Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft
File:                     UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json)
Hash identifier:          x4aUl9CT+DNut+h9O0BM+Ne9qhVwVITnlv/MMSLx3nc=
Subject key identifier:   35:77:B0:5C:ED:E3:65:4C:D7:1F:6B:A2:67:94:0C:65:74:9A:2E:4C
Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D
Certificate issuer:       /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D
Certificate serial:       95
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft
Manifest number:          8B
Signing time:             Sun 01 Mar 2026 09:00:28 +0000
Manifest this update:     Sun 01 Mar 2026 09:00:28 +0000
Manifest next update:     Sun 08 Mar 2026 09:00:28 +0000
Files and hashes:         1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: Nx+c+X00VjFWZNfAfE9a9EHU7qcpcQ03PUkEkP20sIE=)
                          2: C577E392D0F711F0BC02385AC4F9AE02.roa (hash: A/1e58q+MdxskPknGiwVRXPIcLRGBTcwWKriVPbQ9n4=)
                          3: E5E9F8B8D0F711F0ACA5A85AC4F9AE02.roa (hash: L+R5MmpKGufoqG5JJ77d6wpZuVDjwC3CDe/wMrgik6c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl
                          rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 08 Mar 2026 09:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 149 (0x95)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D
        Validity
            Not Before: Mar  1 09:00:28 2026 GMT
            Not After : Mar  8 09:00:28 2026 GMT
        Subject: CN=69a4002c-fe08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:a4:b1:e7:5e:d9:13:c8:67:ed:6b:31:17:92:
                    ed:87:c8:2e:a2:ab:cd:c4:70:26:3c:14:6c:b4:68:
                    78:f0:4d:ed:38:43:71:e1:53:3a:aa:8d:f9:97:c7:
                    c8:e8:e6:1e:86:05:48:2c:30:0e:b9:0e:05:43:12:
                    85:36:cc:12:ee:da:16:5b:dc:91:ef:bc:8f:bc:82:
                    e2:42:bc:10:c2:32:65:ad:72:6b:a7:f2:bd:ca:27:
                    28:93:9b:56:35:6c:6b:bb:71:49:c9:20:12:7a:4a:
                    71:50:87:28:d2:09:ba:76:f1:c6:17:68:43:53:96:
                    18:55:a7:40:7f:6c:c9:8d:51:b5:03:a0:c9:f2:78:
                    ec:6f:66:9f:ea:96:98:24:75:c8:6b:0b:97:9a:b5:
                    fd:18:35:1b:01:c4:51:83:58:e0:30:dc:23:e1:14:
                    76:2d:5b:ad:39:b6:1d:31:c0:e0:d9:2c:b4:9c:b6:
                    fd:ba:24:89:44:cd:28:db:5f:22:a3:68:98:f6:3f:
                    66:3b:56:4f:ec:3c:5f:c4:30:31:7c:05:41:03:b7:
                    05:ef:25:e8:2d:66:8e:9d:89:7e:c5:a0:19:73:86:
                    61:20:8f:b8:b4:a3:90:76:61:d9:23:6d:4b:c7:e4:
                    4d:dc:9c:b6:9d:77:b1:03:6e:b5:04:cb:75:0a:d9:
                    e5:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:77:B0:5C:ED:E3:65:4C:D7:1F:6B:A2:67:94:0C:65:74:9A:2E:4C
            X509v3 Authority Key Identifier:
                keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:75:e2:cb:1e:52:32:ff:9c:34:39:db:08:31:8f:56:56:dd:
         ab:ba:6f:4f:13:ab:eb:b2:94:b9:59:c4:77:c5:b3:65:07:f9:
         3f:a4:0e:bd:d6:c4:0f:7d:a0:e4:3d:fc:0f:f6:8b:07:5d:ed:
         ef:c6:73:df:d3:36:c3:00:70:74:7f:22:86:1f:1c:11:38:f8:
         a7:92:88:5d:da:1b:58:a3:94:ae:90:0e:6e:35:20:b7:da:21:
         79:18:d8:30:99:53:ce:4d:a2:8c:93:d0:ee:c7:49:f7:e8:30:
         87:8d:bf:d5:3a:27:35:3a:77:4d:2a:fe:db:46:a4:52:16:f6:
         eb:7b:fa:ed:b9:d8:30:40:3f:c7:05:4e:5e:0c:00:01:f6:61:
         20:23:88:c2:d6:1f:77:ad:71:23:90:33:a4:0b:97:03:82:72:
         72:6f:17:14:86:38:ee:5b:45:2a:ea:f6:98:6e:63:2f:14:ff:
         2d:97:20:59:de:dd:ea:9c:bc:19:89:9c:ea:61:f1:f4:39:01:
         c6:00:74:47:51:60:ca:84:04:de:9b:23:e9:e8:54:b4:91:24:
         8c:27:52:43:ff:1d:70:13:c4:e2:7d:f1:df:f5:8c:eb:a4:95:
         cd:20:f3:ab:a6:6b:10:45:b7:d9:fc:40:6d:3e:4b:90:8f:a8:
         54:74:63:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:37:39 2026 by rpki-client