Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
File:                     4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json)
Hash identifier:          rQcQxiaUAx5OcHUyJjoN5JG3uysYC7eOr5HrmVoe1Fs=
Subject key identifier:   68:64:84:A2:A1:AA:40:C0:55:22:B8:57:CB:34:B3:E6:26:55:5A:C4
Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1
Certificate issuer:       /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1
Certificate serial:       0825
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
Manifest number:          0819
Signing time:             Mon 06 Jul 2026 21:39:08 +0000
Manifest this update:     Mon 06 Jul 2026 21:39:07 +0000
Manifest next update:     Mon 13 Jul 2026 21:39:07 +0000
Files and hashes:         1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: sNxa2ZU96j26qSy+PQPtGUo6UOI+nVMvYa98VoDyjww=)
                          2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: E6etJLs09jxCInikK/I6oSWS8vZ+7fWKirFeSQZQozk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl
                          rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 21:39:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2085 (0x825)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1
        Validity
            Not Before: Jul  6 21:39:07 2026 GMT
            Not After : Jul 13 21:39:07 2026 GMT
        Subject: CN=6a4c207c-f1a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:8a:af:41:5e:34:90:21:ad:fa:e8:6b:f9:a1:
                    7b:ad:9b:5f:16:62:1a:b2:46:00:2b:6d:40:85:a9:
                    86:27:cc:58:bb:38:ed:69:3f:1b:6d:af:75:9d:da:
                    b7:47:8a:9d:fa:c1:00:b2:22:f9:43:a8:89:93:cf:
                    d4:2d:54:8a:91:d8:9c:5c:7a:d1:b3:51:68:fc:07:
                    b5:9d:41:28:7b:7a:03:53:19:f8:db:ee:c6:b7:a3:
                    ed:09:96:83:9f:17:ef:2d:9f:e7:8e:7a:38:c8:cf:
                    c0:ae:ca:f3:a9:82:0d:df:de:31:1a:12:7c:c1:b9:
                    00:69:76:46:d6:8d:61:4b:85:6c:4f:35:6b:de:f5:
                    6e:c7:ab:20:34:dd:4d:f9:fa:67:3c:28:d0:e9:63:
                    e9:96:0b:fa:f1:99:50:11:95:9e:fa:13:ac:e7:bf:
                    01:c8:e2:58:66:d8:19:fc:cc:2a:04:60:47:e6:2b:
                    72:6f:6e:ca:bc:e5:08:81:ef:0e:64:5a:1d:4b:f4:
                    bd:29:a2:e4:48:e9:c2:16:74:78:fe:72:8f:8e:9f:
                    2a:7c:d0:89:38:6c:9c:16:86:f0:ce:62:04:5d:97:
                    f8:a2:d6:e4:67:ba:c9:89:f8:b1:db:41:a6:5c:30:
                    7e:fe:ee:9d:85:e9:5e:02:8c:c1:37:12:33:a5:90:
                    3c:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:64:84:A2:A1:AA:40:C0:55:22:B8:57:CB:34:B3:E6:26:55:5A:C4
            X509v3 Authority Key Identifier:
                keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:c7:01:4e:05:ff:d7:4e:36:7a:bc:70:a9:01:02:e2:83:6d:
         c4:3e:8a:1e:9b:e2:ce:d6:1e:89:b4:02:9f:b4:bc:3b:df:1c:
         38:bc:42:f8:3c:c7:fd:ea:a8:66:c7:ff:5e:cc:73:44:68:d6:
         89:aa:5a:01:5d:a4:66:2e:6c:9f:aa:d9:02:0d:84:45:1a:80:
         91:45:f7:74:6a:92:e1:b3:7a:90:53:1a:e3:c2:43:2f:19:1c:
         5f:60:c7:3f:92:b2:f7:e9:c6:ca:34:29:06:f6:2a:5f:19:c8:
         ac:76:60:b1:11:ae:c8:f3:0a:f2:3b:70:03:50:24:4d:68:db:
         b4:d2:37:e5:d7:bf:6b:09:6b:f4:1c:cb:d9:d1:3c:a3:ef:ec:
         ea:2a:36:07:f7:d0:48:87:7c:26:d6:76:4a:98:4c:f3:c4:fb:
         fc:95:c8:17:b7:b1:03:1c:22:f7:90:b5:72:30:69:c5:2f:24:
         bf:ab:55:17:d5:75:77:7c:8c:b1:f4:ee:5b:0e:e7:a2:35:83:
         8e:5f:18:c1:1e:5b:f4:33:c9:60:68:e0:88:67:c9:86:bb:b9:
         85:5a:d2:67:2b:61:c6:11:0c:ba:f3:ce:0e:6d:48:ae:b6:25:
         34:26:d6:d6:48:68:dc:45:de:55:bb:39:58:41:19:9b:79:df:
         16:57:98:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 16:52:16 2026 by rpki-client