Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft
File:                     imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json)
Hash identifier:          Oe73LVaQKoByEeCFBWJ3a16/qSE5X8/+f4cM0b4Pim4=
Subject key identifier:   79:59:97:06:F9:ED:96:A9:58:E7:2B:07:60:D8:39:FB:51:F4:E9:92
Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2
Certificate issuer:       /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2
Certificate serial:       2E39
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft
Manifest number:          2DB9
Signing time:             Mon 02 Mar 2026 15:35:59 +0000
Manifest this update:     Mon 02 Mar 2026 15:35:59 +0000
Manifest next update:     Mon 09 Mar 2026 15:35:59 +0000
Files and hashes:         1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: U9KXL9RmVywzUY2FqXMItZMIf7jaV46rW/yqntWY6QU=)
                          2: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=)
                          3: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=)
                          4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl
                          rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 09 Mar 2026 15:22:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11833 (0x2e39)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2
        Validity
            Not Before: Mar  2 15:35:59 2026 GMT
            Not After : Mar  9 15:35:59 2026 GMT
        Subject: CN=69a5ae5f-5c33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:2a:79:03:89:46:fe:85:90:c4:76:db:c7:a9:
                    8b:56:1e:e0:47:61:52:7a:0b:9f:16:72:ed:11:b5:
                    05:3f:fb:76:d1:19:63:b3:75:16:9c:13:3b:70:9e:
                    bf:83:e2:41:5f:14:ae:df:62:3c:19:aa:a5:06:65:
                    00:88:9d:9f:4e:f0:e3:4d:11:a3:98:2a:0b:35:9c:
                    4a:3f:de:ed:5e:ec:13:3f:2a:c5:8f:66:5e:8d:f6:
                    df:8a:47:01:d0:82:ad:bb:27:6a:78:7a:51:71:b8:
                    1b:77:91:65:ff:c3:e8:6c:f9:9f:55:63:1b:17:06:
                    06:0c:05:98:73:c1:dd:f2:80:6a:80:02:ee:7e:6c:
                    3e:0e:5d:a0:af:80:91:c8:12:06:72:60:81:d2:3e:
                    45:fe:89:99:4e:60:7d:bf:5c:61:5c:c9:81:3a:7a:
                    e3:0d:25:d5:77:8e:6b:20:02:5c:1c:1b:c0:be:6a:
                    84:89:e1:eb:b4:91:0b:50:ce:8f:e8:01:6b:52:be:
                    a8:13:6e:0f:8b:69:97:b9:b7:c3:4c:83:3b:3b:c7:
                    1e:cb:c3:71:b9:a6:60:db:ac:ca:02:25:83:cb:77:
                    11:48:ef:6a:f6:83:d0:7c:01:0d:c7:24:b5:31:76:
                    74:68:ce:01:be:ca:f2:c3:12:a5:a3:e9:28:6d:07:
                    d9:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:59:97:06:F9:ED:96:A9:58:E7:2B:07:60:D8:39:FB:51:F4:E9:92
            X509v3 Authority Key Identifier:
                keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:bd:ce:d0:2e:2b:d5:36:3c:65:0c:99:76:f2:9e:8a:0f:4d:
         08:1a:19:27:a3:22:5b:4a:b5:5d:77:1d:2c:28:90:28:2d:83:
         ae:11:4b:93:71:72:98:a1:9c:58:8b:34:69:1f:5b:2a:70:6b:
         22:f2:f2:4d:93:a6:3f:39:84:c8:06:28:c2:73:71:4a:0e:8a:
         c6:ba:88:8e:ba:a2:a0:7e:75:69:bd:6a:17:1a:4e:84:78:79:
         fd:9e:da:4f:8f:f7:fe:7f:92:4e:18:66:e7:f8:46:29:c6:25:
         2e:c9:f6:7b:1c:86:90:c5:9c:61:df:f0:8b:39:7a:a6:23:20:
         64:61:d2:68:c4:77:3c:e1:73:76:aa:3e:35:be:eb:57:d8:67:
         82:54:71:3c:54:73:a6:43:e8:d9:b5:78:1b:48:f7:86:23:82:
         07:72:ae:ee:c5:1e:8c:be:50:08:d5:6a:96:b3:6b:1b:e8:c5:
         b5:3e:9a:2a:a4:51:d0:6a:e3:fa:a2:ca:4c:3b:6e:c7:52:98:
         4f:4d:a1:dd:c2:e4:7b:fa:f0:98:68:75:22:50:87:b6:48:40:
         2a:4a:30:09:23:1f:a4:64:d7:fb:93:ee:d2:13:02:2d:36:3d:
         c5:e9:53:7d:e1:df:76:ab:8a:a0:6e:6d:6f:7f:74:1f:d4:9b:
         c8:12:f2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:01:09 2026 by rpki-client