Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
File:                     oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json)
Hash identifier:          bdgDZmxYW+A3DSXyJ5OFLYTnRZ9LcFGwDrTj2QkMclc=
Subject key identifier:   16:08:81:45:1E:BB:B5:55:A7:BD:D0:6C:72:E5:4B:99:4B:A4:AC:CC
Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
Certificate issuer:       /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
Certificate serial:       024A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
Manifest number:          0223
Signing time:             Mon 02 Mar 2026 00:10:21 +0000
Manifest this update:     Mon 02 Mar 2026 00:10:19 +0000
Manifest next update:     Mon 09 Mar 2026 00:10:19 +0000
Files and hashes:         1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: 3yr5LAZnMj6SlQbzRCJx1gqNGZNLOnXoloSEQH1dW9c=)
                          2: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: KuP7ghPE5jbRo6RpIG8mjTF5foQeJCW+P2dt3dU5qe4=)
                          3: 803597528D5911F087734E0BC4F9AE02.roa (hash: qjwNHVxj8rh4p5dbVDJ7FmnGLRA0aF4pw1XtOGgQ9/I=)
                          4: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: O0Z9WR74ZqHIIViEx/QrJsLKy5xwDiS8tDAgBMROtv8=)
                          5: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: Df8chXaHVx7SlzUpc1kpONRIDx/OSWJIy+4OsePAPPY=)
                          6: D0103496FD6611EE9188C568C4F9AE02.roa (hash: 8jWtzjSsUygdzDOwuRDWbJ+/Oi0HeYvaJIf1pNwKDHM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl
                          rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 09 Mar 2026 00:10:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 586 (0x24a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
        Validity
            Not Before: Mar  2 00:10:19 2026 GMT
            Not After : Mar  9 00:10:19 2026 GMT
        Subject: CN=69a4d56d-3f60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:38:cc:4e:b7:0c:b7:39:8b:ba:9c:51:13:6c:
                    9e:87:b3:86:59:64:ca:2c:3a:7c:bf:2c:69:a2:eb:
                    53:35:51:b7:27:45:f9:dc:82:d0:c9:15:7a:a5:2b:
                    71:1f:6e:06:3d:a8:42:ba:bb:48:d8:4a:06:20:37:
                    11:4a:36:e1:20:92:06:e6:78:88:79:cd:b9:5a:04:
                    65:44:29:55:bf:fb:10:c5:2f:ad:ac:5d:07:ba:a6:
                    da:ae:47:e2:59:9f:a7:cc:ff:c7:16:11:4a:c0:aa:
                    ce:cf:c8:25:90:6e:ca:e9:d6:39:cb:31:48:7a:fe:
                    c4:c1:8d:db:63:df:67:eb:d5:83:d7:d7:57:5c:db:
                    3b:44:e0:92:97:00:49:8e:97:34:21:5c:e3:53:b7:
                    51:2f:a9:24:04:80:c1:be:8d:b0:03:99:19:93:5f:
                    95:7d:db:14:c0:b9:d7:e5:d1:21:37:2d:60:55:f4:
                    70:c2:d1:21:65:25:b0:bb:75:18:fb:2e:f6:ef:1f:
                    46:7d:8f:34:06:a6:d9:b3:0a:61:23:67:f9:d4:6e:
                    ea:90:00:eb:73:15:ef:57:56:21:98:d5:60:3a:80:
                    1c:e3:60:4e:2c:1c:5e:bb:2f:66:4b:30:a7:dd:ba:
                    ac:46:47:ca:d5:5b:a1:b3:29:06:d3:8d:a8:cf:8f:
                    92:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:08:81:45:1E:BB:B5:55:A7:BD:D0:6C:72:E5:4B:99:4B:A4:AC:CC
            X509v3 Authority Key Identifier:
                keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:1b:51:1d:f1:0c:ef:9f:1e:19:a9:42:e4:45:1a:9f:4e:9e:
         71:01:dc:05:09:61:2f:30:19:89:79:ae:4e:1f:68:90:2d:15:
         82:35:da:67:89:06:8c:06:19:62:e4:75:e5:91:a3:90:65:53:
         d6:94:b6:62:57:be:25:03:51:c2:1a:55:a7:d1:61:71:18:1e:
         75:91:d2:28:96:fd:43:4c:d8:f6:0f:99:46:94:fe:65:32:cc:
         6c:ea:a7:f6:d5:37:c8:83:e8:0b:1f:a0:52:e2:fd:cc:91:89:
         bd:32:e7:b7:60:e3:3a:b3:ef:22:7e:28:b4:7c:8d:32:fc:2f:
         3e:4c:b0:c0:62:ff:cb:98:d7:dd:fc:2d:06:e9:61:fc:66:aa:
         f6:88:f6:f9:2b:82:40:57:28:80:13:b5:ae:ff:ce:69:b7:86:
         94:12:00:bd:64:57:e7:46:33:ac:29:3b:26:03:5e:f7:a7:0b:
         24:e6:1e:2c:5b:2e:c4:5e:17:29:cd:cb:8f:31:86:81:85:e0:
         46:43:e6:75:8f:3c:a1:6c:d7:83:65:2d:f9:56:ac:4e:ac:21:
         dc:c5:aa:5c:4c:bd:97:84:c3:bd:84:d0:3a:15:c5:08:ea:fe:
         7c:fd:78:92:fc:68:ab:ca:54:6e:71:31:cb:f7:fe:de:e4:53:
         67:d2:79:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:18:45 2026 by rpki-client