Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft
File:                     DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft (raw, json)
Hash identifier:          UF5VuEZ0Mw4HjLEQmlH2FJdAJAscN6oCygLSmsMdxEs=
Subject key identifier:   B2:C6:B3:AD:8E:6A:C5:3D:5F:53:E7:75:E8:AF:56:8E:BB:D9:51:94
Authority key identifier: 0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F
Certificate issuer:       /CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F
Certificate serial:       0868
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft
Manifest number:          085C
Signing time:             Mon 06 Jul 2026 21:23:23 +0000
Manifest this update:     Mon 06 Jul 2026 21:23:23 +0000
Manifest next update:     Mon 13 Jul 2026 21:23:23 +0000
Files and hashes:         1: DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl (hash: goRj/2zv+4+gup2RHfkTHAlkjVibdtQ0BR8dO5BLchQ=)
                          2: CC26BAE6895E11F08FE3390FC4F9AE02.roa (hash: gMWeQiLTy0ha5JRkRDRAzKIPkA2Mg4zoy04sliHlLwQ=)
                          3: AD27F510895E11F0AF42FE0EC4F9AE02.roa (hash: JM03PRnYpRFkohzYbnLnI1USKOzvkdZpcJ9fV4bxujM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl
                          rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 21:23:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2152 (0x868)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C731A, serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F
        Validity
            Not Before: Jul  6 21:23:23 2026 GMT
            Not After : Jul 13 21:23:23 2026 GMT
        Subject: CN=6a4c1ccb-d5ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:18:2e:40:8c:40:3f:1a:f6:1a:ad:13:14:38:
                    86:9d:24:75:7d:1d:0a:ae:f6:a2:15:73:e4:44:95:
                    dc:08:9a:1e:e8:8a:30:24:49:9d:71:b6:ef:12:f7:
                    b7:52:b1:2f:31:8a:15:58:15:48:f2:d8:31:66:0c:
                    95:a3:cf:8f:90:69:99:6d:a0:8a:8e:cd:87:26:86:
                    8b:6a:28:9f:06:29:75:4a:39:5c:47:6b:0a:1c:90:
                    10:0e:b4:40:d6:4c:f7:56:05:92:4b:6d:e6:46:3c:
                    ad:42:38:7c:a4:32:2d:de:c2:75:34:53:7e:b6:eb:
                    2c:75:dd:0f:be:3b:fd:36:4d:1a:7e:9c:36:67:b0:
                    09:72:6d:9d:58:c7:b7:f6:ae:6c:52:3c:48:ac:8d:
                    1c:f2:da:3c:b0:6b:24:b8:77:75:a6:b0:ec:cd:97:
                    18:af:c0:31:e4:6b:24:bf:66:ff:73:2b:ba:28:06:
                    0e:1a:09:72:4e:6a:a8:61:10:a8:e9:09:90:9e:9b:
                    a2:fd:e5:b0:c4:dd:d2:e9:bf:61:3a:8e:a3:82:47:
                    e8:5e:f4:1d:84:5e:31:0e:3b:8f:e1:5f:fa:e5:77:
                    69:2f:33:e0:7c:98:e3:7a:bc:72:41:a0:ba:7f:b4:
                    be:37:67:9b:4c:00:12:83:d0:1c:f4:05:20:65:fa:
                    95:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:C6:B3:AD:8E:6A:C5:3D:5F:53:E7:75:E8:AF:56:8E:BB:D9:51:94
            X509v3 Authority Key Identifier:
                keyid:0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:6f:95:ab:ea:5d:2f:df:4a:5d:2b:85:70:b4:62:48:3b:66:
         d1:2d:cf:ab:cf:0e:7d:29:33:7b:50:0d:66:56:23:0b:d3:85:
         74:c6:87:49:b2:77:f3:b5:72:88:a9:f5:ae:70:06:59:74:d0:
         72:c5:9f:9e:c7:5b:55:aa:e3:3c:4a:a6:3e:68:17:2d:67:a1:
         ab:aa:ba:a9:70:86:e0:7f:e3:fb:e4:13:6d:78:5b:07:2d:04:
         af:f1:c9:8c:8b:27:08:59:bd:3b:d5:19:41:b3:92:b0:ad:88:
         f0:06:ff:cd:32:00:e2:d7:ad:f4:42:06:60:b1:1e:9d:13:dd:
         cc:35:f8:96:da:ef:2b:82:52:50:5c:a4:5d:9f:d8:95:b3:7a:
         eb:a9:6e:13:16:44:2a:b7:15:29:1e:49:19:fb:f9:dc:1d:d8:
         40:95:60:a1:54:93:67:2a:f1:5d:20:5f:a0:d0:88:24:80:f1:
         21:37:b3:c9:6a:e9:75:56:b8:67:31:f3:94:7f:24:22:36:8b:
         d4:72:37:a4:02:e6:62:4c:29:c1:84:d8:ef:81:9d:28:7b:2b:
         82:b0:78:14:9d:24:e0:a9:9e:d1:30:96:c0:ad:6e:71:69:7e:
         a7:8e:8f:28:42:f3:80:55:88:c2:4d:3a:fc:42:c5:45:5f:6f:
         87:6e:fd:34
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICCGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzczMUExMTAvBgNVBAUTKDBEQjREM0Y5RDVFMjBEODVCRUI3RjlDQjFCMDdDMzE1
QUE0NjA5OUYwHhcNMjYwNzA2MjEyMzIzWhcNMjYwNzEzMjEyMzIzWjAYMRYwFAYD
VQQDEw02YTRjMWNjYi1kNWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzxguQIxAPxr2Gq0TFDiGnSR1fR0KrvaiFXPkRJXcCJoe6IowJEmdcbbvEve3
UrEvMYoVWBVI8tgxZgyVo8+PkGmZbaCKjs2HJoaLaiifBil1SjlcR2sKHJAQDrRA
1kz3VgWSS23mRjytQjh8pDIt3sJ1NFN+tussdd0Pvjv9Nk0afpw2Z7AJcm2dWMe3
9q5sUjxIrI0c8to8sGskuHd1prDszZcYr8Ax5Gskv2b/cyu6KAYOGglyTmqoYRCo
6QmQnpui/eWwxN3S6b9hOo6jgkfoXvQdhF4xDjuP4V/65XdpLzPgfJjjerxyQaC6
f7S+N2ebTAASg9Ac9AUgZfqV9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLGs62O
asU9X1PndeivVo672VGUMB8GA1UdIwQYMBaAFA200/nV4g2Fvrf5yxsHwxWqRgmf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzMxQS9DOUY4M0FFRTBF
QzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZVy10X25MR3dmREZhcEdD
WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0RiVFQtZFhpRFlXLXRfbkxHd2ZERmFwR0NaOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
NzMxQS9DOUY4M0FFRTBFQzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZ
Vy10X25MR3dmREZhcEdDWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEALW+Vq+pdL99KXSuFcLRiSDtm0S3Pq88OfSkze1ANZlYjC9OFdMaHSbJ387Vy
iKn1rnAGWXTQcsWfnsdbVarjPEqmPmgXLWehq6q6qXCG4H/j++QTbXhbBy0Er/HJ
jIsnCFm9O9UZQbOSsK2I8Ab/zTIA4tet9EIGYLEenRPdzDX4ltrvK4JSUFykXZ/Y
lbN666luExZEKrcVKR5JGfv53B3YQJVgoVSTZyrxXSBfoNCIJIDxITezyWrpdVa4
ZzHzlH8kIjaL1HI3pALmYkwpwYTY74GdKHsrgrB4FJ0k4Kme0TCWwK1ucWl+p46P
KELzgFWIwk06/ELFRV9vh279NA==
-----END CERTIFICATE-----
Generated at Wed Jul 8 03:20:02 2026 by rpki-client