Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
File:                     U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json)
Hash identifier:          0268Vqoczl1Xga6ApaHOVEhBcCIPWstv6zIUd+GrjVk=
Subject key identifier:   DB:10:26:AB:1E:46:95:11:26:01:34:4E:88:4A:6E:C0:95:F8:C8:75
Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91
Certificate issuer:       /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
Certificate serial:       0171
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
Manifest number:          016A
Signing time:             Fri 17 Jul 2026 06:00:41 +0000
Manifest this update:     Fri 17 Jul 2026 06:00:40 +0000
Manifest next update:     Fri 24 Jul 2026 06:00:40 +0000
Files and hashes:         1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: qMrAHzwq7D2OwTpjM0PJzSG3KKm4tYbXlwFLA+qmcA8=)
                          2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: Qj2e8JFy3G1Ijnc1ybFXUNaXhlpo6NRhbWYoFliMA3w=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl
                          rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 369 (0x171)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91
        Validity
            Not Before: Jul 17 06:00:40 2026 GMT
            Not After : Jul 24 06:00:40 2026 GMT
        Subject: CN=6a59c509-dafc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:58:c0:42:ce:ff:84:b8:b1:a9:1f:53:b1:f5:
                    3a:ba:cb:52:2f:bd:dc:ad:ac:f9:99:4b:74:9c:e9:
                    c8:3b:23:06:90:64:ef:b0:f3:97:db:a7:50:84:4c:
                    2f:ef:46:cf:c3:16:a6:0d:91:59:b1:3f:b6:eb:ee:
                    a4:f0:20:af:3c:d2:b7:c4:62:f0:27:88:27:b9:03:
                    69:86:37:5f:2d:ac:b8:a1:a3:71:b8:e3:19:1a:d6:
                    77:29:d1:50:33:1c:27:88:01:a7:bf:09:6d:20:0b:
                    19:74:54:02:6d:bd:31:07:dc:cb:21:f5:e4:83:3f:
                    a2:e9:0b:b4:bc:73:72:35:fc:1c:68:24:31:82:b2:
                    22:5b:e9:c9:c2:40:42:1a:52:bf:a2:aa:5f:f9:c5:
                    ab:a1:ba:7a:11:2b:5c:08:ed:24:6d:35:7b:0e:c5:
                    7a:33:57:34:2f:6a:66:26:d6:a5:42:ac:2c:2c:a4:
                    f7:8b:b2:50:30:11:36:dc:cf:b1:6b:30:fb:05:e6:
                    86:1b:2f:9a:bb:f9:d6:8a:02:e2:a5:a8:b0:c1:cd:
                    4e:1c:42:6b:ce:95:a6:dc:a0:7c:31:40:8e:ff:54:
                    b5:e1:a8:f1:78:66:30:56:2d:26:fc:6d:fe:6f:d1:
                    ef:78:81:a5:e6:4b:2f:ba:cb:55:ac:03:32:bd:c9:
                    1d:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:10:26:AB:1E:46:95:11:26:01:34:4E:88:4A:6E:C0:95:F8:C8:75
            X509v3 Authority Key Identifier:
                keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:ed:4c:43:87:73:2c:ba:1b:27:bf:1e:70:eb:30:e7:78:8d:
         ec:14:44:88:9a:a6:4f:d9:3a:92:85:90:71:fb:2f:27:54:40:
         e3:ab:20:ef:bd:6f:9f:0d:9b:95:18:02:e6:89:fc:1d:66:db:
         54:1e:5c:98:08:3f:5d:ed:91:48:7c:f6:1c:42:ec:c8:73:94:
         4c:f6:f8:db:61:5e:d6:cc:56:73:56:6e:19:b3:95:b3:fa:6e:
         ce:1f:8b:14:5e:09:dc:e3:03:83:c4:bf:15:b5:42:da:d5:84:
         9e:6a:dd:1a:8e:76:e0:9a:88:ea:cf:ee:1f:77:45:a3:b0:82:
         de:d8:d4:a6:d1:d3:21:7a:dc:8f:70:ad:fd:35:46:0e:9e:0f:
         dd:cc:78:91:65:65:94:ca:40:e8:56:9d:83:20:d1:f4:db:cc:
         d6:31:9e:07:1b:06:bf:e9:1f:2b:f4:8e:c1:ef:3b:3a:d8:9b:
         64:fe:57:d7:f3:25:a2:cc:84:c8:a1:89:ae:e0:7e:c2:39:f5:
         f8:bf:69:1a:8f:9d:08:0f:64:4a:6f:00:11:84:e7:db:e9:c9:
         18:7f:35:54:c2:73:2d:38:3e:bb:03:21:01:c1:0a:3d:39:5f:
         96:a7:cc:75:27:41:e1:1b:b1:8d:7f:94:7e:bc:2f:21:11:cd:
         16:48:65:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:30:05 2026 by rpki-client