Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft
File:                     UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json)
Hash identifier:          aNDx6nLjynPkz60kMF9GRJO697rBv3OX9FJBh+CtfwA=
Subject key identifier:   1E:6B:BA:EC:12:6F:24:9B:E1:18:99:EF:D6:FC:B4:0D:4D:B7:A3:52
Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78
Certificate issuer:       /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78
Certificate serial:       0316
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft
Manifest number:          030A
Signing time:             Sun 05 Jul 2026 01:37:21 +0000
Manifest this update:     Sun 05 Jul 2026 01:37:20 +0000
Manifest next update:     Sun 12 Jul 2026 01:37:20 +0000
Files and hashes:         1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: Fv0TqGlxHjB/yANVbMUsjgXAMIesQFtOnapgmiEZUZ4=)
                          2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: +F1FZtsTrw14W4WmmJaPNvqLxkx0Lf//1RCLaJV77j0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl
                          rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 01:37:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 790 (0x316)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78
        Validity
            Not Before: Jul  5 01:37:20 2026 GMT
            Not After : Jul 12 01:37:20 2026 GMT
        Subject: CN=6a49b551-0400
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:84:78:96:2c:68:5b:63:f1:04:df:d8:7b:38:
                    ff:b7:b2:1d:a3:5a:50:14:4e:79:e1:0b:b2:cc:a7:
                    a4:e4:ca:16:73:3e:b9:6b:c7:33:4d:b6:82:95:dd:
                    da:66:b1:a6:49:1a:55:0f:e5:cf:09:c7:9f:aa:e4:
                    c5:40:a5:29:8c:ab:75:39:00:d7:72:1c:7e:2c:14:
                    a8:69:65:ec:22:f1:da:f7:68:37:0c:ea:a6:41:ca:
                    f2:bf:33:82:f3:6e:3a:4d:5c:11:a2:b4:cc:1e:57:
                    da:e2:a1:95:56:bc:39:b5:e2:f1:e0:57:7e:1d:6e:
                    ec:38:ee:c6:f3:f7:dc:f5:e3:b2:8a:06:d9:44:00:
                    8b:79:b9:1d:2a:ca:d3:6d:b9:44:c9:38:f8:3b:20:
                    44:fb:6f:80:11:28:32:23:a6:fe:c8:8f:aa:a2:1c:
                    e4:91:5d:72:09:fb:34:8c:b5:aa:77:50:35:6a:ad:
                    c2:04:d7:37:3d:78:3a:45:f8:2b:8b:ef:9f:67:68:
                    08:5c:a4:8c:d1:04:06:4b:3d:41:ce:84:14:bf:8e:
                    75:c5:da:8c:81:c3:86:1b:f3:52:67:82:2b:92:f8:
                    91:e3:26:8d:b3:8f:73:8b:ea:02:c2:c9:af:d8:b8:
                    2e:80:e6:70:43:4e:ec:1f:ef:70:a5:f4:a9:e8:38:
                    34:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:6B:BA:EC:12:6F:24:9B:E1:18:99:EF:D6:FC:B4:0D:4D:B7:A3:52
            X509v3 Authority Key Identifier:
                keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:b7:17:b8:28:32:cc:22:5c:21:2d:d7:8f:2b:9e:a9:dd:d1:
         c6:4a:fa:77:75:58:7f:8b:da:2d:a7:c7:a8:60:ea:3b:34:01:
         bb:3d:19:22:0d:d0:91:31:42:b1:f1:06:ad:4f:ed:df:41:b3:
         6f:b1:06:6b:04:e4:61:2c:cd:d7:e3:d3:79:b5:e2:51:bc:11:
         77:ca:12:b6:9e:0e:e0:40:c2:73:c4:92:06:ae:88:9a:8c:07:
         f5:a7:28:6c:68:88:61:9e:12:d4:10:a1:8f:05:d6:75:28:64:
         5c:ce:44:87:66:08:86:f1:ae:34:c6:a7:28:c7:b3:8f:5f:71:
         a6:6f:0a:64:f3:2d:f8:6c:40:31:df:80:4d:38:1c:13:08:29:
         ca:9b:4b:59:92:ae:b9:91:17:e0:b6:32:c2:4e:70:3e:98:54:
         20:ab:b0:ad:fd:ca:19:9d:b6:4f:35:ab:fc:92:8d:a3:c7:4c:
         d0:e0:03:9b:e8:b2:75:33:7a:f6:8b:a3:32:5c:c7:59:e0:22:
         2e:07:4c:ac:54:e1:65:1b:08:c0:42:55:2e:7b:89:e3:d7:0a:
         49:c6:77:16:83:33:81:2a:12:3c:51:67:50:06:7f:f0:0a:98:
         02:52:f4:1a:1f:f5:e7:bc:04:50:91:93:b0:de:ed:4b:5e:71:
         cb:d8:34:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 12:29:53 2026 by rpki-client