Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
File:                     EMpiwqdJv5H1YirewPGWGEk8u6k.mft (raw, json)
Hash identifier:          ALt5iVD3s7K7zF1EvbyaNxHlAYTtEb5U5NJvL0oOWR0=
Subject key identifier:   9C:A1:91:D4:7C:EF:81:1C:A2:52:79:B1:0D:61:EB:F1:9A:3C:48:21
Authority key identifier: 10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9
Certificate issuer:       /CN=A91306B2/serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9
Certificate serial:       02CA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
Manifest number:          02BE
Signing time:             Fri 17 Jul 2026 02:04:22 +0000
Manifest this update:     Fri 17 Jul 2026 02:04:21 +0000
Manifest next update:     Fri 24 Jul 2026 02:04:21 +0000
Files and hashes:         1: EMpiwqdJv5H1YirewPGWGEk8u6k.crl (hash: cWGwoK0JYM8Q4JZXOOyRggIIW0Ujwpmg0RsIK9uYivE=)
                          2: 695CA6D414BF11EEB8B95B7FC4F9AE02.roa (hash: 7oAXnZAUBtQjX3ZHXMNMC7v8KvbechSNV9axONzAjso=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl
                          rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 02:04:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 714 (0x2ca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91306B2, serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9
        Validity
            Not Before: Jul 17 02:04:21 2026 GMT
            Not After : Jul 24 02:04:21 2026 GMT
        Subject: CN=6a598da6-3d5e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:c7:ab:f7:e7:bd:2c:b6:aa:19:a7:70:6c:10:
                    a2:50:d0:44:0b:3b:f4:29:69:3b:ea:41:6f:e8:a5:
                    c8:1a:6a:68:74:ce:07:bb:af:e6:12:75:ff:78:a5:
                    cf:1b:a0:7b:27:5e:81:18:e5:c4:57:0a:62:f5:aa:
                    b8:77:ea:8e:a7:b7:61:c2:dd:d4:14:59:fe:1e:32:
                    ad:2f:35:97:98:f6:f9:c9:37:0c:83:91:71:c7:ca:
                    9c:42:06:d3:45:cd:f9:da:bc:d8:a5:0d:10:1b:05:
                    4e:d1:ea:1d:fd:67:d5:c3:76:7f:ad:c9:19:5c:e9:
                    60:88:71:82:17:24:d8:b6:71:e6:16:2c:fd:4d:40:
                    21:8a:b0:e3:5f:77:56:1e:0a:0b:d9:a4:76:f6:8b:
                    49:1e:94:c7:45:6b:85:5e:25:28:07:e1:39:07:e4:
                    76:5d:dc:43:b1:4c:d4:29:87:0c:cc:8c:89:91:a5:
                    1d:8c:02:83:2b:84:74:67:25:6f:f6:89:f5:59:70:
                    69:3f:29:c6:c2:85:b1:5d:83:1e:88:66:23:f2:b4:
                    02:4c:9c:3c:12:b6:73:d2:f5:e8:d3:85:b4:e4:f7:
                    54:ff:2c:57:3b:37:96:b6:03:4c:40:61:f0:25:1b:
                    2b:de:a7:61:ba:e3:ed:e0:83:db:fa:c8:1f:a7:4b:
                    43:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:A1:91:D4:7C:EF:81:1C:A2:52:79:B1:0D:61:EB:F1:9A:3C:48:21
            X509v3 Authority Key Identifier:
                keyid:10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:4c:52:70:52:6a:8c:82:00:4e:cf:ff:b8:11:b5:54:7e:e2:
         d5:ad:34:3b:3a:b0:5b:34:27:40:29:2c:67:7a:12:9b:18:f1:
         c8:e4:07:1c:b3:9f:05:2a:c5:62:82:6d:65:73:bd:7c:e4:ac:
         57:f9:2e:f6:74:e3:9f:45:14:d5:e7:6c:38:ab:f4:9e:e7:84:
         44:88:a4:fc:6b:0a:d3:55:fd:5d:38:aa:16:27:2c:40:40:76:
         15:29:e8:c3:f9:14:41:28:5c:6d:aa:a8:66:6d:a5:4f:36:a5:
         66:08:b6:9f:d8:1d:2d:5b:ac:d0:69:d5:30:c9:71:6a:0e:92:
         d8:f4:af:56:22:e2:0b:39:1a:21:f6:55:f7:6b:8a:8b:77:56:
         a9:59:66:4e:d6:82:c2:87:9d:3d:56:cb:f8:60:d2:ff:e1:ae:
         1f:06:dc:ec:c0:15:c2:30:9a:e0:e5:d9:15:e1:71:49:6a:24:
         7c:e9:04:ed:29:2b:f6:6b:8d:d0:34:5e:06:4c:42:63:bf:30:
         77:3f:71:58:99:ea:9d:be:b3:ac:b5:8b:1b:42:ad:7d:aa:e7:
         fc:5c:ae:73:8f:97:9d:be:38:d6:90:ec:ab:8c:b3:87:7c:bc:
         58:44:da:3b:14:2c:cd:cb:af:63:e8:3d:e5:03:76:9d:84:b6:
         5a:d1:40:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:12:56 2026 by rpki-client