Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
File:                     bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json)
Hash identifier:          TT+2fCcqAUehUnb9Nyfn5uttW38oiK3/I1XVlfuFSpI=
Subject key identifier:   4A:1D:FA:AF:92:54:27:DD:08:DB:F8:3F:33:15:71:00:95:E5:28:9B
Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D
Certificate issuer:       /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D
Certificate serial:       09D3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
Manifest number:          09C1
Signing time:             Sat 04 Jul 2026 20:02:46 +0000
Manifest this update:     Sat 04 Jul 2026 20:02:45 +0000
Manifest next update:     Sat 11 Jul 2026 20:02:45 +0000
Files and hashes:         1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: +exParoAWuqII6ga0Gh6a5SH6ZdiMJ2oqIQFbFhGSEA=)
                          2: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: K9ygKHUO5qXA1XG+AYxwcORvRSOsX7Vi56bxTzrxJe8=)
                          3: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: 3mYXKQGPTclvrVN59MFw/zfTsvZixKAABlHasf+SFZU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl
                          rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 20:02:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2515 (0x9d3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D
        Validity
            Not Before: Jul  4 20:02:45 2026 GMT
            Not After : Jul 11 20:02:45 2026 GMT
        Subject: CN=6a4966e6-ce1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:9f:3f:62:10:2c:0e:b3:84:41:ce:5f:7b:71:
                    47:af:cd:75:bb:ba:a9:77:22:46:39:8a:e8:14:a1:
                    88:43:15:76:6f:86:d9:75:2e:c3:e5:41:cc:48:5e:
                    01:90:cb:c3:72:02:b9:b2:74:70:42:6b:32:72:2a:
                    7f:c7:61:7a:4e:a3:25:4e:3c:f7:69:b5:39:06:6e:
                    9a:a0:1a:cf:d2:6c:9d:82:bb:9b:87:ac:0f:cf:71:
                    18:d9:78:11:b8:89:f0:8b:90:2c:8f:7b:80:29:fa:
                    96:3c:c3:6c:a1:4b:e7:86:37:23:22:20:27:a8:06:
                    de:be:61:63:da:49:ee:56:27:b9:1a:71:69:8c:69:
                    b9:9b:11:eb:9e:12:1e:76:ee:a5:97:75:0a:df:47:
                    e3:ff:ad:c8:29:f0:d3:88:d2:2d:66:9f:4f:ab:23:
                    ff:ab:15:ac:a9:cb:79:ef:37:73:72:83:a5:11:f2:
                    dd:28:57:03:87:28:3e:8a:5c:78:63:55:59:de:3d:
                    6a:c8:7c:46:68:24:0d:7b:23:de:56:1e:03:ab:f9:
                    ef:00:f0:06:94:dd:17:39:cc:09:b6:72:c1:a1:8f:
                    fa:67:59:e2:c5:29:28:c1:e5:d6:71:c5:d0:08:a2:
                    ea:a0:b6:e5:e2:85:b3:81:72:ea:03:36:9d:06:2f:
                    58:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:1D:FA:AF:92:54:27:DD:08:DB:F8:3F:33:15:71:00:95:E5:28:9B
            X509v3 Authority Key Identifier:
                keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:1b:d5:7b:57:c2:2e:40:6a:18:c0:6e:c8:0a:8c:1d:37:fe:
         55:4a:d4:ff:7b:d7:2c:08:1e:4f:91:3f:d8:6f:b6:8a:f1:fe:
         77:af:38:d2:87:51:57:8c:5c:e1:69:84:62:0f:c5:a7:31:cc:
         58:0d:5a:28:95:be:52:ee:f8:3d:be:b4:80:23:06:d2:52:6d:
         16:4c:06:a9:da:5d:4d:7a:d3:77:4b:ae:49:24:a0:ee:40:48:
         40:57:da:89:2b:06:af:2f:4b:f9:92:9e:eb:86:3b:bc:50:92:
         89:5d:89:d0:1a:a3:e2:75:f0:b3:13:61:d4:7a:2e:0e:be:3b:
         aa:ff:bf:d0:c3:cd:0d:2c:f5:94:2b:65:76:35:59:6a:b1:39:
         53:15:2f:9a:a8:c2:00:10:53:d8:00:3b:34:b1:15:79:21:33:
         9f:44:75:df:19:0b:23:fc:dd:89:60:21:ab:82:f8:1c:cd:6a:
         81:ec:7d:9e:94:56:79:af:64:d1:d4:e9:4a:1a:6c:c7:56:f2:
         df:d4:62:52:1a:59:65:4b:5d:de:e6:7a:b0:9d:82:d2:04:1d:
         cd:fd:75:a7:db:36:c7:19:3f:1f:13:80:71:02:a7:2c:60:ec:
         b0:a1:42:4e:3b:c6:8f:92:47:c2:2c:61:64:46:ac:44:19:13:
         d9:5f:cc:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:43:39 2026 by rpki-client