Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
File:                     R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json)
Hash identifier:          i2dCjeJrjD96pGcTKSGr1O22aOwE0UQh4Q4zOmnu7Qw=
Subject key identifier:   55:87:8A:02:CA:E7:99:A1:38:E7:38:E0:CC:18:B5:E9:E2:72:E2:00
Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3
Certificate issuer:       /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
Certificate serial:       0DF2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
Manifest number:          0DE0
Signing time:             Sat 04 Jul 2026 17:56:36 +0000
Manifest this update:     Sat 04 Jul 2026 17:56:35 +0000
Manifest next update:     Sat 11 Jul 2026 17:56:35 +0000
Files and hashes:         1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: iRTK6F72WL/nVxg/3EIXAPjJ36YsOgVsoCEGceWOHE4=)
                          2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: BERBRpUK9OW10E7s8SXbXfmaAhMyFWqG+VQ0XIykVvs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl
                          rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 17:56:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3570 (0xdf2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3
        Validity
            Not Before: Jul  4 17:56:35 2026 GMT
            Not After : Jul 11 17:56:35 2026 GMT
        Subject: CN=6a494954-4ec5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:b8:73:fa:f4:53:12:f9:e2:b7:89:70:f4:c8:
                    29:57:e2:ab:9f:76:19:97:87:bc:78:47:7a:f3:5c:
                    3b:72:68:10:a4:3c:c7:30:49:83:f6:a0:86:e2:71:
                    9c:fa:be:3c:7f:4b:4d:75:46:50:f7:34:a4:90:cf:
                    57:b4:3c:4a:20:20:f2:0a:8f:0c:0f:99:c2:ae:2f:
                    28:c1:19:f2:4f:57:00:d7:95:ca:1d:32:ee:b7:b1:
                    64:4d:8f:be:e5:2b:b3:30:1b:55:73:1d:61:88:3b:
                    16:9a:10:79:48:5a:ec:35:58:d3:47:17:11:79:3d:
                    1a:a9:8e:ea:07:39:81:4f:e6:ee:bd:cb:92:06:40:
                    f2:7b:4c:f8:20:65:d8:cb:5b:e0:19:5b:fe:8a:d3:
                    bb:21:2d:8d:2e:13:ce:7c:66:54:aa:5b:d6:f1:5f:
                    9b:f0:97:ba:d7:99:49:46:d7:51:12:6f:af:d0:47:
                    a9:77:97:30:a9:f1:cf:5e:87:e3:0f:b7:89:c7:a8:
                    86:10:23:6e:a6:2b:52:b5:f1:58:9e:d7:73:60:34:
                    3c:d8:00:51:d5:4b:14:09:cc:f0:ff:35:1e:bb:26:
                    2c:03:3f:0f:04:39:55:40:42:d5:65:3a:18:42:a6:
                    a2:5b:e5:2a:3f:3b:31:98:e4:63:d4:d2:68:30:0d:
                    69:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:87:8A:02:CA:E7:99:A1:38:E7:38:E0:CC:18:B5:E9:E2:72:E2:00
            X509v3 Authority Key Identifier:
                keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:27:77:65:52:3c:16:01:e9:8a:e4:80:83:25:57:28:70:9e:
         e6:a4:0f:e7:9c:d9:c0:e7:f5:d6:1b:43:42:f0:51:ba:9e:73:
         61:30:bb:95:70:32:4e:c8:a4:20:c5:a9:b7:3f:98:8e:a9:55:
         f9:ac:90:71:6b:bf:54:ba:bc:1b:ed:26:99:36:82:bb:d7:e3:
         83:1a:c4:99:d3:6e:43:ea:da:77:4c:db:14:19:1e:78:92:42:
         c6:8f:86:44:5c:15:81:8e:dc:fa:f9:c1:b0:97:3b:b7:8b:7c:
         be:0f:e4:bd:32:27:dd:7e:e3:7b:4c:d2:8e:a3:57:5d:86:a9:
         97:70:39:1b:fd:da:2a:2f:9f:7f:dc:0c:d0:88:a5:95:99:8f:
         1d:c5:37:0b:08:15:89:2d:e8:2e:fb:f0:ec:e1:f2:26:4c:bb:
         0e:e7:85:13:9c:5e:52:8d:f9:92:92:f5:db:a2:6c:95:0c:49:
         36:e4:58:94:0f:a6:6d:4d:8d:7c:72:25:20:6a:17:b4:c5:14:
         0f:92:38:17:71:96:94:86:1e:2e:36:91:a5:2a:28:cd:c7:a7:
         7d:27:f6:ba:23:22:d0:55:20:aa:32:bc:44:75:59:9b:fa:bb:
         6a:aa:2f:5b:d9:ff:e6:9b:c4:67:a1:50:69:63:75:8d:f7:df:
         c1:0b:65:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:15 2026 by rpki-client