Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
File:                     diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json)
Hash identifier:          UF47vJv9HDbcHDbLgvqeF+RHdnI76TWQF90tbkW5UbI=
Subject key identifier:   4C:66:29:C6:1B:E3:CF:64:79:38:0D:3E:5E:08:2A:9F:10:9A:5E:AA
Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC
Certificate issuer:       /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC
Certificate serial:       0121
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
Manifest number:          011D
Signing time:             Fri 17 Jul 2026 07:01:16 +0000
Manifest this update:     Fri 17 Jul 2026 07:01:16 +0000
Manifest next update:     Fri 24 Jul 2026 07:01:16 +0000
Files and hashes:         1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: 2Kx+MpbgHbXxHjr1eZ76ZmE8e90Cm7Jbyv1BajeMU4M=)
                          2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: Duer1WVGQHeYZI/Azd1wOhsGz2PF1wG4VU8KdNzFWQc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl
                          rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 289 (0x121)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC
        Validity
            Not Before: Jul 17 07:01:16 2026 GMT
            Not After : Jul 24 07:01:16 2026 GMT
        Subject: CN=6a59d33c-15e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:b2:83:7c:dd:34:6c:9a:ce:03:f3:80:4a:04:
                    b3:45:6e:46:e9:ed:ff:65:4e:cf:89:b9:b2:6d:49:
                    7e:08:bd:c1:05:28:bc:68:cd:51:23:b2:01:fd:ef:
                    47:26:87:eb:b4:03:ac:c0:38:58:e5:07:53:db:dc:
                    91:18:e6:05:a6:d3:5d:9e:1a:6e:e1:c2:b2:63:28:
                    f9:a3:d7:c1:eb:eb:4a:cb:59:28:10:5c:53:c5:6e:
                    d8:82:15:75:f8:b7:ba:bb:34:64:8b:7a:29:e1:e7:
                    71:ad:fb:5e:ed:78:20:ee:b9:55:ce:2a:27:2f:74:
                    99:c0:fe:63:ed:03:4f:16:20:fa:81:76:4e:d4:88:
                    7e:9b:b2:39:21:1f:4e:fd:40:b0:45:f6:65:d3:e2:
                    8e:6f:0f:17:73:db:07:ef:e8:db:c6:1c:95:42:60:
                    76:69:e6:03:1f:d2:b4:1a:db:31:c6:bc:41:08:89:
                    0e:c3:47:cd:32:06:5f:48:0c:47:3a:6e:84:49:d9:
                    b2:70:ea:04:27:e3:84:f2:7a:09:1a:53:b2:cb:df:
                    e2:d9:7d:09:c2:92:e0:cc:5f:fe:99:67:9f:a3:25:
                    b3:19:f4:3c:3c:66:9b:30:c4:a9:db:fe:da:99:c8:
                    63:df:0b:fb:e3:7d:60:12:89:34:93:25:b3:28:a5:
                    33:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:66:29:C6:1B:E3:CF:64:79:38:0D:3E:5E:08:2A:9F:10:9A:5E:AA
            X509v3 Authority Key Identifier:
                keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:2e:66:83:f4:e5:de:45:a2:7d:47:5a:4c:45:dd:5a:bf:cb:
         71:1a:a0:2d:37:40:79:67:30:4b:59:78:86:5b:00:78:1c:ee:
         2d:af:9a:fe:6a:3b:cb:bd:86:18:e1:a3:68:88:57:3e:1b:0e:
         16:28:b5:12:66:ba:a8:aa:56:88:74:5b:83:59:51:44:b3:0f:
         af:dc:ba:f0:b9:c1:d3:af:5a:65:b2:16:dd:a4:37:1f:85:d8:
         d4:ce:40:a0:b0:82:0a:1c:c4:46:b5:06:7c:6f:02:23:34:62:
         8b:3a:1c:bb:a7:9d:55:a1:6c:f2:bf:52:eb:cd:1c:b6:88:ce:
         b4:6a:4e:67:fd:23:4f:9d:08:82:ae:8f:97:82:2c:20:57:07:
         a7:a8:fb:a0:7a:6f:c8:ac:0b:03:18:7f:5e:2d:76:45:52:85:
         b2:1e:73:14:67:20:3c:b0:2a:d3:0a:ca:39:2c:4d:10:c6:52:
         29:07:24:b0:02:63:f8:7c:09:2b:49:4f:89:1a:69:b8:c4:e9:
         ff:31:08:4a:86:db:67:bc:b5:9a:c0:86:7f:d2:f0:38:3c:68:
         2d:e0:6d:97:82:10:8d:0a:9e:f9:91:9f:57:c6:c3:04:2e:45:
         a4:fd:d6:fc:17:63:d6:5c:f2:fe:ee:eb:fd:3b:05:de:e6:db:
         da:da:c2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:15 2026 by rpki-client