Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft
File:                     XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json)
Hash identifier:          GWsfDBiDDXEN7NM1FPz4kwGUMXh7DhJby2LsL2PD9lQ=
Subject key identifier:   77:80:07:64:AB:63:2A:7C:38:AD:EA:B8:B6:2E:BA:57:00:23:09:AD
Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45
Certificate issuer:       /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445
Certificate serial:       02E9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft
Manifest number:          02CA
Signing time:             Sun 05 Jul 2026 02:00:47 +0000
Manifest this update:     Sun 05 Jul 2026 02:00:46 +0000
Manifest next update:     Sun 12 Jul 2026 02:00:46 +0000
Files and hashes:         1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: Q5O/4XTHUMPZWXtyrP8JOalmZRERT/prnLm4EIWjQ38=)
                          2: 403C37D454EE11F18BF3D50DA0833773.roa (hash: CqiZbfQsdSr5WOK24+P608ghGihUdoFddSIGup2XQa4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl
                          rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 02:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 745 (0x2e9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445
        Validity
            Not Before: Jul  5 02:00:46 2026 GMT
            Not After : Jul 12 02:00:46 2026 GMT
        Subject: CN=6a49bace-07fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:34:b7:a0:7e:79:53:c4:10:f1:af:ef:9d:60:
                    78:7d:94:71:ff:14:de:9a:88:d2:83:b4:0d:2a:fd:
                    5f:14:45:a3:db:17:6d:c9:c3:ab:64:23:89:6c:ca:
                    cd:23:ba:5a:47:e2:17:52:77:ed:a9:69:a1:25:73:
                    4d:ac:ac:62:70:f9:02:c5:07:62:d0:03:79:ac:94:
                    7a:bd:5a:05:1c:44:c3:4d:c3:f8:c4:41:13:2f:98:
                    88:a0:99:27:b2:47:3a:05:9a:10:0a:70:0d:6c:2b:
                    ae:7b:b8:e2:d4:05:f9:6a:a2:1c:ae:ee:96:5c:94:
                    6a:9e:d4:c3:7d:57:cd:7f:10:e6:4f:f6:ae:73:cd:
                    97:2a:28:d5:56:60:b4:c1:58:8f:1d:2d:24:2d:c9:
                    6b:7e:98:9f:aa:a9:8e:96:c9:28:1f:21:0c:29:f1:
                    38:ba:22:a2:c7:03:31:62:eb:b8:3c:02:bf:04:8f:
                    27:b6:b8:0e:44:f4:93:30:e2:7c:9f:74:63:a1:8b:
                    f5:06:75:d6:4a:bd:54:f0:5c:3f:18:e1:f2:fe:bf:
                    13:dc:03:ba:c0:81:76:16:ec:e3:a9:61:7d:47:a3:
                    29:ad:b6:a6:09:d5:ff:1b:bb:58:41:9d:af:89:d5:
                    e0:56:6a:3b:ab:9e:17:fa:94:bd:a8:30:da:0c:24:
                    94:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:80:07:64:AB:63:2A:7C:38:AD:EA:B8:B6:2E:BA:57:00:23:09:AD
            X509v3 Authority Key Identifier:
                keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:d8:e2:55:fb:63:1d:eb:f8:87:56:50:8a:2e:26:fb:36:0f:
         39:05:14:d8:72:28:ff:bd:9c:40:c4:2e:b2:65:89:86:d3:2e:
         14:c7:85:4e:d3:55:97:5b:72:06:b1:89:de:da:75:06:1e:a4:
         a6:5c:ae:c3:62:9f:2d:30:84:72:42:41:ac:1c:3b:50:b9:03:
         94:64:39:5d:6d:b4:5a:55:c1:a5:86:ba:eb:f4:d4:08:c8:4e:
         a4:78:c6:01:03:1a:9a:b2:44:a9:27:68:f9:f1:62:5b:72:44:
         2e:76:35:02:1a:35:f0:3e:6e:7f:9b:75:ad:7a:ab:83:18:0c:
         cc:9b:df:6f:aa:ce:3e:7b:1e:7b:cc:a7:79:67:ff:7b:e2:78:
         bf:37:1a:24:5c:97:80:fd:1c:cb:dd:bd:05:56:b7:42:71:79:
         b8:d1:06:ca:64:28:99:25:62:99:23:72:32:33:89:42:13:dd:
         4e:12:a5:ba:b9:f6:5e:f4:6a:e7:50:5e:c6:6c:0e:98:b1:0c:
         c6:e8:47:b1:89:31:74:f8:cb:36:e8:af:c1:f6:43:84:50:63:
         1c:fb:26:94:ba:68:ca:7f:e8:d1:3f:e9:5e:f5:79:f6:89:40:
         85:0d:26:50:ad:0a:44:7a:d2:48:f6:35:19:29:bd:11:04:45:
         17:2f:ec:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:43 2026 by rpki-client