Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft
File:                     sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json)
Hash identifier:          6IN20f5DmsUX2ebvBGL+gf3ExuG08XOJsTYdyvyNDG8=
Subject key identifier:   A6:FF:48:3A:75:D9:63:BA:AE:9E:12:D0:46:39:2C:70:58:39:79:B2
Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2
Certificate issuer:       /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2
Certificate serial:       1051
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft
Manifest number:          1033
Signing time:             Thu 16 Jul 2026 17:30:20 +0000
Manifest this update:     Thu 16 Jul 2026 17:30:20 +0000
Manifest next update:     Thu 23 Jul 2026 17:30:20 +0000
Files and hashes:         1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: ilWUjm+/0Lh84ssj5YxH2pQrxKegULnDanj9X0D+YlI=)
                          2: 8EF29168D1ED11F08D3A6B3CC4F9AE02.roa (hash: 4Xje0XiJFLxR2quCCNpe0kCvsRqAV/JFhxiHtPkeXUk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl
                          rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:30:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4177 (0x1051)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2
        Validity
            Not Before: Jul 16 17:30:20 2026 GMT
            Not After : Jul 23 17:30:20 2026 GMT
        Subject: CN=6a59152c-6d1e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:ad:c2:e0:fb:83:4e:29:ec:bd:2b:69:82:ef:
                    c6:a0:7d:c7:42:35:46:03:1b:0b:97:5e:73:fd:bf:
                    4f:e0:11:d7:f7:63:48:55:49:b3:ea:04:e7:b8:7c:
                    43:d8:93:a2:b2:c7:1a:d4:70:aa:46:96:d7:59:91:
                    f0:70:7b:3e:4b:15:e1:c2:11:6f:a6:95:81:18:30:
                    fe:b2:1f:fa:86:c5:88:fe:51:fe:f7:39:39:4d:07:
                    81:b7:a3:79:22:e7:a5:ed:6e:8f:71:52:d7:c7:05:
                    e7:f9:eb:0d:92:5b:f8:92:3e:0d:e3:8b:bf:7f:e0:
                    79:95:82:d3:9b:21:fa:e1:8c:c5:a6:60:ef:d9:ee:
                    2a:8a:1e:a6:3e:f3:93:f4:32:25:33:a0:4d:f4:0b:
                    85:11:2b:f0:e1:9f:f8:82:05:12:fa:d1:b1:7b:8a:
                    bd:41:c8:2a:0f:f8:fa:b2:a1:01:11:db:ae:40:64:
                    0f:12:e0:6a:c4:68:12:e5:c2:db:cc:c0:41:fb:f7:
                    59:76:3b:a9:c2:60:fa:31:85:4f:b7:25:e4:96:16:
                    26:8d:4e:75:fe:55:19:a1:cb:e4:01:d6:3c:c6:d3:
                    9a:80:20:8c:fc:41:99:e3:43:a3:f9:c5:f0:72:d1:
                    29:fb:46:74:7b:77:e0:85:f6:7f:b8:0d:d4:84:c8:
                    2d:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:FF:48:3A:75:D9:63:BA:AE:9E:12:D0:46:39:2C:70:58:39:79:B2
            X509v3 Authority Key Identifier:
                keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:fd:9f:ca:44:4f:90:65:23:ad:e7:f1:ab:1a:14:56:d7:11:
         aa:0f:86:1e:9a:ff:85:b6:c1:c0:90:05:2b:eb:d6:c9:8e:23:
         eb:1b:05:65:61:32:56:d4:ed:82:e7:48:93:95:66:57:df:40:
         97:45:05:ec:f3:70:0c:d7:ea:1c:f6:bb:6f:c8:96:4b:c7:f7:
         17:69:18:cb:4e:02:c5:b0:4c:70:ca:47:56:1f:a3:97:b1:43:
         5b:2a:50:18:b5:ff:83:65:8f:82:11:d1:20:66:67:85:71:f0:
         bf:af:6d:76:78:9c:bb:53:4c:95:51:62:6f:1c:33:85:ab:6c:
         fe:df:a3:2c:5d:62:e6:04:42:cc:a0:4c:82:3e:58:31:38:4e:
         26:12:c8:32:c7:06:04:44:d4:4f:14:7e:92:f1:ad:49:79:ae:
         e1:6c:cc:58:1a:83:7c:ed:8f:55:87:d5:a2:79:d8:ee:85:61:
         39:7a:6d:3d:dc:e7:9c:1c:9b:17:92:00:a4:a2:f4:23:13:7c:
         26:b1:8d:2a:6d:75:76:de:ac:03:a2:ca:9a:05:22:7a:f9:f4:
         ae:c1:04:df:c4:c8:45:bf:d5:de:b4:b2:26:69:f4:c2:9c:4b:
         f4:02:b4:3e:72:33:a9:b5:eb:a0:c4:47:7b:2e:61:04:1c:48:
         9d:8b:41:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:17:18 2026 by rpki-client