Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft
File:                     Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft (raw, json)
Hash identifier:          PDgwER7vvLOrUn9T6XF7bXis+wi62pv5GwywYdxh3Ns=
Subject key identifier:   41:3C:34:28:E3:9A:A6:BD:24:40:39:96:80:10:19:BE:79:0F:C6:1B
Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0
Certificate issuer:       /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0
Certificate serial:       0888
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft
Manifest number:          087C
Signing time:             Thu 16 Jul 2026 21:04:50 +0000
Manifest this update:     Thu 16 Jul 2026 21:04:49 +0000
Manifest next update:     Thu 23 Jul 2026 21:04:49 +0000
Files and hashes:         1: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl (hash: 0sfsqxy3xmj8JLdZTAlP6CaO+u5kzaP9VNkULS6yxX0=)
                          2: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (hash: 6D7ij53r9ioYBrQpTrEg7bEtxQIHnICUtJjGzqeUXdY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl
                          rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 21:04:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2184 (0x888)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DA13E, serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0
        Validity
            Not Before: Jul 16 21:04:49 2026 GMT
            Not After : Jul 23 21:04:49 2026 GMT
        Subject: CN=6a594772-9993
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:c0:d8:a4:dc:cc:8f:d2:be:6d:bd:27:d9:32:
                    e9:73:50:97:dd:5e:43:57:05:f5:04:b3:84:eb:86:
                    79:6c:2c:89:c4:59:3d:be:3b:67:96:fc:1d:a6:e4:
                    b6:79:92:76:b4:c9:82:0c:57:c7:01:f0:44:ec:b9:
                    60:78:33:c6:b1:a8:1e:c5:13:47:e7:c0:6f:79:b9:
                    e5:fa:62:49:a4:53:33:95:26:e7:5c:75:0b:ae:77:
                    1a:11:44:1f:48:8f:aa:86:78:b0:c4:d2:57:76:59:
                    8a:ab:4c:99:5e:8b:88:ff:58:74:a9:e8:4d:75:f5:
                    f1:80:21:3d:bd:c1:ea:b6:6c:33:53:3b:af:3c:da:
                    8e:d4:05:c2:1c:74:49:e1:2c:d5:35:05:c5:df:e4:
                    14:08:9d:92:ee:02:b2:39:46:6e:e1:aa:be:a9:e3:
                    29:a5:d9:ae:f0:5a:d8:4b:85:16:c2:4e:a9:0d:58:
                    5c:ea:db:ca:1e:8a:d9:7d:95:11:26:29:56:7d:70:
                    ac:ae:af:a4:7f:a2:eb:06:36:77:98:6d:61:c2:23:
                    86:64:a6:63:1c:a0:82:12:70:d6:b8:fe:e4:cd:f7:
                    07:93:0a:7c:8e:a3:14:c0:36:da:65:f5:51:12:91:
                    85:0f:85:98:38:63:b8:67:a1:4e:91:31:5d:22:ae:
                    9c:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:3C:34:28:E3:9A:A6:BD:24:40:39:96:80:10:19:BE:79:0F:C6:1B
            X509v3 Authority Key Identifier:
                keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:da:09:da:9f:4c:4b:e9:69:62:c5:b0:2a:f8:53:b2:ce:fc:
         2e:a1:bc:77:cb:cd:ba:c9:66:ef:97:7c:7e:30:5f:11:a9:81:
         78:7c:a8:0c:cc:20:06:56:6b:24:11:eb:a2:95:b0:a2:69:95:
         66:8a:cf:02:9a:9d:c5:77:17:aa:a0:c2:2c:19:cf:f0:01:e2:
         06:d7:4b:01:ac:b2:e4:d3:91:ae:80:72:53:3a:9a:69:6f:d1:
         8e:52:30:6a:4b:37:31:f6:b2:30:f6:96:cc:a2:5b:85:86:9f:
         e1:9f:2e:5c:0b:63:f6:9a:d5:6f:e5:e4:fd:57:13:28:e9:6c:
         b5:16:32:35:60:6e:66:3a:d6:ac:6d:4d:d4:ae:76:51:c1:ab:
         9d:57:7f:b7:03:24:a3:de:92:77:63:b2:f0:67:90:9d:eb:27:
         bb:ab:13:3d:24:0a:49:35:44:77:92:08:32:20:53:dc:4b:ad:
         ab:b5:2f:ae:e1:02:fd:61:b6:12:de:ab:e2:a6:4d:d4:b6:e4:
         fa:9c:d5:67:f3:9e:8c:c1:77:08:1b:06:1f:d1:c6:72:52:53:
         64:e2:9d:03:26:37:a3:c2:7a:13:c4:0e:29:67:24:ae:a0:1a:
         21:03:bb:43:85:1d:e5:de:12:6a:43:06:63:f8:a7:c2:f3:48:
         32:25:76:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:17:26 2026 by rpki-client