Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
File:                     g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json)
Hash identifier:          gPxkvLn5HlXbyQqopNP8EeBt8Qmj6oCNmgIyCucK54Q=
Subject key identifier:   E5:E4:01:36:96:CE:B8:C2:DA:AA:B9:A1:47:7B:E4:2E:16:A5:88:2B
Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF
Certificate issuer:       /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF
Certificate serial:       0197
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
Manifest number:          0191
Signing time:             Fri 17 Jul 2026 05:24:02 +0000
Manifest this update:     Fri 17 Jul 2026 05:24:02 +0000
Manifest next update:     Fri 24 Jul 2026 05:24:02 +0000
Files and hashes:         1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: y6gbfWCSe0VT8QqRlUaEu2y8+XrDbVpKIqbpiN/R8dc=)
                          2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: +RRVmyu9T8wrCLDEDj/JvMmPQcvUjexzi+aqUNqlK/A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl
                          rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:24:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 407 (0x197)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF
        Validity
            Not Before: Jul 17 05:24:02 2026 GMT
            Not After : Jul 24 05:24:02 2026 GMT
        Subject: CN=6a59bc72-d237
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:eb:aa:0e:3e:ed:e3:2b:b9:31:11:62:1d:9e:
                    5a:93:53:c8:16:36:79:b8:80:88:ce:34:f6:0a:a0:
                    16:a3:79:c9:ce:5c:a0:70:bc:96:35:01:5d:8d:6f:
                    43:c4:01:99:23:b8:e7:ef:af:28:d8:ff:b0:26:08:
                    52:1b:da:1d:1a:df:75:68:a3:6c:a7:3e:2b:94:4e:
                    e0:7c:18:71:74:25:b5:c8:59:b0:bf:18:60:b7:ac:
                    b7:b7:53:a8:67:03:d7:2e:db:fd:ab:8d:2c:44:d9:
                    37:29:ec:22:ee:f2:76:73:6a:97:35:b3:2a:c8:e0:
                    fc:9b:bc:b0:54:a6:8a:b5:91:69:cd:4e:c9:64:f2:
                    46:93:65:6b:70:ce:17:b1:56:2e:90:3b:f2:67:d9:
                    31:7f:48:f4:b7:e0:e1:63:1b:8a:b3:f6:b6:d7:e0:
                    90:d4:d1:60:ad:aa:1e:72:73:0b:13:bf:fd:3d:0f:
                    8a:6a:5e:8b:f7:22:1b:fc:52:34:38:04:61:f8:ba:
                    84:60:d7:7d:91:e6:b6:58:83:ee:b0:ad:7e:e6:6e:
                    0f:8e:c6:b5:33:cc:1b:ca:15:e5:a8:30:73:43:28:
                    fc:ec:c9:23:d2:91:18:e3:8d:5a:80:8e:a5:b6:70:
                    ee:84:9b:0e:6f:91:65:58:f7:3e:26:3d:0f:4e:29:
                    4a:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:E4:01:36:96:CE:B8:C2:DA:AA:B9:A1:47:7B:E4:2E:16:A5:88:2B
            X509v3 Authority Key Identifier:
                keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:1d:58:4f:1e:ca:a0:88:17:bb:c5:1e:67:94:f7:fa:a5:56:
         5e:13:af:1c:c7:47:00:92:a8:2d:d6:b9:df:95:1c:a3:43:f0:
         15:34:13:d0:59:c4:6e:92:8a:3c:3f:21:02:e6:eb:3f:0f:ed:
         67:d0:84:09:20:2d:7a:bb:d1:35:fc:0a:8f:11:32:8e:71:a6:
         8f:ce:20:9a:20:66:f7:8b:e4:f6:f3:66:90:52:fb:e6:d9:d9:
         1f:69:18:4d:f8:ab:e3:14:c2:a2:3a:20:ff:7f:01:33:59:f0:
         f9:dd:b3:8a:3a:41:c5:9f:78:0c:9c:ac:52:34:a3:b8:8e:e1:
         3e:f1:07:3c:a3:b4:7e:e9:76:e7:fa:04:55:bc:8f:9a:78:3e:
         e7:81:e4:72:80:9a:94:7f:f9:00:67:03:03:73:7c:44:38:11:
         0a:37:07:62:ac:08:1f:ab:be:20:0e:5a:46:c2:47:13:27:86:
         7a:42:82:90:80:53:e1:ee:b2:b0:51:ab:7c:73:7c:7b:8e:11:
         17:1d:bb:4c:49:8c:6f:3c:67:6a:e8:16:06:e7:cf:a4:db:84:
         4b:e0:35:ba:19:f7:a2:c5:c6:5e:00:bc:ca:8f:76:41:7f:bc:
         59:a7:5b:02:b3:d9:1e:fe:bc:49:87:04:cb:07:9f:8b:76:b4:
         5f:8c:d9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:29 2026 by rpki-client