Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
File:                     D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json)
Hash identifier:          cC+nU389eXZnODmU4a/AhOFsWT9BNzHX4RXKS3NeUC8=
Subject key identifier:   A3:2E:1C:9D:97:90:36:8C:27:A7:5D:22:C4:9D:DC:64:D9:FE:90:1C
Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3
Certificate issuer:       /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3
Certificate serial:       013A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
Manifest number:          0134
Signing time:             Fri 17 Jul 2026 06:43:32 +0000
Manifest this update:     Fri 17 Jul 2026 06:43:32 +0000
Manifest next update:     Fri 24 Jul 2026 06:43:32 +0000
Files and hashes:         1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: gs66D7hJo/5QVZsZm0eWacTdPpADJSUwKAy1beItzlY=)
                          2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: oDbq8aHQpmwpTVbKMN5yg6duwCoRhyPVojQ6jr19VtY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl
                          rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:43:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 314 (0x13a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3
        Validity
            Not Before: Jul 17 06:43:32 2026 GMT
            Not After : Jul 24 06:43:32 2026 GMT
        Subject: CN=6a59cf14-31c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:4d:b7:c6:e4:2f:aa:e4:d1:7e:70:68:86:25:
                    0e:c7:9a:1e:24:79:85:62:00:85:9a:7e:ac:b6:33:
                    df:8e:26:cc:14:a5:b3:9a:ac:4f:76:c8:c7:bc:62:
                    67:11:4b:e9:f2:cf:94:58:e7:45:4e:88:64:3f:34:
                    bd:95:3e:3d:f1:da:56:dd:3c:7b:ac:8e:1b:0c:4a:
                    62:0d:50:c0:f2:4a:a8:70:fa:2b:df:1b:96:40:5e:
                    cd:23:73:9b:8b:e7:26:11:0e:c3:77:41:ab:40:69:
                    46:8e:db:bf:a7:eb:97:b0:99:4b:65:07:37:b9:38:
                    e1:fe:78:78:4c:34:e6:bf:fa:92:e6:75:76:0c:78:
                    da:d1:38:4b:a5:47:a3:7f:fa:b0:47:24:2b:43:99:
                    c2:d9:e1:7c:36:71:64:18:c0:e6:a6:04:5c:b3:b9:
                    b0:30:1c:66:c2:38:58:3f:08:b0:d5:cb:0f:80:a7:
                    cd:47:a0:11:0e:7d:47:03:75:d9:9d:de:f3:9f:f7:
                    12:e2:d0:15:67:20:61:da:02:e6:1a:ba:90:5b:31:
                    eb:e3:55:3b:7e:3f:ac:0f:f4:21:d0:aa:05:50:89:
                    b0:f1:44:85:81:82:62:bf:87:40:70:aa:7a:2d:fd:
                    4a:7c:e9:66:48:cb:48:aa:f5:b9:44:c2:8c:db:9f:
                    d2:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:2E:1C:9D:97:90:36:8C:27:A7:5D:22:C4:9D:DC:64:D9:FE:90:1C
            X509v3 Authority Key Identifier:
                keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:c6:6e:d1:bf:16:5c:9a:7b:8b:37:c4:a9:7a:b2:59:1c:74:
         fa:80:78:7a:db:1b:ab:2e:ef:6f:9e:b5:72:54:49:79:8e:6e:
         89:c1:87:af:36:c5:30:4f:b2:3b:1c:cc:19:bc:03:9b:d5:a8:
         37:3d:f9:0c:4f:ff:01:65:7d:64:82:87:bc:7b:f2:d1:be:01:
         91:84:d3:27:39:c1:6e:d8:33:66:05:87:1a:fb:5b:a0:c7:65:
         c0:b9:59:d4:79:2c:6c:60:66:ed:77:da:bc:86:1a:6f:82:5c:
         ab:c8:4c:6d:2d:86:a8:05:ec:e6:1e:64:12:96:d7:9b:42:08:
         e3:ff:82:60:50:9f:3c:8a:73:08:f8:04:53:10:8f:04:30:49:
         83:79:db:d7:06:86:e7:8b:a7:51:cb:e9:ca:d6:1f:44:9a:d3:
         e7:92:68:06:00:be:5a:9e:a7:d6:fa:84:5f:20:b0:25:e5:15:
         1b:e1:81:a1:84:e0:60:f9:a1:7b:bc:66:26:36:3f:6c:34:64:
         0b:07:70:16:1e:ba:71:65:5a:d5:40:ab:11:6a:e8:df:38:38:
         ec:31:98:f7:d4:8d:20:15:44:84:49:f4:a2:08:71:89:1c:53:
         fb:ba:cc:1e:ba:e3:8f:b6:a3:03:04:25:4d:85:59:04:d5:4d:
         8e:20:83:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:20 2026 by rpki-client