Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft
File:                     tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json)
Hash identifier:          7X625NlMn0rN6exUzZjvNzcvv5xOKVVPIv6m+VH48kU=
Subject key identifier:   A0:0C:0C:46:48:C7:DC:CF:E1:51:F7:57:3A:B4:B4:49:6F:53:9E:FC
Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C
Certificate issuer:       /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C
Certificate serial:       01D5
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft
Manifest number:          01CC
Signing time:             Fri 17 Jul 2026 04:46:19 +0000
Manifest this update:     Fri 17 Jul 2026 04:46:18 +0000
Manifest next update:     Fri 24 Jul 2026 04:46:18 +0000
Files and hashes:         1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: zhpcxxormWR6edQLCgY/MBgMRk3NEnfb2Tt7DvvfTi4=)
                          2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: xllDJ7wsryQrkSvX97smRm5LJiMbi7ECfICbiD0R3+M=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl
                          rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:46:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 469 (0x1d5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C
        Validity
            Not Before: Jul 17 04:46:18 2026 GMT
            Not After : Jul 24 04:46:18 2026 GMT
        Subject: CN=6a59b39b-60df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:88:83:02:91:f1:59:3e:be:dc:09:a0:0e:8b:
                    1a:f6:e7:ea:14:60:60:57:fc:e6:e2:6f:f0:78:fc:
                    61:ed:da:93:7c:06:fd:d7:53:20:c6:54:0a:32:c8:
                    14:16:17:a1:d3:b6:05:35:6b:ad:ba:e2:49:ab:4e:
                    f6:e5:8c:c1:46:af:03:f1:e3:a2:6f:b4:3c:6f:73:
                    27:25:97:68:df:cf:a2:92:7b:6a:20:0e:d3:04:51:
                    78:d9:09:93:12:85:66:79:1d:41:9a:8f:aa:4a:88:
                    43:4e:5e:ae:bc:86:ad:d3:23:af:a3:33:79:26:13:
                    f5:95:f0:f7:6b:eb:12:00:0b:28:e0:45:b2:53:1a:
                    16:e9:a0:50:48:ef:86:c8:20:8a:94:21:f4:89:4f:
                    79:fe:f5:87:b0:3a:51:8e:3b:22:af:2f:d2:68:97:
                    9a:d5:ec:03:d8:50:65:39:d1:e4:7e:5c:8b:fd:7a:
                    99:86:9d:54:84:63:01:33:ea:bf:4b:a5:be:ee:fe:
                    6d:7e:12:cd:23:1f:f3:3a:d9:b6:1d:7a:6d:41:b6:
                    00:50:2c:42:9b:b2:c3:e1:e1:10:dd:49:87:77:2c:
                    49:13:70:5a:58:9b:5d:f1:19:51:0f:81:43:42:18:
                    b1:f9:6a:9c:a7:2c:9a:fd:9c:54:14:a3:3e:ad:0b:
                    16:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:0C:0C:46:48:C7:DC:CF:E1:51:F7:57:3A:B4:B4:49:6F:53:9E:FC
            X509v3 Authority Key Identifier:
                keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:ea:8f:85:26:de:97:9a:dd:d5:5d:f0:22:e3:1b:24:a5:36:
         f5:2d:2e:c9:5f:11:2d:a9:03:5d:7d:8e:71:08:99:ca:85:9a:
         74:5e:95:fb:a9:79:31:98:4f:9a:d2:4c:28:56:08:e1:15:b2:
         37:29:a4:fd:90:d0:b6:14:a1:53:5a:f1:54:e6:ce:c2:2d:57:
         f7:14:6d:88:33:04:06:1e:fb:84:5b:1b:1f:d2:a9:c4:4a:51:
         31:b0:38:67:cc:14:46:f2:79:41:1d:3b:74:4b:b3:55:8e:65:
         2d:0b:88:80:53:79:5b:1a:7b:ab:c5:5b:7b:80:25:00:5c:86:
         15:ea:57:32:38:9e:e2:a7:4d:da:69:b0:8d:63:64:f0:a5:19:
         18:d2:21:ba:fd:2c:67:cd:95:04:5c:11:de:24:5e:b7:7e:c1:
         6b:0c:d2:2a:c5:63:d7:d2:a9:b2:58:e1:2d:a1:06:c9:ea:4c:
         37:db:0e:7f:b4:54:03:a2:96:3e:1d:62:5d:46:e7:c2:94:0a:
         df:d3:c9:3d:34:90:b7:40:ba:c1:40:fd:e9:e9:45:07:e5:8a:
         62:21:c2:12:80:30:2d:d3:83:98:3f:9d:45:86:62:e6:bd:6a:
         e7:af:54:a6:cf:9a:19:ae:a2:0b:8b:34:90:22:aa:aa:1a:a3:
         1b:fc:69:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:54 2026 by rpki-client