Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft
File:                     WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json)
Hash identifier:          b1TkkU5e7MNj/h5ol2cuSlGf3gOJDWMnxANx/eGHO58=
Subject key identifier:   18:29:4E:6E:93:63:46:12:C7:46:7C:83:4C:D0:5E:42:3C:1A:5D:E1
Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB
Certificate issuer:       /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB
Certificate serial:       052E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft
Manifest number:          0527
Signing time:             Sat 04 Jul 2026 23:55:03 +0000
Manifest this update:     Sat 04 Jul 2026 23:55:02 +0000
Manifest next update:     Sat 11 Jul 2026 23:55:02 +0000
Files and hashes:         1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: MT+9AtZPCMCmKfEhf0paOCSJzr5/jT/im4KVf4DAPTE=)
                          2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: OxBZXjM5WU3mTzBTkJpk2hM02aP7JRhZY0bot56cYO4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl
                          rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 23:55:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1326 (0x52e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB
        Validity
            Not Before: Jul  4 23:55:02 2026 GMT
            Not After : Jul 11 23:55:02 2026 GMT
        Subject: CN=6a499d57-255a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:32:87:5a:08:1d:f2:70:a9:9d:49:25:68:07:
                    a3:71:1d:fa:44:b5:2e:81:15:e7:48:18:d0:61:e6:
                    1d:1e:92:a3:7a:08:26:9d:ce:05:2d:b3:6e:cf:3b:
                    3c:b9:81:af:83:d4:11:d0:3d:c1:70:3a:b5:88:89:
                    bb:b2:9b:5e:56:b9:a0:3f:89:2d:7a:b9:44:a8:46:
                    1a:6d:fd:f3:4b:c6:f8:b4:22:fc:5d:bb:4f:28:7f:
                    23:c8:e6:7f:7b:07:31:3f:a0:b8:d7:88:28:55:64:
                    64:48:a1:14:9a:8e:0d:be:fd:cb:51:92:94:7c:6f:
                    96:5c:97:be:82:04:82:22:63:b3:47:a9:02:dc:a8:
                    08:61:ff:99:08:82:55:76:e4:c5:8f:fe:cd:8b:95:
                    95:3a:c2:29:20:53:da:ab:ea:74:2f:d6:cb:0b:3c:
                    da:24:0e:75:b9:42:43:d4:fd:33:69:e5:d7:1b:0e:
                    cf:be:ef:dd:e9:23:cb:f9:7c:45:13:4e:a4:4a:fd:
                    1f:4f:96:a5:bf:b7:7a:6e:cb:d3:e8:8f:7b:18:ff:
                    54:7f:d8:1f:96:b2:80:c7:6b:42:10:6c:09:a0:f4:
                    f9:1d:bf:ba:42:50:90:c6:10:d9:d0:30:ea:67:9e:
                    08:ef:da:57:a6:1b:c8:5e:bd:f6:81:fe:94:12:13:
                    1f:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:29:4E:6E:93:63:46:12:C7:46:7C:83:4C:D0:5E:42:3C:1A:5D:E1
            X509v3 Authority Key Identifier:
                keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:97:57:b7:c6:cb:4c:78:61:22:cc:eb:26:36:87:fa:e2:8e:
         a7:15:f6:5e:48:42:61:99:33:7e:d6:18:0c:35:ca:a9:dc:e3:
         3a:ac:2f:0b:54:85:6c:ac:2c:48:8e:10:4d:c5:78:4e:08:b5:
         86:37:3c:d1:a5:c2:8f:ad:1d:ff:20:0f:80:28:08:9d:26:a7:
         29:aa:71:65:e3:48:9a:58:cb:be:2a:0d:0c:eb:ca:96:13:92:
         f2:cc:b0:56:41:1e:46:7a:33:2b:5d:81:63:f7:b3:24:ea:05:
         fd:b6:d3:bc:aa:e3:9d:c3:66:a0:74:f2:35:1a:55:ef:90:d8:
         7b:0f:51:0e:a3:56:61:a1:5f:ac:11:16:e8:5d:9d:50:e6:75:
         4d:e3:03:40:07:a0:55:e0:47:88:e9:ea:91:22:b6:9b:91:75:
         6b:d2:a1:43:35:74:f6:f1:7a:34:d1:4a:d4:53:db:c9:b4:86:
         9d:f2:81:90:16:47:75:8d:ac:15:9c:42:be:ab:52:50:99:ff:
         80:ed:3a:40:9d:fc:37:e9:c6:92:3a:b8:d0:77:c5:4e:e8:d4:
         69:b3:00:71:d8:b6:e9:86:f2:13:f7:1f:ea:3c:16:2b:18:8f:
         fd:4f:d4:82:85:cb:17:38:2b:60:f2:f9:f9:fd:99:22:f0:c7:
         a7:1b:32:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:48:10 2026 by rpki-client