Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
File:                     RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json)
Hash identifier:          szLOP9OWaQ0gjtiz7rFehNSxfYUNVWTtR2BtEJLgkV8=
Subject key identifier:   BC:D8:CD:61:85:3D:BA:61:09:B4:38:B7:75:9C:F9:E4:41:65:F7:56
Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55
Certificate issuer:       /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455
Certificate serial:       027C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
Manifest number:          0273
Signing time:             Fri 17 Jul 2026 02:54:29 +0000
Manifest this update:     Fri 17 Jul 2026 02:54:28 +0000
Manifest next update:     Fri 24 Jul 2026 02:54:28 +0000
Files and hashes:         1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: LDTyyCWIKhlKeYQ4tDMM9cTROneUiJztqnm4UtiXVLc=)
                          2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: DI/eG9DXOFb9EKRR2bPnL0OAziLMqCbunU7psCFOUsk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl
                          rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 02:54:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 636 (0x27c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455
        Validity
            Not Before: Jul 17 02:54:28 2026 GMT
            Not After : Jul 24 02:54:28 2026 GMT
        Subject: CN=6a599964-e755
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:38:92:15:4d:5b:56:44:d3:c5:3f:9e:14:40:
                    47:e2:a7:bb:87:f1:ed:13:79:99:07:46:ae:1e:4a:
                    f7:11:93:08:4a:62:a6:e9:47:e8:99:90:e7:2d:dc:
                    2a:a8:b5:82:57:b7:df:89:ff:34:c4:e1:53:d2:52:
                    11:6c:a5:c0:f2:69:33:f8:7d:8d:06:0e:bb:54:3f:
                    cd:cd:ce:91:46:a8:1e:f9:c0:27:70:42:ef:68:59:
                    c3:56:e6:ae:a8:6d:d9:f0:b1:a9:ea:00:2e:1d:4d:
                    74:fb:6b:15:95:76:63:2b:68:5b:b5:f7:64:32:99:
                    21:18:5e:dc:93:a8:ef:44:a9:9d:4a:f4:33:0e:33:
                    c9:73:0a:5b:50:d4:a9:9e:45:0f:00:04:b5:62:c5:
                    ad:fb:33:99:11:c6:22:48:0c:49:fc:90:de:7b:04:
                    c7:d5:a5:0b:ba:4b:a7:0b:7d:5f:0c:ae:8b:5f:b9:
                    6a:d7:20:d2:0c:92:60:ee:eb:12:04:f5:df:c9:dd:
                    5c:e3:ef:40:ac:ab:10:29:a1:3f:f1:c1:8b:10:04:
                    2e:79:2a:80:68:ea:7e:57:ac:21:88:8c:69:0a:cf:
                    24:ac:3b:5d:c5:01:ba:3f:32:19:a8:4f:ac:d9:bd:
                    53:39:07:8a:11:cf:70:a6:31:1c:81:32:8c:d5:a3:
                    5c:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:D8:CD:61:85:3D:BA:61:09:B4:38:B7:75:9C:F9:E4:41:65:F7:56
            X509v3 Authority Key Identifier:
                keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:4e:2c:e4:96:e0:72:78:c5:21:ed:57:e8:fc:13:34:9f:91:
         5b:dc:f6:0f:36:ff:27:b9:8e:ae:7d:bd:3b:6a:af:50:a1:5a:
         07:b1:c7:d5:e0:6d:81:43:ad:53:32:d3:a4:37:d3:4b:71:30:
         e4:25:6e:23:47:fc:7a:43:10:b2:44:11:f5:b7:e6:0a:9b:91:
         f9:3a:ef:b5:26:00:a6:8b:cf:05:9a:fd:f8:db:1b:dd:e0:cf:
         87:9f:b9:1b:ca:a3:ee:2a:fb:88:ec:2d:e1:cd:cd:73:2b:af:
         5f:97:15:8a:49:65:c2:b7:71:6d:10:f6:08:33:22:17:ab:91:
         3a:7c:7e:62:b9:10:12:5d:7f:27:bd:4c:ae:f2:1c:62:16:bb:
         27:ae:ca:56:57:25:f6:2b:6d:5e:e8:d6:78:81:17:6f:6d:c9:
         ac:ce:d7:83:96:d2:e5:8d:7d:fc:ea:b2:28:0b:b8:b6:c0:13:
         9a:bf:ca:96:e8:04:f4:d6:d0:1e:16:c0:a8:cf:e2:4e:55:ed:
         91:79:a2:d6:9c:fb:e0:47:55:4b:b3:b4:78:1f:57:2e:0d:db:
         b8:2c:89:99:47:7a:49:d6:2b:71:7f:c3:b6:2d:7b:14:2a:d7:
         83:7d:ae:58:14:7c:63:0b:a9:21:59:91:34:e3:b5:c3:dd:28:
         73:8c:c8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:58 2026 by rpki-client