Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft
File:                     z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json)
Hash identifier:          +2HHuvP+bg6q8y9v/kQPZFRcPZU2QjSdrG+l4xLfFLE=
Subject key identifier:   DD:6A:DA:88:D4:6C:29:75:E3:30:37:57:53:1D:06:28:D6:93:BF:42
Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D
Certificate issuer:       /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D
Certificate serial:       014A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft
Manifest number:          013C
Signing time:             Thu 09 Jul 2026 07:19:25 +0000
Manifest this update:     Thu 09 Jul 2026 07:19:25 +0000
Manifest next update:     Thu 16 Jul 2026 07:19:25 +0000
Files and hashes:         1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: 1QQw6trirz3hQzBxSXjUfaxu0HbF4+NIu6fnCtQAl1U=)
                          2: 9FC2AD1A7B0811F1BE7AA8BE81A30FBC.roa (hash: dvCtuuZOukYSqlh4ugbWrxgCAoJu1f7EJvhUOlYHnJ0=)
                          3: F2DF64BAD28511F0A20E5C80C4F9AE02.roa (hash: XjB5jPSTt3eJTKS4dRa9T7cx4SalbQsD8ABjmrgjNZA=)
                          4: A48892E4DE4A11EFACE66748C4F9AE02.roa (hash: 6I64utdnK0TaFg9y+W+RqybL90K1jeQS5liIOPne5so=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl
                          rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 07:19:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 330 (0x14a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912E87E, serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D
        Validity
            Not Before: Jul  9 07:19:25 2026 GMT
            Not After : Jul 16 07:19:25 2026 GMT
        Subject: CN=6a4f4b7d-7146
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:d3:28:bd:43:b1:e5:11:a1:8a:5e:d8:c4:53:
                    a8:a5:a9:9c:97:25:7b:44:bd:11:45:59:00:80:47:
                    17:49:63:f1:36:31:bd:42:66:95:b0:1a:4f:3e:7b:
                    3c:da:d1:5e:de:8d:c6:69:41:8c:f6:f6:99:d5:c8:
                    5a:cd:c3:59:e2:52:56:6e:d4:34:e6:42:21:3d:97:
                    6c:f6:58:77:c2:c6:6b:93:4a:e5:af:97:cf:f4:a9:
                    eb:fb:53:ba:6a:15:26:49:22:b2:a3:2d:ae:79:dc:
                    f4:99:5d:ca:e5:66:57:59:9d:57:1d:58:e9:68:df:
                    0f:7d:ee:e7:32:58:b4:65:5a:d6:72:eb:81:cc:3b:
                    80:65:03:3d:4c:8e:0f:ce:a3:65:5c:c7:74:fe:22:
                    b0:60:a0:5b:e4:cc:a1:b3:fb:f0:c0:ff:38:05:50:
                    0c:bd:7e:de:2e:7d:1a:f0:42:40:74:8c:e9:44:26:
                    a6:2a:a7:85:3d:31:0a:0a:e6:7c:35:3b:5b:75:8c:
                    ea:f4:08:48:e3:68:ae:b0:03:45:fd:5d:01:49:2a:
                    88:ad:7f:b4:b5:2c:1f:77:bd:e3:91:de:39:3a:8b:
                    6d:35:94:65:ba:0e:19:42:4b:bb:fc:5f:21:4f:5b:
                    88:20:ce:e4:7c:61:96:72:15:55:47:87:5a:90:5f:
                    3d:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:6A:DA:88:D4:6C:29:75:E3:30:37:57:53:1D:06:28:D6:93:BF:42
            X509v3 Authority Key Identifier:
                keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:b5:25:7e:90:83:a2:85:7b:4d:a4:0e:eb:98:5c:f8:25:a9:
         6c:4a:43:38:31:3f:2e:79:97:da:cc:27:8d:11:60:01:a9:00:
         6c:77:69:a8:c0:05:3f:32:b8:ec:05:ec:68:25:2f:50:39:6c:
         e6:8a:82:5d:46:6a:de:14:5e:ef:25:c8:51:68:39:55:f2:50:
         a0:bb:15:a6:eb:d3:79:a7:29:a6:16:dc:73:13:31:81:08:90:
         1d:6a:c4:78:d0:52:1a:95:2d:3f:28:10:11:14:38:d5:4c:b4:
         70:0f:10:2a:e7:87:2c:9a:bd:60:5d:e3:80:55:79:2d:ab:71:
         f5:8f:de:ad:8b:9b:67:0a:d9:09:11:f6:fc:ce:a7:69:63:c1:
         88:c4:09:fc:5a:22:53:ae:32:e6:b5:f9:50:4e:69:05:b0:02:
         fd:78:3c:de:b0:43:a1:01:6c:3c:18:55:d6:76:52:2f:f3:81:
         03:ae:51:55:9d:d6:86:58:48:63:df:7f:e3:d7:7c:73:a9:b9:
         bf:bf:1f:8b:ae:14:eb:8f:b8:76:bb:90:04:60:78:6e:a0:27:
         7b:24:b0:19:7b:7c:63:ba:84:8a:e1:34:3f:d4:74:c3:da:e5:
         95:f4:cf:d9:42:18:3b:b4:46:5d:ee:40:cf:fb:c4:6a:d7:a8:
         bd:74:e4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:47:27 2026 by rpki-client