Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft
File:                     KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json)
Hash identifier:          gWsJaF89byEiiodniM6k7uTGiFjbdNmgA7rAeyWGWb8=
Subject key identifier:   68:89:84:4F:62:34:0D:3D:0F:AD:6E:65:D2:59:30:D9:3C:95:B8:E7
Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00
Certificate issuer:       /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00
Certificate serial:       0189
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft
Manifest number:          0174
Signing time:             Sun 05 Jul 2026 05:32:30 +0000
Manifest this update:     Sun 05 Jul 2026 05:32:29 +0000
Manifest next update:     Sun 12 Jul 2026 05:32:29 +0000
Files and hashes:         1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: p+c2/EQZKqX0twEAo9KY/9UEI9XNuP3KjLDL5HjCi1E=)
                          2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: TDlLh34Bo1Qa+MNIEkMopEk/3BJaO3P1cNy38YBcx/A=)
                          3: AB61CD86D51811F09422126CC4F9AE02.roa (hash: TLLdIsk74f1u3haWZpgZc348xyx6vBubsic7GeU/I8Y=)
                          4: AAF88862D51811F0B469126CC4F9AE02.roa (hash: TL/EtRu22ONIBQU9AjMsDMVh2O5yUU42eXjpY7kgULg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl
                          rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:32:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 393 (0x189)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00
        Validity
            Not Before: Jul  5 05:32:29 2026 GMT
            Not After : Jul 12 05:32:29 2026 GMT
        Subject: CN=6a49ec6e-6718
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:68:cd:39:a1:9f:34:14:1e:85:a9:6e:50:59:
                    19:c0:d1:fe:5b:31:df:4f:83:a1:63:c9:f5:13:df:
                    d6:de:fc:b7:8f:d0:76:fa:42:ae:e7:90:ac:94:2f:
                    66:6a:cf:f3:57:84:ec:c6:9d:be:cb:c3:95:de:de:
                    00:f4:f0:7c:d3:18:a9:8a:db:f1:14:21:c1:cd:e6:
                    49:31:06:c2:05:2c:0e:43:79:ca:e4:25:97:4e:f4:
                    23:7d:80:16:aa:8e:1e:c2:fe:24:50:e7:29:9b:b1:
                    bb:12:91:fd:f2:80:53:1b:fc:e8:b9:bf:1c:fc:34:
                    02:e9:48:5e:37:e6:7c:6c:5c:e3:21:e1:d6:20:3b:
                    da:17:27:d4:c6:78:4c:62:30:59:a6:8e:b5:35:d2:
                    71:85:0c:c1:ef:e4:4e:c7:e5:d9:2e:92:72:07:4d:
                    c2:1e:8c:41:3c:36:a0:73:fb:29:59:74:2b:3c:f6:
                    c2:a5:2d:61:dc:03:5a:cc:b6:66:f0:70:07:ab:12:
                    e8:d0:e3:6b:1c:82:39:e9:b3:92:ad:f5:df:e4:0c:
                    b4:c0:56:eb:1a:7e:b3:aa:02:30:ac:c3:96:2e:fd:
                    9e:34:51:65:36:a4:6e:b4:a2:39:28:ed:ba:9a:ac:
                    1c:ac:b5:99:fd:92:42:a5:f0:81:64:9b:ef:31:b0:
                    2d:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:89:84:4F:62:34:0D:3D:0F:AD:6E:65:D2:59:30:D9:3C:95:B8:E7
            X509v3 Authority Key Identifier:
                keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:28:45:57:75:99:0a:56:73:a6:e0:23:f8:6d:b2:e7:f5:33:
         02:3b:48:0a:c4:db:9a:ef:30:49:cc:b0:51:2c:57:35:59:19:
         05:51:87:cb:8a:f2:5c:ff:82:a3:fb:d1:c5:dd:53:42:b8:48:
         ba:3b:c2:99:27:c9:64:1b:85:49:9c:65:8c:0c:68:b4:a5:6a:
         25:da:9d:62:f2:44:d6:2f:c4:93:ab:0f:e9:20:c9:a4:01:d7:
         51:8b:72:08:19:11:6b:32:55:78:ef:86:47:a5:fc:cf:99:21:
         1d:c2:82:c1:44:01:41:84:75:d4:a5:cf:3c:71:87:52:14:25:
         2f:13:19:df:90:58:2a:51:b5:fb:6a:7b:3b:d7:8a:2b:1b:d4:
         7b:32:de:0f:89:c9:02:00:cc:f4:ca:78:04:f0:67:71:0b:75:
         d5:4e:51:7d:b0:c3:fa:16:39:a7:06:0d:82:eb:ec:3c:40:62:
         ef:b4:70:2a:ee:22:53:5a:98:38:e9:90:32:03:ed:04:92:eb:
         83:fc:b6:c6:f6:65:83:bf:ec:e7:29:6d:93:ea:43:80:3b:ca:
         dd:ea:28:f1:92:b8:f5:7e:d4:b3:ac:fc:74:5b:b7:2c:84:d8:
         dc:79:3d:66:b7:52:7a:c8:a3:b6:d1:e2:9a:f7:98:d5:95:3e:
         87:13:4f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 20:10:52 2026 by rpki-client