Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
File:                     tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json)
Hash identifier:          UzjjrqXrdPOhae4+PTjkGWU7Ail/qdlQuV9eycahUVY=
Subject key identifier:   D6:35:A1:EC:E1:09:07:7F:BB:BE:8E:04:4A:8A:51:B9:0A:C2:05:C2
Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19
Certificate issuer:       /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919
Certificate serial:       0135
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
Manifest number:          0131
Signing time:             Fri 17 Jul 2026 06:44:53 +0000
Manifest this update:     Fri 17 Jul 2026 06:44:53 +0000
Manifest next update:     Fri 24 Jul 2026 06:44:53 +0000
Files and hashes:         1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: 278RgBriJJP0BiZzFopsWIYkAQFT6mt9HRBT/CXwwrM=)
                          2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: v6BylN14fOxA4ftijT2xm8ugkwjC+LIOM8D065x7bmM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl
                          rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:44:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 309 (0x135)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919
        Validity
            Not Before: Jul 17 06:44:53 2026 GMT
            Not After : Jul 24 06:44:53 2026 GMT
        Subject: CN=6a59cf65-9e10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:71:0f:0b:0b:86:fa:22:90:ec:5c:d2:32:5d:
                    41:a5:01:23:38:0b:0d:6a:3f:c5:8a:99:d2:2a:7c:
                    9e:24:cf:f0:d7:58:e6:4e:a7:f0:cd:35:b7:48:b7:
                    c3:79:3c:8b:6d:b6:fd:70:00:42:e1:41:f4:9e:94:
                    3f:40:cd:c5:c7:68:ac:09:d3:5e:5a:26:5b:5b:05:
                    e9:bd:02:d0:6e:25:e2:79:5f:3a:55:76:32:09:ec:
                    fa:98:cd:0a:a3:52:37:04:8f:2e:c9:f6:81:72:9a:
                    0b:c6:6c:a1:ef:d1:c9:da:7a:d3:e6:3e:f5:0b:0f:
                    ba:e7:ab:97:32:6b:b8:e2:11:d7:3d:fa:0d:7f:e6:
                    9f:51:a5:61:26:b1:b1:ae:2a:e9:74:79:81:d7:56:
                    35:19:9c:ce:6f:08:f6:ea:d6:2b:d8:bc:59:73:fe:
                    2e:2d:86:78:92:8d:57:61:ff:b7:98:a1:c5:22:5b:
                    ba:0f:a4:08:85:b9:6a:6d:ac:fe:a3:18:28:b8:bf:
                    5d:78:00:38:07:a6:19:84:95:14:c6:e1:e7:e5:ab:
                    27:68:60:cf:6d:a1:3c:15:4c:33:6b:40:7f:a2:b3:
                    05:e3:71:9f:08:be:b0:3d:0a:49:71:26:9e:4f:8d:
                    ae:45:26:a1:95:14:86:2c:69:c9:65:8f:dc:ad:c1:
                    3f:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:35:A1:EC:E1:09:07:7F:BB:BE:8E:04:4A:8A:51:B9:0A:C2:05:C2
            X509v3 Authority Key Identifier:
                keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:cc:e3:fd:de:12:d0:d8:50:c8:be:97:c0:66:ac:85:d4:03:
         b0:e6:98:7d:bd:a2:20:36:7f:51:20:0d:45:58:0d:9c:fc:30:
         7d:ef:2e:94:07:f5:1d:68:37:d2:8a:ec:5e:e3:22:3a:b8:a0:
         43:8c:b3:c1:fd:26:28:4d:7d:f7:10:9a:90:eb:68:dd:07:82:
         ca:42:ea:b6:7b:68:c0:8a:e5:82:d6:a3:f5:3b:55:d0:91:d8:
         96:9e:d6:d3:81:aa:39:95:45:1e:50:3b:e4:f7:5d:a2:1f:45:
         b6:6e:bd:58:30:8c:f5:46:6b:e2:1c:5e:f8:10:8f:ed:36:36:
         ea:fa:7f:2a:f8:87:71:9e:c8:87:94:9b:dd:a6:b2:b1:79:71:
         f3:5f:b0:23:ab:30:21:28:62:63:a6:3d:b3:ab:6a:76:13:a4:
         cd:95:20:1e:52:62:db:e6:04:a4:5b:76:1d:1a:f2:0c:49:e2:
         48:71:04:9f:33:94:8a:da:27:c8:77:5a:b7:8a:0a:7e:11:38:
         ca:c2:e1:72:f1:b9:6f:c6:19:c7:7a:46:c9:ca:6a:a5:94:74:
         59:5f:c3:c8:72:03:4f:ea:22:b6:81:a4:69:2e:c3:4c:95:2b:
         e4:0f:be:18:17:2f:ac:00:c1:b5:51:70:fa:1f:39:57:62:22:
         72:69:9f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:29:57 2026 by rpki-client