Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft
File:                     IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json)
Hash identifier:          LR8ARZKO+lTRJphRh77MRlFdJ8N85Tpn+pWXjPt3h58=
Subject key identifier:   4F:4B:86:F4:BD:BD:DA:4E:FD:AD:FD:06:98:81:3B:67:BE:87:D2:22
Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF
Certificate issuer:       /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF
Certificate serial:       07D6
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft
Manifest number:          07D6
Signing time:             Sat 04 Jul 2026 21:34:47 +0000
Manifest this update:     Sat 04 Jul 2026 21:34:47 +0000
Manifest next update:     Sat 11 Jul 2026 21:34:47 +0000
Files and hashes:         1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: VU6h40csf3e5qfS7rAOAwtZI7kwz7BxeCyneidTwHTs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl
                          rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 21:34:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2006 (0x7d6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF
        Validity
            Not Before: Jul  4 21:34:47 2026 GMT
            Not After : Jul 11 21:34:47 2026 GMT
        Subject: CN=6a497c77-eb49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:55:a1:34:ca:ed:3b:b5:45:71:f0:70:f1:0c:
                    2a:36:b7:b9:a4:8a:6b:ce:6b:71:b9:5e:2b:57:70:
                    43:d9:53:76:b6:ca:80:f5:e1:f1:5c:cd:d8:23:41:
                    5d:b1:c3:da:fc:77:5e:12:33:9c:f7:13:4b:a0:af:
                    b0:66:07:87:ae:27:c2:23:7b:44:04:9a:8e:d8:9a:
                    d5:8e:e0:bf:a8:b0:30:4f:b0:2e:e3:a9:f7:3c:63:
                    da:46:88:6c:7d:79:f0:ee:a4:85:09:a6:a4:91:a8:
                    69:52:6a:29:c8:41:87:ad:d1:87:7a:64:10:1c:e9:
                    fe:2b:2a:1a:89:17:94:76:2d:7f:fc:d1:37:e5:4b:
                    8c:c2:5b:14:28:74:09:be:1e:1c:e3:cf:ff:99:e4:
                    bb:24:c0:d5:cc:59:a1:9a:2b:67:47:4b:10:ce:2c:
                    fa:76:4b:d3:b4:2a:4f:33:f7:74:9e:a3:2f:26:3a:
                    b7:1d:d0:35:18:33:58:c1:4e:88:75:8a:a1:d1:f8:
                    0a:66:33:9d:20:ea:3f:ba:32:eb:11:d9:56:59:7c:
                    d6:4f:8e:6b:38:52:6f:49:7e:de:b0:e9:d0:e9:59:
                    5a:19:01:87:51:98:c9:3b:40:e5:a1:bb:71:3c:aa:
                    dd:c7:53:22:24:35:77:8d:4d:cf:fb:6f:0c:10:4f:
                    e8:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:4B:86:F4:BD:BD:DA:4E:FD:AD:FD:06:98:81:3B:67:BE:87:D2:22
            X509v3 Authority Key Identifier:
                keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:ec:4c:9e:8c:3f:36:a1:76:e5:d9:ef:fe:81:a1:17:67:36:
         5b:2d:6a:91:1f:3e:34:bb:74:5e:c4:07:27:e2:cf:17:3d:16:
         3d:8c:be:84:29:22:b2:41:26:51:d5:6d:e1:de:16:a6:e3:5c:
         8c:ec:6b:f9:b4:fd:6d:45:4b:8d:fa:c2:e0:01:9b:86:e8:86:
         01:82:d7:b1:d9:a1:cc:fd:67:01:4a:00:fa:8b:3e:c4:cf:a7:
         24:4a:08:ef:4e:b6:c3:c0:1c:4c:16:34:87:ae:be:41:f8:b8:
         de:89:7a:ed:e3:96:32:00:77:cf:37:b3:4c:2b:e4:a3:84:07:
         e9:6f:1b:3d:77:13:c5:34:a5:34:b0:b9:62:ab:f0:d4:a4:af:
         f2:d7:82:6d:9b:a3:9e:87:80:92:e0:80:e2:ce:b5:16:bf:59:
         43:64:ca:78:a5:56:85:b9:9a:cc:44:a1:05:d9:48:32:05:98:
         4a:e3:28:22:37:69:30:e5:47:aa:a1:1b:67:6d:88:cb:53:e3:
         8b:46:1c:0e:9b:0b:4f:d8:a8:47:8c:01:e9:bc:14:0c:1e:39:
         a3:e8:0d:d4:cb:c2:1a:ef:a8:46:f0:35:8f:ad:b8:b9:51:e4:
         c7:44:3e:3a:32:b8:a8:eb:62:bc:60:18:40:65:7e:73:c8:fd:
         17:f3:d0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:26 2026 by rpki-client