Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft
File:                     mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json)
Hash identifier:          H03YMwuX/fW2pyUwMucseNsla70o1ZlMvfVWlT3se0Q=
Subject key identifier:   C4:4A:8F:E0:E4:6B:E0:94:C6:8A:91:E1:0F:FC:F1:4D:F6:BF:DB:AD
Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50
Certificate issuer:       /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50
Certificate serial:       1127
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft
Manifest number:          10E4
Signing time:             Thu 16 Jul 2026 17:25:17 +0000
Manifest this update:     Thu 16 Jul 2026 17:25:16 +0000
Manifest next update:     Thu 23 Jul 2026 17:25:16 +0000
Files and hashes:         1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: z18XSlp2POI7IePF+dy2TqMXqfHYvVzqzGhKu9jAXWU=)
                          2: 2E680D2AC99911F0BDA2F55CC4F9AE02.roa (hash: Q/eCF0AzmK8tNl3R3SFQuYN54I5IONWrSmL4B/NCtck=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl
                          rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:25:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4391 (0x1127)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50
        Validity
            Not Before: Jul 16 17:25:16 2026 GMT
            Not After : Jul 23 17:25:16 2026 GMT
        Subject: CN=6a5913fc-a8a5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:86:d8:27:ad:a5:36:40:12:88:05:d1:c7:4f:
                    2e:0a:12:27:d1:dc:29:58:85:f3:6d:b0:b1:e7:fb:
                    ca:61:c2:83:af:6c:0b:a2:76:95:92:d4:49:6f:30:
                    4e:75:1f:c9:ad:bf:a5:46:af:6d:1b:9d:2c:43:12:
                    a7:7d:65:e5:95:a9:99:f2:be:4f:f3:95:c5:40:d5:
                    ef:e8:7f:da:10:d2:cc:af:ca:da:00:07:08:26:d9:
                    74:0e:f3:d8:4e:b6:42:12:27:6b:5f:28:28:53:b7:
                    c3:bf:a2:64:22:dd:2f:23:7c:29:38:b4:4c:a4:77:
                    c4:4b:1c:a0:d7:41:54:50:0e:92:65:7e:48:44:00:
                    c3:0a:14:39:6d:b2:fd:47:5e:51:4f:71:2a:09:d4:
                    6b:58:fe:77:b6:da:4d:98:2f:f7:11:4c:17:80:69:
                    ac:c8:c0:37:24:b1:b6:d0:c1:cd:1c:c0:38:71:db:
                    01:b7:5a:3f:ff:ac:20:c8:84:d7:0a:8c:dd:58:3c:
                    1c:20:0b:7d:84:83:99:6c:1e:5a:c9:99:b0:8c:9f:
                    1e:ae:6d:71:3e:90:16:c2:45:bb:17:11:69:bb:10:
                    d3:c3:cd:02:d0:06:89:a6:00:88:ec:03:a4:d4:cc:
                    ce:01:13:21:f2:c4:23:59:dc:97:17:bc:68:ae:f7:
                    9b:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:4A:8F:E0:E4:6B:E0:94:C6:8A:91:E1:0F:FC:F1:4D:F6:BF:DB:AD
            X509v3 Authority Key Identifier:
                keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:62:e0:d3:dd:54:9d:84:b2:97:77:25:29:99:6f:5c:00:cd:
         e7:bf:ae:d6:87:b7:e6:6a:22:96:6c:c2:7c:46:13:70:9b:2c:
         9f:8e:e0:c3:b1:f7:65:1e:70:e2:db:3d:00:49:70:8b:44:4a:
         d0:d4:90:5b:5b:27:64:cb:d4:16:3a:ea:cb:df:ec:ac:d7:78:
         f1:b0:26:9c:ef:62:37:30:76:1a:82:ff:75:99:ef:6c:1d:5e:
         4b:fe:d7:c2:0d:a5:9f:4d:eb:83:33:91:52:d3:12:34:00:cf:
         41:73:2c:be:09:d2:fa:60:a4:06:1b:23:8f:12:22:3c:e7:5b:
         3d:5b:ea:53:d8:32:fa:01:12:89:54:54:82:ab:e0:4f:c0:b4:
         c9:83:e1:ea:f2:e3:e9:dd:09:b6:82:a7:54:c9:df:b4:92:d7:
         ea:39:c9:ef:d1:cd:a8:00:4c:e6:64:26:fc:42:5a:78:20:85:
         78:8f:dd:06:3d:51:91:11:2d:ed:e8:69:6f:1b:00:f4:62:8e:
         e4:68:45:be:fb:a9:4b:31:4b:d8:5c:47:a0:9c:2c:5a:9a:9d:
         92:83:ed:f7:aa:4c:52:ea:11:b0:1f:66:86:60:ba:7a:ec:dc:
         35:52:94:4e:6e:ac:5d:c7:70:96:42:42:6f:5c:15:ee:50:dc:
         0a:f1:7b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:07 2026 by rpki-client