Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft
File:                     JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json)
Hash identifier:          7Vzp3zh6W6LpI5tSJAS5/3l7WPPtIUQ1OishpN3eMk8=
Subject key identifier:   CE:7C:A2:38:AA:39:3F:8F:C8:02:0C:78:83:5F:6F:AB:2E:97:A7:31
Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44
Certificate issuer:       /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44
Certificate serial:       0DA9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft
Manifest number:          0D7F
Signing time:             Thu 02 Jul 2026 18:08:10 +0000
Manifest this update:     Thu 02 Jul 2026 18:08:09 +0000
Manifest next update:     Thu 09 Jul 2026 18:08:09 +0000
Files and hashes:         1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: o/fOHQFssyq3ar34I/vzJU0DM93NoCcNaysWd/GYrvA=)
                          2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: 2j8ZEZZDC+v0AsplIrNRFX86JLUI1D1lZouNpF7eL1M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl
                          rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 18:08:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3497 (0xda9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44
        Validity
            Not Before: Jul  2 18:08:09 2026 GMT
            Not After : Jul  9 18:08:09 2026 GMT
        Subject: CN=6a46a90a-7582
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:54:a5:8d:21:6c:ca:5c:65:75:92:c3:5a:3d:
                    70:87:91:6e:fa:ae:74:a3:7c:00:99:97:91:81:e6:
                    5b:39:66:60:57:15:c2:f5:46:1c:fc:3a:ca:c0:11:
                    e2:e4:63:86:bb:bc:f1:8b:41:b0:d2:f4:4c:03:d7:
                    35:9f:d3:b2:73:ce:38:72:ee:3b:64:52:cb:51:63:
                    5e:76:58:7c:ee:58:e5:6f:ff:0c:4f:33:5d:6e:62:
                    f7:e0:69:20:52:65:df:ca:88:cc:28:6e:6d:a1:b4:
                    a6:18:15:5d:54:43:9e:c2:a0:74:02:f6:fa:75:8d:
                    e3:cf:cd:f2:fd:0c:52:ab:4e:ce:8f:43:e8:e6:56:
                    35:e5:63:e3:e4:85:dd:a8:94:3c:9c:82:18:09:48:
                    b8:dd:27:f8:f8:93:6a:82:4d:ab:72:96:96:4e:02:
                    d9:81:ba:bb:8b:64:e5:02:56:3a:e6:fd:18:67:c9:
                    22:30:4d:b1:c8:c2:ca:a2:83:06:f8:24:e7:6b:77:
                    70:ab:61:d7:40:4e:cf:f7:e7:fa:7b:be:04:86:7e:
                    76:6a:10:55:21:66:8c:7e:65:af:85:3e:eb:9a:44:
                    fc:07:03:1c:95:9c:7b:f7:64:7f:65:56:3e:37:c2:
                    30:23:e2:1a:93:e6:30:22:62:b3:42:f1:4b:d0:0a:
                    5a:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:7C:A2:38:AA:39:3F:8F:C8:02:0C:78:83:5F:6F:AB:2E:97:A7:31
            X509v3 Authority Key Identifier:
                keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:78:82:e4:9c:08:a7:a1:b5:ae:89:da:21:87:4f:82:c8:58:
         a8:82:57:90:fb:18:05:5b:ec:ec:4a:ac:6b:de:47:3a:32:6d:
         1d:10:6b:a2:65:b3:70:ca:e0:63:aa:46:14:59:a0:35:ba:17:
         72:d7:cc:6a:8d:c9:01:f3:07:30:94:38:18:46:fb:01:a9:76:
         b6:21:56:60:ec:0b:25:6b:50:33:f0:7a:4d:77:0d:43:17:92:
         21:40:36:61:42:1f:1a:f8:cd:00:9c:0b:44:11:d6:19:67:88:
         15:f8:84:ff:12:e2:98:8c:b2:54:15:fd:fb:d5:3e:42:ee:70:
         96:d9:84:7f:69:3f:a9:83:c0:1a:0c:1f:de:c2:b3:5f:44:df:
         dc:d9:fe:82:30:e4:3a:ab:76:f2:2c:bb:6e:07:81:94:99:c5:
         dc:2f:bd:d4:cf:f4:45:b1:d4:8f:9f:df:ae:16:6a:b6:9c:58:
         fe:49:da:da:28:49:e9:c3:13:15:35:e3:ae:6e:32:59:a9:c1:
         5d:9a:29:79:7b:b5:86:8d:22:01:5e:9a:6e:c7:a9:d9:da:e6:
         bb:f2:01:36:c1:17:dc:ff:72:15:4f:34:46:04:8e:90:43:58:
         94:d0:d9:87:eb:ba:6c:17:6d:1e:d1:75:aa:7c:d7:2f:4b:9a:
         f0:fd:8d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 04:45:01 2026 by rpki-client