Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft
File:                     Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json)
Hash identifier:          v7CQLwiGjn7RMFNXbJdilHGZN+NnPIJWd0uHzwDOhLQ=
Subject key identifier:   98:03:CA:CB:7A:7D:94:5E:32:77:30:61:D9:30:E6:9C:5C:0D:6C:F9
Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43
Certificate issuer:       /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043
Certificate serial:       0104
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft
Manifest number:          0100
Signing time:             Tue 07 Jul 2026 07:18:06 +0000
Manifest this update:     Tue 07 Jul 2026 07:18:05 +0000
Manifest next update:     Tue 14 Jul 2026 07:18:05 +0000
Files and hashes:         1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: zusJ+qonoQrN6Bjcf4MggYOcJuSB4naLcemTPXHhTeI=)
                          2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: oaeasOGheSroKPV3LiPVQfpD09ef36G8xHY2SVCQJWs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl
                          rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 07:18:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 260 (0x104)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043
        Validity
            Not Before: Jul  7 07:18:05 2026 GMT
            Not After : Jul 14 07:18:05 2026 GMT
        Subject: CN=6a4ca82e-0ab2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:d3:32:04:b6:93:61:5c:e5:5f:ba:d2:87:0f:
                    a7:33:f0:a7:88:8b:c9:ca:2e:37:8b:57:4c:89:df:
                    ea:85:55:12:45:13:21:a7:1a:02:91:5c:cd:bb:7f:
                    10:83:cd:c8:99:32:6c:25:3c:ee:da:3d:83:a7:e1:
                    14:60:8a:68:40:56:32:e7:70:54:9f:1f:5c:51:f2:
                    52:fa:4b:e7:b6:df:b0:ce:60:22:e8:f9:d7:d5:3e:
                    da:53:8e:01:be:f7:ff:4e:fb:13:1c:0c:7f:ba:c5:
                    0a:e6:aa:c1:b8:4f:44:5c:8a:a4:33:16:d6:1c:40:
                    06:02:22:5c:97:39:03:e4:f8:c3:d9:ae:2c:cd:fb:
                    b4:82:39:17:4e:84:62:6c:50:7b:b7:06:30:50:39:
                    56:1a:f8:81:fc:f6:59:25:7d:6e:c2:5d:df:44:dc:
                    16:a7:48:38:e3:61:2c:ad:6f:5d:bc:2c:fc:bb:96:
                    68:1e:0e:01:a8:fd:0b:64:1e:6b:06:0d:00:88:de:
                    66:5a:13:af:88:8a:c1:c0:3e:82:6c:06:33:19:cd:
                    e5:6a:7e:35:71:07:96:cf:9c:59:8e:e1:d5:65:54:
                    64:d3:f9:50:c1:8f:43:ad:c5:2f:14:b7:a0:cc:9d:
                    9c:1b:99:0b:7c:e1:9d:d4:bd:05:37:18:53:40:73:
                    a6:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:03:CA:CB:7A:7D:94:5E:32:77:30:61:D9:30:E6:9C:5C:0D:6C:F9
            X509v3 Authority Key Identifier:
                keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d3:cf:dd:cc:db:88:cb:55:0a:4f:f3:38:53:c2:e8:4a:08:6a:
         8c:d3:dd:bf:92:76:11:a6:ea:07:ee:ef:ac:b6:28:21:e2:16:
         70:eb:6e:39:5f:34:9d:4a:20:6d:ac:fe:1f:eb:b6:7f:c7:fb:
         09:2b:d2:c7:29:fa:c7:56:79:70:96:aa:2c:a4:4a:d3:54:92:
         d6:e0:91:a9:9c:f2:2d:9a:2e:dc:3e:c3:f7:06:2d:2c:c9:23:
         c3:80:b1:a8:6b:ee:57:90:5a:b2:2a:0d:72:e4:5e:39:eb:cd:
         57:8b:19:89:b4:df:eb:28:52:ef:a0:4e:d8:63:13:03:dc:7a:
         0d:95:fc:eb:18:b3:10:a5:b4:72:e8:6f:a4:c6:27:32:98:9d:
         2a:62:15:24:45:dc:f4:30:f5:5e:ad:9e:3b:b6:95:27:42:e3:
         4d:1e:bf:07:88:b4:84:f9:a6:99:fe:4d:1d:6c:20:50:21:d7:
         48:d1:c9:69:0a:d3:06:4a:e8:05:63:81:0a:98:24:11:ba:6f:
         bc:33:10:0b:60:c6:11:c6:ca:d6:4d:ed:83:6f:99:05:d0:f5:
         7d:1c:0c:12:b7:88:b4:01:e8:bb:f2:70:85:41:2f:5a:47:91:
         c5:a5:4a:13:9f:cd:39:2b:68:f6:bc:7e:27:06:89:c8:c7:13:
         5b:4e:11:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 20:46:01 2026 by rpki-client