Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft
File:                     aMIYjATCDkkjq7YttIckmDVLSv0.mft (raw, json)
Hash identifier:          s86drleLea253bLVMDQOZEXb+wnWADy84V/FLJ52E4E=
Subject key identifier:   0C:2E:25:4B:C2:EB:00:AA:CF:04:20:0D:5E:06:CF:78:E6:44:71:7B
Authority key identifier: 68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD
Certificate issuer:       /CN=A911750B/serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD
Certificate serial:       D0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft
Manifest number:          CE
Signing time:             Fri 17 Jul 2026 07:58:05 +0000
Manifest this update:     Fri 17 Jul 2026 07:58:05 +0000
Manifest next update:     Fri 24 Jul 2026 07:58:05 +0000
Files and hashes:         1: aMIYjATCDkkjq7YttIckmDVLSv0.crl (hash: FlHPlStNHKfuj8ObjVEckGu0upwZZ7TSlakiLfOO3uk=)
                          2: CC9D872A468D11F0A82C5E5EC4F9AE02.roa (hash: 53IvHKTdXwEXSRnOFpf3vxlzT+INgjItjJHDBhfEtMI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl
                          rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:58:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 208 (0xd0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911750B, serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD
        Validity
            Not Before: Jul 17 07:58:05 2026 GMT
            Not After : Jul 24 07:58:05 2026 GMT
        Subject: CN=6a59e08d-17ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:cd:e4:d0:e1:72:59:b3:bb:60:45:47:e6:66:
                    bc:ff:0a:8d:fb:21:d9:cd:91:52:04:7a:11:02:d6:
                    16:a0:30:24:6c:7e:34:dc:20:0c:74:e1:47:0c:29:
                    2f:82:4e:ee:b1:c2:54:2d:e6:b0:63:a4:87:e6:ad:
                    5f:c8:c1:2a:20:bf:25:3a:95:10:5a:d7:97:ab:c2:
                    d9:06:05:3a:d9:84:05:11:1d:ed:62:9d:f4:73:db:
                    a4:0f:fd:db:af:24:c3:9d:ed:7c:55:78:e7:50:37:
                    f6:72:3d:3c:7c:74:9f:dd:bf:a5:f8:56:a7:cf:bf:
                    e1:8e:c5:1f:94:08:c9:3b:01:3c:13:1c:34:3e:3b:
                    ce:dc:cd:30:07:ee:ff:3c:b2:c2:14:82:24:28:84:
                    76:47:08:4e:ec:23:e6:92:4b:5d:cd:be:9d:15:f3:
                    ee:2e:6c:a7:8f:02:06:eb:2f:00:6f:2c:32:a4:25:
                    88:78:39:21:91:68:0d:2e:d5:1a:d3:16:eb:6d:5d:
                    57:57:98:af:47:e9:28:ce:9c:c2:68:03:6c:9c:e2:
                    ca:9f:a3:a6:f2:a5:09:5a:08:58:80:71:ca:3a:6a:
                    1a:5f:a9:cb:af:c6:55:53:a1:dc:06:35:e7:67:1f:
                    67:2b:58:46:4d:69:34:a4:18:a4:b9:da:f6:f9:f3:
                    4f:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:2E:25:4B:C2:EB:00:AA:CF:04:20:0D:5E:06:CF:78:E6:44:71:7B
            X509v3 Authority Key Identifier:
                keyid:68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:92:6f:9a:ec:86:b9:00:c4:70:09:86:9a:ab:95:bb:69:9c:
         64:1e:71:ee:02:c3:a1:09:08:7f:3b:13:95:04:07:b2:b7:ad:
         7c:d1:c2:64:1f:1c:27:30:98:f6:dc:9d:ea:9c:2f:a9:8b:7b:
         f9:15:58:c0:c5:c7:d3:42:bb:09:64:9d:da:58:61:67:e8:6d:
         fd:27:74:09:f7:33:6e:32:7f:43:f5:67:bd:1f:f8:3a:fc:ae:
         13:85:87:9c:7d:2f:41:bc:44:88:e4:65:9b:ec:e8:6f:37:aa:
         e1:97:d7:d4:93:20:68:d7:f3:b2:92:6f:35:23:fa:ac:ec:57:
         9a:2d:4b:6f:00:ed:e7:59:f2:b4:f3:a5:4f:29:8d:21:dd:0c:
         49:bd:8e:a8:1c:44:a1:25:82:e0:8c:cb:32:62:a1:e6:7a:d7:
         a0:1e:be:78:87:b7:8e:9c:41:4c:a4:81:29:e2:33:a2:7e:61:
         6a:6a:56:6b:22:7a:6e:51:40:c6:86:9c:a2:0b:bd:9d:8d:35:
         17:be:44:eb:7b:63:4c:af:26:75:9d:71:04:2b:eb:7c:aa:fc:
         8e:f3:0d:ff:f5:7a:28:26:31:70:0a:34:aa:f6:d1:cb:ca:22:
         8e:85:fc:5c:6e:71:a8:05:6d:77:d1:91:d6:5a:1d:18:5b:0c:
         ef:06:75:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:32 2026 by rpki-client