Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
File:                     bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json)
Hash identifier:          PXtEPjW1iu4N0dH7wzSgcYzjO7nkdQGljfStl7Gh6Ok=
Subject key identifier:   84:BA:6A:6C:67:95:2E:0D:C5:A3:CF:0D:EB:D3:42:4B:F4:85:DC:C5
Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6
Certificate issuer:       /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6
Certificate serial:       198F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
Manifest number:          1976
Signing time:             Fri 10 Jul 2026 16:30:30 +0000
Manifest this update:     Fri 10 Jul 2026 16:30:29 +0000
Manifest next update:     Fri 17 Jul 2026 16:30:29 +0000
Files and hashes:         1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: y1CNPO8aAVooPnaypMCW/4MJjSbjq3ztXTWcI/tvYQk=)
                          2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: d+TSvpxly3k8El4+pV6d2wdav1wdXrK2Z6zZMFeDKxk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl
                          rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 17 Jul 2026 16:30:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6543 (0x198f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6
        Validity
            Not Before: Jul 10 16:30:29 2026 GMT
            Not After : Jul 17 16:30:29 2026 GMT
        Subject: CN=6a511e25-fb1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:6c:5b:6f:f1:bd:5f:4a:19:ee:ee:75:d5:d6:
                    ea:9d:09:1c:f0:64:63:a5:96:0e:62:c2:e2:90:fb:
                    6d:8b:9a:3b:84:9d:c1:14:84:35:0e:e7:06:c0:42:
                    b0:18:ef:0e:a8:37:59:1e:bb:7c:74:e4:ce:bd:b1:
                    c0:12:b4:28:d8:db:45:4a:64:1b:ec:f2:32:25:19:
                    39:ff:2b:56:5b:35:cb:d9:c1:86:5a:d9:c9:8b:b9:
                    85:3a:b9:c6:6f:7c:10:bc:c7:61:e1:9b:06:37:f9:
                    be:6a:d9:45:c5:e2:a6:31:3b:7a:de:ed:77:cc:de:
                    ed:b6:0d:4a:02:c8:37:d5:53:86:b6:33:10:2c:ff:
                    81:fc:b2:dd:e4:51:82:80:49:aa:b5:41:7f:bb:83:
                    28:a7:d8:b8:7c:45:2c:26:0d:c6:e2:38:3c:3c:f5:
                    79:15:fe:37:7c:60:3f:72:2b:90:be:29:f2:eb:9b:
                    81:e6:53:e1:44:e7:85:31:a2:96:a1:d0:7e:60:47:
                    5b:b9:ae:70:4e:f9:56:e2:a2:5b:89:4e:dc:50:57:
                    77:c7:40:6a:54:27:02:33:b2:1b:db:ec:fe:8c:a2:
                    04:ce:5b:33:23:25:5a:16:54:03:4f:d2:f8:ef:83:
                    65:b3:7d:d2:72:ca:58:6f:e4:0a:cc:70:3b:9d:69:
                    46:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:BA:6A:6C:67:95:2E:0D:C5:A3:CF:0D:EB:D3:42:4B:F4:85:DC:C5
            X509v3 Authority Key Identifier:
                keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:fe:7a:e8:3d:5b:a2:d8:6e:fd:8d:ec:16:9c:28:b4:26:3d:
         17:f6:91:b2:08:30:b2:b0:98:82:98:7a:fe:bc:6b:de:59:cc:
         c8:cd:6b:5a:28:1d:31:8d:01:de:f3:72:88:f5:e4:c3:15:6d:
         1d:3b:1c:81:29:42:c1:14:97:ab:2a:0c:07:f8:f4:cc:3a:07:
         9a:20:d7:59:f4:0b:8c:cb:92:c9:77:cd:73:5f:c6:fe:a0:4b:
         35:ec:25:47:a9:4c:0b:b1:34:27:f5:c5:aa:be:14:bc:d6:14:
         1c:b2:d1:79:c0:ae:77:48:33:64:34:ac:f8:15:99:e6:86:3b:
         45:de:91:bb:51:48:ac:be:03:58:8f:fa:7e:e5:9f:d7:bf:1c:
         b6:76:56:52:fb:41:e2:c6:33:ff:bb:b5:51:47:d0:5b:52:81:
         f0:c0:e7:0d:2b:05:cc:0c:ab:3f:62:4f:f5:ab:2f:ec:35:10:
         ba:1a:d2:71:15:21:f8:da:94:07:45:df:9e:e1:fb:6b:02:8d:
         71:4e:0e:73:92:56:62:47:64:3b:bc:4d:b6:5f:95:6c:e4:3b:
         7c:86:2b:71:6a:26:07:55:8e:18:d0:2b:b2:e7:13:b2:1f:74:
         26:f3:2c:d5:b7:25:71:cc:7a:32:d9:c5:97:4e:b4:60:2e:5a:
         37:52:31:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 16:51:55 2026 by rpki-client