Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft
File:                     uDIFubLHQGPjdvNxFYOXBe277Ng.mft (raw, json)
Hash identifier:          FBqQ4S2WAiPzXJNpSOM764MaP5lPnApVniYGKBquIVA=
Subject key identifier:   5F:8E:3B:74:D3:A5:C2:2E:50:03:4A:EC:33:1B:60:5C:53:0C:0D:B0
Authority key identifier: B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8
Certificate issuer:       /CN=A9130138/serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8
Certificate serial:       0413
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft
Manifest number:          0408
Signing time:             Fri 17 Jul 2026 01:00:45 +0000
Manifest this update:     Fri 17 Jul 2026 01:00:44 +0000
Manifest next update:     Fri 24 Jul 2026 01:00:44 +0000
Files and hashes:         1: uDIFubLHQGPjdvNxFYOXBe277Ng.crl (hash: XnQInPqICwB/OhyGz4tMzu1VgzLPqOED29W6N9NZuXM=)
                          2: A7DEA0DAC47D11ECB544A26DC4F9AE02.roa (hash: v0duyXrCqBjTImOPXg/jRu5Eda4FNDXKiiyW1J3+wcs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl
                          rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1043 (0x413)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9130138, serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8
        Validity
            Not Before: Jul 17 01:00:44 2026 GMT
            Not After : Jul 24 01:00:44 2026 GMT
        Subject: CN=6a597ebc-ab85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:b8:fb:0d:aa:b8:a2:0b:1e:d6:bd:2c:04:1a:
                    4b:35:0e:c7:b0:97:e5:88:cb:ef:1b:9b:fd:96:2a:
                    b2:eb:58:e6:f2:2f:4b:62:24:5f:98:94:8f:28:c1:
                    4e:0d:fe:8b:11:81:5a:27:5e:81:1e:c3:52:44:09:
                    fc:3b:32:34:2e:3c:4a:bc:26:b3:cb:83:4a:65:73:
                    9c:fe:72:09:76:37:67:4f:5a:fc:b9:61:77:3a:04:
                    05:78:b3:13:0c:47:a6:21:65:d1:5a:18:b7:c1:f0:
                    bd:39:77:2e:65:0e:17:9d:c9:7a:78:76:34:3e:56:
                    db:10:47:e3:26:cd:40:4d:15:36:f6:c9:33:65:98:
                    be:db:31:f7:ea:5e:7d:31:d3:0b:93:6e:29:e6:fe:
                    4d:38:6e:ab:a0:01:b2:2c:d1:d2:ba:74:46:f6:4f:
                    04:22:8f:a0:62:32:f9:ad:e6:eb:58:31:ff:62:ec:
                    83:b2:32:9f:41:c6:ca:d1:9b:4a:7c:90:fc:05:f1:
                    51:dc:19:be:6b:56:b2:86:68:9d:14:a4:ab:43:35:
                    30:56:87:7e:6c:77:ad:9e:22:82:e1:cb:15:d0:6a:
                    86:64:b9:4f:b9:f9:01:fc:03:e4:f8:f0:58:5a:ab:
                    b9:e0:62:fc:38:62:07:21:b3:ed:75:da:75:4d:9d:
                    96:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:8E:3B:74:D3:A5:C2:2E:50:03:4A:EC:33:1B:60:5C:53:0C:0D:B0
            X509v3 Authority Key Identifier:
                keyid:B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:98:55:eb:bd:f1:0a:b9:c8:ec:f9:47:4b:29:68:67:a5:0b:
         18:c0:28:27:61:e5:96:aa:8a:40:d9:da:f6:84:54:5e:9f:31:
         6f:ec:dc:66:d8:00:c3:9a:13:2f:eb:1a:57:e5:ca:72:e7:13:
         9d:43:63:36:b0:e3:b4:4b:87:a3:f4:7a:21:a1:21:28:1d:4a:
         58:9f:52:a4:3f:e3:59:0f:c7:42:ec:cb:e5:24:b5:bb:bb:51:
         89:50:46:24:e6:d2:12:92:04:c2:bb:fe:11:e0:98:3e:8b:61:
         c8:fa:40:25:2f:37:0f:c3:0b:24:6e:c9:27:87:5d:89:24:67:
         b8:c8:23:e5:74:ad:75:72:fb:ba:49:2c:4f:ad:3e:49:29:8e:
         75:92:29:8b:b8:b5:9e:63:99:b1:5d:26:7a:2b:25:c5:40:ca:
         8f:0d:53:4d:89:5d:0f:55:cd:cd:79:fe:56:68:20:d1:83:c9:
         85:98:ca:c8:cc:a9:8f:25:bc:0b:7f:87:d6:79:66:75:ec:12:
         b8:06:64:79:ce:d4:1c:b8:1f:82:88:c9:d0:57:ff:5c:6b:2f:
         42:dd:df:e2:b5:03:9c:7e:9c:ab:e6:0d:2c:a9:36:d9:90:b8:
         71:c2:dc:70:96:a4:07:4a:43:ce:58:f5:ff:90:cf:f2:7c:33:
         94:31:c8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 12:20:51 2026 by rpki-client