:bc:e9:68:78:e6:53:cd:
         ba:2a:94:3e:e0:19:f0:e4:42:f4:15:7a:92:26:5c:95:2c:c3:
         53:59:aa:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 05:24:36 2026 by rpki-client