Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
File:                     zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json)
Hash identifier:          AmXNi+jDi9NAswins3dGSGHVkVJ/enWZvwF4XYWziR0=
Subject key identifier:   31:D4:58:41:68:57:0B:94:69:7E:79:1D:1D:3C:30:E4:06:1B:0F:D0
Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09
Certificate issuer:       /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409
Certificate serial:       123D
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
Manifest number:          1202
Signing time:             Thu 16 Jul 2026 17:12:10 +0000
Manifest this update:     Thu 16 Jul 2026 17:12:10 +0000
Manifest next update:     Thu 23 Jul 2026 17:12:10 +0000
Files and hashes:         1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: 5R8BAx6okM+PABLE2JEoMxfXQGOjzeehSNSt5TxDWpw=)
                          2: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: 6R3WrQlkwYdoSKIA9m9L9kSxThcr/NMUZ6ZAaENWcLk=)
                          3: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: 8sR59Lp6fQc79JgAgqC1t1+yUKy4/xiWteMrpfGnLFs=)
                          4: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: 6bJMavZFRpkLHiVk166wivPVWZcYiFXj4dWo/IpNl7w=)
                          5: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: tb6d2POyVxQvEjZTCt8zzCzL5T0dHc+hRl47vzKiwro=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl
                          rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:12:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4669 (0x123d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409
        Validity
            Not Before: Jul 16 17:12:10 2026 GMT
            Not After : Jul 23 17:12:10 2026 GMT
        Subject: CN=6a5910ea-0da0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:0a:f5:57:c1:f9:88:9c:87:f8:b5:c4:67:ed:
                    b3:d5:d8:f7:61:9d:17:5a:59:8b:2a:1e:fb:f5:cf:
                    8c:0e:7c:1b:3d:b2:36:21:3a:42:13:a5:f0:8a:9b:
                    ff:a5:a4:e5:fa:8b:d1:4d:00:3c:32:a8:48:bb:4e:
                    78:d6:50:fc:10:77:13:98:f9:db:de:08:e0:14:4e:
                    4e:19:47:d5:0e:71:00:eb:35:97:48:92:96:10:bc:
                    55:05:52:e6:da:54:18:3a:65:6f:ae:eb:a1:8d:b8:
                    12:bf:4e:23:58:d4:3d:1d:b1:5b:6f:d9:69:14:ce:
                    7b:7f:6a:51:1c:79:56:43:65:24:02:fa:21:10:f7:
                    f8:94:d1:a9:c9:36:b0:99:6f:80:87:4c:b0:dd:51:
                    32:3d:74:d6:95:5d:1e:0e:9c:40:f5:12:64:23:88:
                    9f:6f:43:d3:96:60:a0:53:6d:c8:48:35:43:b8:e2:
                    d2:f4:fc:c7:30:fe:af:cb:e7:6c:95:e1:46:28:5b:
                    76:8e:3f:60:6a:ae:a6:fb:3d:28:81:99:4e:01:ec:
                    a3:49:2d:6d:d3:9c:26:ec:e3:f0:d9:7c:d4:0a:c1:
                    a2:33:81:4d:3c:70:82:75:90:cf:36:10:11:2f:d8:
                    3f:2a:03:63:8e:f6:fd:82:c0:95:f5:20:8a:27:c8:
                    cd:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:D4:58:41:68:57:0B:94:69:7E:79:1D:1D:3C:30:E4:06:1B:0F:D0
            X509v3 Authority Key Identifier:
                keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:de:b4:0e:0c:37:cb:bc:b6:ab:8a:03:3b:ba:da:a6:eb:b3:
         1d:6f:36:79:03:a4:50:88:98:30:db:b3:27:be:39:91:32:e2:
         7a:b3:de:3d:cd:69:64:bb:73:a3:4e:99:7b:90:ee:74:46:fc:
         96:ed:c5:55:8d:b0:72:97:29:eb:b6:b9:a1:97:37:a3:70:02:
         f0:9d:4c:e3:a5:6b:f1:33:a7:a3:02:c1:7f:b4:10:e4:35:d7:
         5d:3c:2a:a2:ae:09:f2:99:7a:a2:cc:21:9f:62:9e:0b:ed:4d:
         b9:50:4f:5c:4e:fc:0a:47:5d:0f:b2:f4:0d:f8:71:27:55:a8:
         fd:7b:b5:78:67:7f:8e:56:01:99:22:86:4f:e2:e7:35:2d:8c:
         4c:12:da:96:ae:4d:db:89:26:d8:9b:42:b1:67:c6:5a:e1:5a:
         ef:8a:51:50:b3:ed:4c:38:45:eb:9d:ab:f5:fb:3a:05:59:af:
         6d:c5:a6:4d:aa:b3:2b:a2:54:8c:d1:b3:ae:0f:2a:77:aa:5d:
         29:19:31:0f:ab:97:57:a5:71:fe:41:bd:9c:b1:f5:81:a4:88:
         6a:d4:40:13:cb:bf:50:ee:86:a3:6a:2a:e2:a6:0a:59:39:d6:
         14:47:00:e5:ed:16:43:44:6b:62:60:81:71:3f:2d:83:c6:95:
         c5:2c:95:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:34 2026 by rpki-client