Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft
File:                     pkvkSssA5L2uRJGw-gzXCZ0scnw.mft (raw, json)
Hash identifier:          vhv4cNZCrzxSGun/1tINiJOANkF18vBxaQjzPCD5rwc=
Subject key identifier:   C8:E6:D5:7D:12:52:06:34:92:93:35:4D:34:42:D3:9B:F4:A0:BB:EE
Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C
Certificate issuer:       /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C
Certificate serial:       013C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft
Manifest number:          0137
Signing time:             Thu 16 Jul 2026 19:07:36 +0000
Manifest this update:     Thu 16 Jul 2026 19:07:35 +0000
Manifest next update:     Thu 23 Jul 2026 19:07:35 +0000
Files and hashes:         1: pkvkSssA5L2uRJGw-gzXCZ0scnw.crl (hash: DthJ7yOC2CT6U6L9R3skJ3CNsU2jXr12H/cnde1bX/I=)
                          2: 8D431594FFDF11EF8DF72930C4F9AE02.roa (hash: XIBVLN0QTNRfgKTP2te+4QcwWNVAHO7ezlqwT3o7bi8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl
                          rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:07:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 316 (0x13c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C
        Validity
            Not Before: Jul 16 19:07:35 2026 GMT
            Not After : Jul 23 19:07:35 2026 GMT
        Subject: CN=6a592bf7-b625
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:2c:47:88:cc:f2:34:2a:09:ac:d8:d3:ab:37:
                    15:32:5a:1c:f1:4d:55:cd:f9:74:e7:80:27:4b:4a:
                    79:8a:e5:36:88:9b:45:28:39:4f:02:3b:0b:9b:07:
                    cb:38:dd:14:df:98:b9:38:49:de:74:30:02:44:c4:
                    79:bf:92:3d:55:6e:50:fa:a5:e9:41:6d:63:6a:b5:
                    9e:7b:d6:dd:ed:9d:e2:e9:0f:39:b3:00:5d:b2:4e:
                    d0:76:da:fd:79:f2:8f:25:36:d8:00:ab:33:ef:7d:
                    15:19:a6:b6:39:dd:8b:4b:f1:1a:d7:c3:68:ae:f1:
                    36:e8:25:68:0a:bc:bf:3c:fa:f5:66:5d:19:b2:70:
                    a7:3d:69:1f:ea:b0:2a:1d:9d:81:c6:19:b4:32:34:
                    57:8d:a8:f2:88:29:bd:57:a3:c8:8b:b4:6e:4f:84:
                    4d:c3:12:e5:09:37:50:21:57:dd:ba:aa:7a:7b:3f:
                    84:d4:53:18:22:3c:3c:09:a5:ce:fa:39:79:57:01:
                    c6:c0:ac:46:09:f5:00:18:1c:cb:56:83:24:4f:3c:
                    de:9b:9e:72:ac:dc:56:cd:42:ad:45:93:24:e4:64:
                    87:30:0d:71:5d:c1:65:e2:6b:7d:d3:c2:3b:32:06:
                    8e:69:81:ab:44:66:94:85:2b:c5:db:72:4d:5d:f8:
                    bd:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:E6:D5:7D:12:52:06:34:92:93:35:4D:34:42:D3:9B:F4:A0:BB:EE
            X509v3 Authority Key Identifier:
                keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:38:83:3d:9a:5d:e2:c7:9c:71:d4:1a:33:6d:ff:71:07:ea:
         e1:de:60:66:e6:ec:69:32:99:98:2e:0d:98:33:f8:1e:12:c5:
         92:35:0c:62:c1:e4:7f:81:af:f8:ce:00:b3:af:86:3e:fc:a6:
         63:be:7d:2f:b6:81:1f:93:08:2b:10:08:b9:ac:d0:10:d2:9a:
         d3:29:4e:70:6b:5a:bd:74:77:8a:94:77:5c:74:b9:c6:40:04:
         c7:ef:b7:15:4f:6d:c7:36:10:ae:f8:18:ac:87:de:70:7b:9b:
         a9:99:8d:22:df:08:76:03:3c:e0:02:ab:05:2a:b3:2b:f9:20:
         9a:4d:e9:0f:dd:d4:47:03:ec:da:b3:f8:36:2a:52:7b:23:1b:
         0a:5c:19:63:3d:08:83:09:41:f2:1b:14:20:1a:44:f7:ee:89:
         db:b8:5b:0b:0a:54:e0:89:a6:76:97:08:af:a6:9a:ec:b8:b7:
         d8:73:03:53:85:19:37:37:0a:f4:02:5e:de:2e:8c:db:1e:74:
         28:d6:78:7d:16:b3:76:9f:e2:e3:3e:35:d8:02:3e:81:60:c9:
         07:43:d8:ad:b0:8c:b3:4b:56:cb:80:21:65:f4:6d:65:ab:8b:
         8a:c6:77:a6:4a:be:b4:46:b8:cf:c4:6a:a5:3a:4b:68:08:e9:
         36:79:78:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:35 2026 by rpki-client