Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
File:                     MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json)
Hash identifier:          Fu5ha7jWyYgQCXBzsZ9msRNvzOzvm2scOhJtAscsL04=
Subject key identifier:   6C:5F:1C:89:CB:85:13:70:C5:A4:D3:F0:9D:FB:FE:11:11:7D:14:E5
Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66
Certificate issuer:       /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66
Certificate serial:       015F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
Manifest number:          015B
Signing time:             Fri 17 Jul 2026 06:06:32 +0000
Manifest this update:     Fri 17 Jul 2026 06:06:32 +0000
Manifest next update:     Fri 24 Jul 2026 06:06:32 +0000
Files and hashes:         1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: OHNZIe54VosPB/jGPa4102Ojz9YOGylYFA7Wqrw0IiI=)
                          2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: jZ7jlvG+kbpMf5yr4kDr9NTPJvX7t9Ub5k4dGFxMqwU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl
                          rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:06:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 351 (0x15f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66
        Validity
            Not Before: Jul 17 06:06:32 2026 GMT
            Not After : Jul 24 06:06:32 2026 GMT
        Subject: CN=6a59c668-7d9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:1d:4e:16:6e:2e:d0:1d:e4:50:83:74:14:3b:
                    d6:ee:2f:c1:4f:a1:9e:c4:58:30:a1:e3:ce:2b:34:
                    67:15:1a:07:c8:30:b4:14:0a:42:bb:21:bb:af:17:
                    e5:19:a2:7c:0d:a0:30:86:5c:5a:e6:dd:df:63:79:
                    1f:b8:6d:82:1f:e0:87:6f:39:0e:e5:1e:71:cb:0a:
                    14:d7:67:49:86:10:4d:47:e9:79:9c:a5:df:13:74:
                    00:c6:c8:5f:41:13:bf:6d:ad:02:34:c6:2b:bc:2a:
                    72:76:83:9f:1b:0b:cf:e8:49:b5:97:ab:06:31:c1:
                    7f:16:ee:69:00:8e:78:0b:33:27:e7:7e:61:88:79:
                    af:ef:69:6e:20:20:a7:38:61:5a:f5:4a:05:de:26:
                    02:7b:eb:cd:64:57:e8:b4:09:de:47:36:ce:59:05:
                    1a:87:7a:0a:b1:e6:a0:60:be:66:ea:75:23:55:8a:
                    ed:d8:0a:ab:5b:5f:1d:2a:5c:82:3f:a4:e3:13:c9:
                    a7:5e:81:20:dd:c6:48:fa:e4:e6:17:a7:c4:89:23:
                    27:cd:6d:95:c2:47:b4:05:87:63:64:2d:be:4c:a5:
                    01:73:9f:0d:f4:e9:a5:d1:e2:0f:00:5a:f1:76:54:
                    f8:e3:99:b2:5e:25:58:53:c0:70:ac:ec:83:bb:90:
                    32:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:5F:1C:89:CB:85:13:70:C5:A4:D3:F0:9D:FB:FE:11:11:7D:14:E5
            X509v3 Authority Key Identifier:
                keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:83:e8:e1:5e:c1:a9:33:f0:45:6b:aa:ba:d5:eb:a8:ea:f2:
         0b:bd:58:11:c2:30:3c:4a:ed:de:01:ae:ff:4e:74:ea:e0:c1:
         96:f5:c8:c1:cb:a0:1f:2a:4f:22:4d:ae:a0:7c:53:41:b0:ea:
         39:f2:e1:30:8c:df:71:c3:8b:a5:54:7f:7d:1b:38:d3:01:58:
         2d:6d:33:e5:4b:35:fe:8d:57:10:be:8f:04:f8:dd:93:77:e9:
         1c:14:4d:c6:ec:9d:59:02:65:2f:73:06:3a:86:ce:ff:e6:00:
         ad:81:7c:29:53:5d:b8:58:30:7a:d0:d3:15:84:8f:23:da:8c:
         3e:f2:1d:cb:da:d1:80:a1:b3:5b:84:95:0f:02:1c:e2:00:6e:
         54:29:b2:da:20:3d:0a:d9:4f:f9:63:25:2a:15:b6:a0:ce:79:
         55:a8:77:b1:a0:92:0e:14:c3:e2:65:aa:c9:cf:b8:80:05:00:
         80:24:23:d5:a4:0e:13:10:05:bd:7f:72:16:a0:7d:76:16:b8:
         da:74:fc:26:5d:07:c1:07:79:cd:77:78:f4:0f:f7:56:62:63:
         7e:5d:d6:a4:e5:3b:3f:7f:8b:c9:b9:00:c5:b7:bc:eb:0b:0d:
         4e:a5:13:50:95:a8:ab:38:57:7b:c3:54:d3:bf:08:6e:1d:8e:
         a7:07:09:10
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz
MDAzMUNGNjYwHhcNMjYwNzE3MDYwNjMyWhcNMjYwNzI0MDYwNjMyWjAYMRYwFAYD
VQQDEw02YTU5YzY2OC03ZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1x1OFm4u0B3kUIN0FDvW7i/BT6GexFgwoePOKzRnFRoHyDC0FApCuyG7rxfl
GaJ8DaAwhlxa5t3fY3kfuG2CH+CHbzkO5R5xywoU12dJhhBNR+l5nKXfE3QAxshf
QRO/ba0CNMYrvCpydoOfGwvP6Em1l6sGMcF/Fu5pAI54CzMn535hiHmv72luICCn
OGFa9UoF3iYCe+vNZFfotAneRzbOWQUah3oKseagYL5m6nUjVYrt2AqrW18dKlyC
P6TjE8mnXoEg3cZI+uTmF6fEiSMnzW2Vwke0BYdjZC2+TKUBc58N9Oml0eIPAFrx
dlT445myXiVYU8BwrOyDu5Ay7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGxfHInL
hRNwxaTT8J37/hERfRTlMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD
N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6
MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS
WjM2REFUZkJCbGN3QXh6MlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAvIPo4V7BqTPwRWuqutXrqOryC71YEcIwPErt3gGu/0506uDBlvXIwcugHypP
Ik2uoHxTQbDqOfLhMIzfccOLpVR/fRs40wFYLW0z5Us1/o1XEL6PBPjdk3fpHBRN
xuydWQJlL3MGOobO/+YArYF8KVNduFgwetDTFYSPI9qMPvIdy9rRgKGzW4SVDwIc
4gBuVCmy2iA9CtlP+WMlKhW2oM55Vah3saCSDhTD4mWqyc+4gAUAgCQj1aQOExAF
vX9yFqB9dha42nT8Jl0HwQd5zXd49A/3VmJjfl3WpOU7P3+LybkAxbe86wsNTqUT
UJWoqzhXe8NU078Ibh2OpwcJEA==
-----END CERTIFICATE-----
Generated at Sat Jul 18 09:20:43 2026 by rpki-client