Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
File:                     VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json)
Hash identifier:          lSXpY7I55RrinhBQ12El8GW0tCPug1OmTR623p1Xx8Y=
Subject key identifier:   1C:EF:46:78:18:BF:5D:9A:E7:E5:46:CC:81:F8:78:D9:8E:B8:0B:98
Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F
Certificate issuer:       /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F
Certificate serial:       0216
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
Manifest number:          0210
Signing time:             Fri 17 Jul 2026 03:55:09 +0000
Manifest this update:     Fri 17 Jul 2026 03:55:09 +0000
Manifest next update:     Fri 24 Jul 2026 03:55:09 +0000
Files and hashes:         1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: adiZpayKJmeonNNfx1ScbYPqXuUCYYlRhJ0WbFIH/0k=)
                          2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: WP8HegPa5EokTKx706o1KpMqrQcLXlZh4ZkoerJ4FaU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl
                          rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 03:55:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 534 (0x216)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F
        Validity
            Not Before: Jul 17 03:55:09 2026 GMT
            Not After : Jul 24 03:55:09 2026 GMT
        Subject: CN=6a59a79d-562b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:14:69:52:57:89:7d:53:69:9d:30:5b:e2:85:
                    07:af:e0:84:f9:a6:71:55:2e:dc:1e:be:34:55:fa:
                    33:00:29:49:34:82:f8:36:a3:e1:d5:57:a5:02:e6:
                    42:da:07:9f:a4:6a:33:e4:b3:a1:4a:e9:6a:10:7d:
                    74:93:4c:bd:76:f2:aa:7a:28:1f:11:03:60:1d:ff:
                    fb:a9:c7:2b:03:32:12:f3:8d:d6:dd:d6:25:df:d6:
                    03:dd:7a:16:3c:5f:e3:40:41:b2:4e:0a:bc:43:62:
                    96:00:e7:24:28:51:cb:be:cc:fc:37:06:0a:b5:4e:
                    99:35:7d:06:47:3a:05:af:d0:61:24:7d:91:eb:f8:
                    83:c5:bc:9d:b8:07:1d:91:41:d1:48:fa:7f:79:52:
                    9e:40:d5:45:f2:50:ed:5f:cf:b3:e7:df:83:08:1a:
                    37:22:e5:18:bf:43:c6:c4:2f:2c:81:78:34:89:55:
                    83:ca:52:6c:e6:8c:63:88:89:7b:fa:5b:98:29:ed:
                    26:30:ce:0d:1c:f3:eb:1f:a4:ad:db:f6:b8:b6:31:
                    7c:d4:14:6a:93:47:d1:e2:c4:fe:b1:1a:74:d7:8e:
                    0a:7e:ec:5c:20:09:ea:98:d6:43:08:31:aa:b9:4e:
                    c4:c0:73:e2:b2:b6:44:dc:53:f7:ac:90:e6:b7:cc:
                    46:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:EF:46:78:18:BF:5D:9A:E7:E5:46:CC:81:F8:78:D9:8E:B8:0B:98
            X509v3 Authority Key Identifier:
                keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:87:20:ff:d2:eb:16:fa:b6:51:30:e2:9a:4a:6e:59:14:31:
         17:7b:c7:92:0c:17:bd:b4:b0:ed:0a:05:ee:8f:14:9e:2d:fc:
         ff:a7:d8:90:80:51:7a:64:f4:c2:c5:3e:89:7e:f3:0a:15:26:
         cd:1f:f0:a4:e0:de:b8:67:ef:06:05:7b:83:c6:67:4d:eb:88:
         94:11:03:bf:97:16:34:31:0f:b9:05:5d:77:41:dc:4a:05:f6:
         a1:2d:82:2c:52:1f:76:82:ca:5f:ce:ec:71:c3:c5:ef:56:35:
         b4:56:41:5c:fd:a2:b9:df:03:22:0b:f2:6d:30:d2:d5:c9:07:
         70:7f:c1:a1:f8:3d:f9:ea:d9:99:6a:10:ec:fc:ad:53:9c:b7:
         51:67:ca:cb:b3:36:8e:91:46:53:db:2d:74:2c:6f:d7:33:84:
         ca:71:be:8e:bf:25:98:fa:cd:1b:24:4c:f7:10:50:57:bf:7e:
         c7:8e:ca:1f:03:65:41:ca:9f:18:9a:b2:36:84:d5:ec:16:1f:
         23:ae:e8:eb:7c:f5:e4:61:87:d3:06:dd:0f:b1:b5:72:d9:aa:
         86:cd:fe:fd:53:d1:50:aa:ac:6c:d7:5e:99:5d:45:bd:73:0c:
         ce:13:54:30:6d:89:25:ef:7d:3b:f4:8b:ca:54:09:ba:20:ef:
         82:4c:79:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:13:09 2026 by rpki-client