Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft
File:                     ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft (raw, json)
Hash identifier:          mkDOYqMS0v8fP/WvP2Wh7PA1rAhQkgAiTDuNvthAK0I=
Subject key identifier:   B4:86:EC:A7:9F:B2:4E:20:45:F1:8A:19:C2:D5:60:E3:45:12:87:6D
Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18
Certificate issuer:       /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18
Certificate serial:       017E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft
Manifest number:          0175
Signing time:             Sun 05 Jul 2026 05:21:17 +0000
Manifest this update:     Sun 05 Jul 2026 05:21:17 +0000
Manifest next update:     Sun 12 Jul 2026 05:21:17 +0000
Files and hashes:         1: ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl (hash: 6Y/P0bvMVYPg7InLe9nUYbwoi/HipoIvqi5LSUYFxFM=)
                          2: A8051CC4508011EF81053074C4F9AE02.roa (hash: gEOQ4Shko9Ffhb3sUw/V54wk1wOVzUKZiGrhJDBT6Fs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl
                          rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:21:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 382 (0x17e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913F2E2, serialNumber=21261B89749893C3B31841B96FE3FB6323032F18
        Validity
            Not Before: Jul  5 05:21:17 2026 GMT
            Not After : Jul 12 05:21:17 2026 GMT
        Subject: CN=6a49e9cd-aa7a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:db:5a:7b:a1:aa:58:cc:82:e2:a0:67:b5:06:
                    56:f3:6e:99:5b:3c:4c:5f:f5:cb:42:8b:48:6c:3c:
                    46:b5:eb:89:84:2b:e6:2f:21:6d:ba:9d:50:62:f2:
                    40:41:1b:82:dc:17:d0:4d:f5:74:a9:6c:02:86:8b:
                    6c:6f:7d:c5:ef:e9:ed:be:c1:7d:3e:e0:c8:65:e0:
                    92:03:79:db:c3:ac:a6:29:5f:aa:cb:d7:ed:09:ec:
                    1c:e3:37:59:31:ad:02:74:e8:3b:da:2b:c7:06:47:
                    ea:65:c9:d8:74:66:e5:96:32:c9:35:2f:82:16:f6:
                    1c:47:69:d3:42:c8:fe:ba:1b:ea:20:64:77:5d:0d:
                    c0:8a:3d:5f:3e:42:03:8d:f2:48:40:fd:48:55:c8:
                    c6:88:f8:40:e9:97:65:89:2b:dd:a1:fe:f6:4a:06:
                    bf:8c:da:b0:d0:79:3a:1e:cf:72:b5:42:76:83:0c:
                    bb:bf:c3:66:3a:31:84:18:f7:c8:07:07:48:c1:b5:
                    f4:1f:96:10:9c:2b:9b:26:14:81:fa:b8:f5:54:79:
                    df:15:89:eb:d0:f5:e7:c5:7d:b0:13:21:e1:50:1a:
                    86:2e:79:34:ce:e8:d8:13:8e:9d:48:94:5a:38:3c:
                    f8:78:69:25:1b:df:8b:82:62:b9:73:ef:6b:da:20:
                    14:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:86:EC:A7:9F:B2:4E:20:45:F1:8A:19:C2:D5:60:E3:45:12:87:6D
            X509v3 Authority Key Identifier:
                keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:16:15:ae:e4:7c:9d:74:32:6c:9f:0a:01:19:d8:22:11:c1:
         1f:43:f6:a9:1c:93:7a:4d:1b:b8:57:0f:d8:d4:33:80:c9:56:
         e2:e9:3c:cf:e7:51:e3:19:17:71:c2:24:14:19:bc:fb:12:d6:
         fe:f7:8f:90:87:04:f8:a1:a2:47:6c:09:2f:b6:e5:a4:f6:e5:
         96:f1:aa:df:b0:f0:f0:14:af:97:c7:02:a4:fd:a8:a5:50:d0:
         b8:11:8f:95:d9:4f:17:24:13:a1:01:c3:c4:47:9b:a9:9d:f4:
         70:a1:3c:d6:0c:cd:0c:4d:63:c8:67:97:1a:e2:f5:f9:cb:cb:
         20:59:0b:bc:8f:05:85:9d:72:9f:74:be:23:0a:dc:a0:3f:71:
         21:8c:71:81:51:2c:68:51:8f:83:58:07:8e:43:7b:e1:77:4d:
         7b:38:88:84:8b:e5:06:a9:56:08:eb:23:fd:22:be:07:53:3a:
         33:11:f1:8f:7a:22:cb:c0:c6:e0:0c:df:fe:2f:89:34:17:c7:
         e1:c4:9e:95:05:04:55:14:ca:b7:81:c0:29:08:ee:cb:11:59:
         31:6e:41:48:53:70:fa:0d:a0:72:3d:e2:99:b9:ce:af:53:c7:
         7e:a2:24:37:63:4b:44:88:29:c7:0e:cd:2d:ba:48:56:eb:00:
         50:e6:d5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:21 2026 by rpki-client