Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
File:                     5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json)
Hash identifier:          66pEu6TpKybdUwIfiHbFk+yLEzIcnhtJVEFlQP7rQTQ=
Subject key identifier:   E4:81:88:F9:DD:70:81:FF:93:BC:65:87:61:CF:49:B1:CB:E5:37:D9
Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE
Certificate issuer:       /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE
Certificate serial:       07D8
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
Manifest number:          2320
Signing time:             Thu 16 Jul 2026 15:58:01 +0000
Manifest this update:     Thu 16 Jul 2026 15:58:00 +0000
Manifest next update:     Thu 23 Jul 2026 15:58:00 +0000
Files and hashes:         1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: jlcNx7CeUR6E7h7pnuiFaaWWy2fWuJOTvnuqyWmNr7U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl
                          rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:57:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2008 (0x7d8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FCEB1, serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE
        Validity
            Not Before: Jul 16 15:58:00 2026 GMT
            Not After : Jul 23 15:58:00 2026 GMT
        Subject: CN=6a58ff89-50ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:08:69:02:25:68:58:c4:95:31:77:8d:ce:ca:
                    cd:40:42:0b:7f:7d:b7:fe:39:ab:73:b3:4c:b6:61:
                    9d:ab:4b:c7:8e:b0:99:31:ef:73:ac:7b:33:b0:a2:
                    69:e5:59:ce:41:30:be:42:f3:ca:3d:1a:39:fe:2a:
                    67:d2:50:59:f9:ee:0f:d4:48:17:19:c6:54:3e:24:
                    54:d0:ac:53:d6:54:98:ac:fe:03:87:c8:3e:bd:c4:
                    2d:9d:d5:b5:aa:b0:3d:1f:14:9a:c3:e4:64:15:2e:
                    cb:f0:39:68:e1:3a:b9:19:ab:e8:fd:9f:34:72:df:
                    a0:64:1a:fb:3b:ef:0a:45:bf:f8:a6:89:05:73:72:
                    5d:3e:12:f9:a5:c8:eb:1c:e2:51:4a:5b:04:b9:40:
                    77:28:3c:41:a0:18:e3:9a:ce:6b:10:37:f8:4e:a2:
                    ee:6d:ea:01:ac:44:8d:6f:16:e3:92:99:7e:6f:de:
                    1f:d7:07:62:9f:d5:9d:76:5d:a9:33:d4:64:2c:bf:
                    fc:69:1f:aa:bb:c0:3e:d0:94:2a:14:2b:2f:37:10:
                    26:04:89:21:d3:f3:bb:40:e9:94:9f:56:0e:41:8a:
                    d1:9c:d6:9e:89:dd:84:ae:12:a6:d3:4e:48:7b:3b:
                    3e:49:63:6a:b4:8d:d5:ce:ff:7f:f0:93:8f:e5:f0:
                    a9:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:81:88:F9:DD:70:81:FF:93:BC:65:87:61:CF:49:B1:CB:E5:37:D9
            X509v3 Authority Key Identifier:
                keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         e2:68:84:3d:59:6f:b4:55:df:7f:24:9d:80:80:d2:99:24:79:
         ac:3b:35:05:e1:ac:c4:0a:b6:34:ab:7c:43:af:58:91:34:02:
         85:eb:73:14:e6:17:60:67:47:1f:67:ff:18:59:c7:6c:43:b8:
         14:e3:78:8c:05:1f:35:12:19:d3:27:87:cf:89:15:53:a1:fa:
         b7:01:18:1f:6b:28:e3:16:bd:af:d7:1a:00:4d:28:3a:09:12:
         e3:40:e4:97:84:ee:d3:0a:b6:f9:10:16:10:d3:7c:85:12:fe:
         51:04:9f:80:5a:3a:31:50:f5:5f:ca:b9:9c:e8:39:70:52:a6:
         d7:d7:1b:61:2e:58:28:8f:b7:a4:4d:52:90:95:7d:f3:ba:07:
         59:4d:e0:04:65:2f:16:5a:6e:c9:d0:85:9d:4a:46:dc:31:50:
         91:c3:46:75:73:3a:82:1c:6f:e7:77:ed:cc:60:17:29:9f:64:
         20:d2:78:1d:6a:5b:ab:7e:39:5a:d9:1d:58:2e:57:31:8c:16:
         a2:c7:36:d8:0c:fc:41:39:94:27:30:8c:dc:71:b6:a6:7b:e2:
         9c:8d:41:04:38:87:ca:8b:a2:08:54:f4:ba:35:85:db:be:2d:
         09:35:c1:71:e5:53:92:d2:cb:da:2f:33:83:4a:db:4d:70:8d:
         a2:a5:b3:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:45 2026 by rpki-client