Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft
File:                     PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json)
Hash identifier:          GeLFVNhnfPNwHBq+GBFUQSudMYO/gFSjLXPcuaxGH+4=
Subject key identifier:   DB:EA:48:A2:ED:ED:C0:D6:DD:D2:CB:4D:91:0F:EB:17:AD:27:29:5C
Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25
Certificate issuer:       /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25
Certificate serial:       0258
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft
Manifest number:          0251
Signing time:             Thu 16 Jul 2026 18:57:41 +0000
Manifest this update:     Thu 16 Jul 2026 18:57:41 +0000
Manifest next update:     Thu 23 Jul 2026 18:57:41 +0000
Files and hashes:         1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: EJ2SeUdpSE6Rna7ZJeyY0D+lz91sC8DjTjfmsQhFWFE=)
                          2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl
                          rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:57:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 600 (0x258)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25
        Validity
            Not Before: Jul 16 18:57:41 2026 GMT
            Not After : Jul 23 18:57:41 2026 GMT
        Subject: CN=6a5929a5-2370
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:76:67:cd:6b:ba:00:17:9c:ce:c1:d0:e3:ad:
                    95:43:92:f7:e1:c8:da:30:01:cc:47:1a:06:53:98:
                    94:e2:b7:78:24:c1:74:47:49:54:e6:98:64:0f:39:
                    5e:32:9f:67:d3:40:53:a9:07:cf:65:36:20:53:9f:
                    68:0a:22:3f:c6:b4:51:6f:54:2b:98:d3:de:10:7d:
                    a7:7d:97:52:7f:0d:f5:b7:68:02:50:02:2d:0f:d0:
                    62:9a:df:b5:c5:4d:b4:41:29:0c:1c:ad:33:fb:dd:
                    32:f6:fd:1c:2a:4b:5f:90:46:a9:17:0f:70:3d:c5:
                    71:3c:b0:f9:f6:45:41:99:36:84:30:10:6b:b3:36:
                    ef:4b:fb:ac:81:d2:f9:d9:4f:8e:11:41:65:f6:f7:
                    98:9b:65:12:26:7e:98:4a:7c:2a:b7:a8:3f:7c:00:
                    88:3c:ff:33:93:d1:c4:d4:1f:63:0c:d6:be:97:5c:
                    4d:72:e2:7c:fc:24:69:19:96:43:2d:a8:78:81:42:
                    f5:ce:75:ec:4f:ce:f3:9e:a6:dc:73:88:95:ef:43:
                    49:79:9d:14:70:9b:c0:ba:85:bb:93:43:f7:f0:2a:
                    4e:c0:72:1f:db:1c:c4:b3:6e:ee:13:de:bd:8d:0a:
                    27:42:84:e7:14:18:97:48:02:ce:63:10:b6:c1:6f:
                    e0:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:EA:48:A2:ED:ED:C0:D6:DD:D2:CB:4D:91:0F:EB:17:AD:27:29:5C
            X509v3 Authority Key Identifier:
                keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:7c:da:d6:97:5b:b8:73:70:20:e2:7c:8c:41:02:95:42:7e:
         df:8c:e5:2b:a0:c7:4a:4e:c3:be:17:b1:c5:af:ea:33:ef:e5:
         1d:2e:83:88:06:3b:75:35:5d:cd:0c:22:59:81:68:c8:3d:ef:
         a5:77:69:fe:05:df:b0:39:03:b4:f7:12:37:2c:84:7a:39:c1:
         f2:14:c3:9c:80:2e:5a:8f:1a:45:ba:da:dd:47:9d:62:28:19:
         6b:b6:1f:3a:18:16:19:8f:9f:9a:66:35:0b:c8:af:97:ef:bc:
         ca:d1:22:57:ea:cf:cb:f5:40:44:e5:dd:55:c0:b9:00:af:cc:
         02:99:c0:94:08:cd:31:04:14:25:e9:f8:fd:c6:c7:d3:0d:b8:
         e3:7e:54:d7:0a:2a:5e:d1:ec:86:2f:81:bd:d4:9f:c6:10:ba:
         64:d5:b8:91:b9:08:80:f0:16:62:f5:fb:6a:ba:74:e0:90:a3:
         8e:6e:77:73:10:f5:a5:4f:32:3b:fa:b5:c9:0b:cb:2a:42:4f:
         45:e3:57:fe:74:fc:ba:b9:79:3b:a7:0a:a7:94:8e:8b:49:2c:
         92:9c:e5:28:1a:a3:a5:ca:12:d2:3d:cf:c9:a7:14:eb:9f:c7:
         c6:53:9b:02:93:4d:2a:a3:a4:95:8e:12:17:b2:c1:cb:32:d0:
         07:7f:ec:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:10 2026 by rpki-client