Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft
File:                     5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json)
Hash identifier:          WzAktp0c4bUHCOM1cp5EppDwBl8fjIiD6lsopVTfCiw=
Subject key identifier:   FD:70:82:74:F6:B6:C4:33:AE:E5:81:48:80:7C:60:FA:0E:3A:B4:2B
Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78
Certificate issuer:       /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878
Certificate serial:       04D0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft
Manifest number:          04C8
Signing time:             Sun 05 Jul 2026 00:12:40 +0000
Manifest this update:     Sun 05 Jul 2026 00:12:39 +0000
Manifest next update:     Sun 12 Jul 2026 00:12:39 +0000
Files and hashes:         1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: 7gPxXaP+llK7CtlOIfHLarOOYTeZ45DO3GdMu5B0Lpo=)
                          2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: B7LPS8CpZf2Ll5s7URpWr8ddqKyO/ADwdlYXyVT4rEQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl
                          rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:12:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1232 (0x4d0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878
        Validity
            Not Before: Jul  5 00:12:39 2026 GMT
            Not After : Jul 12 00:12:39 2026 GMT
        Subject: CN=6a49a177-146b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:67:b1:16:78:a1:18:07:55:12:41:d2:d1:3f:
                    7e:92:27:b0:65:37:6a:91:39:ba:34:56:34:8b:6f:
                    b4:77:b5:d4:54:a1:54:41:b8:59:2c:71:fe:d0:85:
                    2d:f9:8c:43:00:1e:2a:85:3c:9d:40:8c:4d:ec:25:
                    20:f9:b8:2d:24:4e:00:14:6d:81:e2:77:29:e3:cd:
                    91:d9:ad:42:0b:83:9c:d6:2d:49:d0:08:0a:91:64:
                    9d:8b:5f:02:cd:1b:d7:6b:bd:d9:29:f9:d9:35:d5:
                    34:b1:84:29:20:be:8b:20:ec:0e:3c:39:f3:bc:4b:
                    8e:8b:1e:e5:4e:61:2f:c7:95:f9:00:c2:2f:d6:eb:
                    5a:22:de:6b:af:6e:6b:54:49:fc:7c:1c:7d:f5:d9:
                    d5:27:32:4f:40:5b:f1:40:bd:28:d3:18:89:2b:42:
                    e1:fe:0b:7a:53:5c:22:0a:42:a7:ac:31:d8:0f:21:
                    a1:3b:16:1d:4a:a2:d7:70:c9:a0:c1:e6:fa:3b:71:
                    7b:81:01:29:ed:8b:29:49:80:e7:53:2d:a2:35:ab:
                    7b:bd:e4:00:3f:73:d4:80:cc:1e:a9:68:5f:b5:e2:
                    80:53:39:3c:9f:fd:c1:90:aa:f4:f9:56:6a:e9:d0:
                    92:7d:07:01:cd:b1:62:03:62:af:a4:52:cd:b6:d8:
                    3f:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:70:82:74:F6:B6:C4:33:AE:E5:81:48:80:7C:60:FA:0E:3A:B4:2B
            X509v3 Authority Key Identifier:
                keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:82:15:d2:a0:ca:08:a9:d8:7a:69:1a:b1:c9:1f:38:9c:ad:
         43:96:df:6e:31:64:af:58:ee:8e:9a:8a:04:d8:2d:12:23:e9:
         01:a3:4f:6d:1e:ed:c9:2c:a8:27:d7:cb:d9:09:bd:d9:f9:95:
         4f:0c:6f:29:b7:de:14:6f:ad:ad:9e:ea:c3:92:e6:4b:96:cd:
         e9:4d:5c:40:17:1a:ce:60:6a:ce:2d:45:0a:8e:b4:38:00:6d:
         4c:b9:e1:fd:b1:71:33:b3:38:a1:3d:6f:12:71:df:85:1a:82:
         cb:50:49:40:e1:f9:43:b3:0a:c6:c1:52:b1:fc:e1:4e:b7:8b:
         f6:d7:ea:3a:a3:e8:86:a7:fe:c4:07:a5:c1:bb:6d:5f:b0:3c:
         44:29:16:5f:89:a8:49:51:80:f8:ef:31:a4:e2:de:18:68:be:
         e1:cd:8d:8c:09:81:4e:f4:db:32:2c:a7:86:29:60:ae:42:f2:
         93:45:6c:49:8f:19:c4:08:a0:e8:0f:e2:37:bd:2a:6e:aa:ea:
         33:6b:f6:b4:6e:ba:6f:52:e3:39:aa:94:57:88:62:e1:a8:80:
         6c:e8:20:43:50:0d:ad:ab:fe:39:9e:cc:a1:23:b9:98:99:e8:
         9f:f6:4f:bc:f6:92:8f:5f:f9:3a:85:e1:fa:4f:a4:6a:bc:48:
         7c:cd:19:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:51:14 2026 by rpki-client