Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
File:                     UDJy2j7wq-3pU5x-JDobhoaxYfs.mft (raw, json)
Hash identifier:          GUZEulmNdSwR8z65UQA9i8m+CZQGb0trE/Eu+lIx2fI=
Subject key identifier:   9A:1C:AB:D9:B0:1A:82:3C:19:52:5D:3A:E4:8A:D8:8A:12:94:7B:A5
Authority key identifier: 50:32:72:DA:3E:F0:AB:ED:E9:53:9C:7E:24:3A:1B:86:86:B1:61:FB
Certificate issuer:       /CN=A9146906/serialNumber=503272DA3EF0ABEDE9539C7E243A1B8686B161FB
Certificate serial:       01C7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UDJy2j7wq-3pU5x-JDobhoaxYfs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
Manifest number:          01AF
Signing time:             Sun 05 Jul 2026 04:40:21 +0000
Manifest this update:     Sun 05 Jul 2026 04:40:20 +0000
Manifest next update:     Sun 12 Jul 2026 04:40:20 +0000
Files and hashes:         1: UDJy2j7wq-3pU5x-JDobhoaxYfs.crl (hash: zm+MyU8ZQ0MfzUIat/o0EzSJ8atk4XemINsvbwHh0Ug=)
                          2: C32999EE391F11EFBFAB6D66C4F9AE02.roa (hash: NwgLsmJQFQZ7JnzcAe2b4izRbdQW8izgpQyoJV+sBCM=)
                          3: DADBB0C033A411EF8E99B625C4F9AE02.roa (hash: CQPM9/Fl6ZbXuauzzpWSYxQSwy70daOMtjNk9KjElnI=)
                          4: C3A77BE8391F11EFBFAB6D66C4F9AE02.roa (hash: wuFURizk5QLGwFsHMNFlb2bZylsK126zQn7tqbHxnKQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.crl
                          rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UDJy2j7wq-3pU5x-JDobhoaxYfs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 04:40:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 455 (0x1c7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9146906, serialNumber=503272DA3EF0ABEDE9539C7E243A1B8686B161FB
        Validity
            Not Before: Jul  5 04:40:20 2026 GMT
            Not After : Jul 12 04:40:20 2026 GMT
        Subject: CN=6a49e034-50ba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:5d:b8:0a:66:0f:ba:1d:24:3e:d9:ba:8e:f8:
                    a8:1b:4c:7a:7c:f6:8f:0f:a9:43:7f:cc:e0:b6:b6:
                    6e:6f:81:dc:07:1a:74:61:38:44:5e:60:2b:d4:5f:
                    40:79:0f:33:24:85:67:5f:d3:8b:6f:c6:33:55:6e:
                    c5:ba:55:20:ce:48:5a:fb:ad:24:b2:fa:26:89:5b:
                    86:59:42:4b:77:53:22:b7:50:54:21:7f:f0:83:2f:
                    dc:b3:f5:6c:3e:6e:e0:9d:69:21:bf:48:88:2e:bd:
                    1e:bc:66:1c:61:8a:5f:75:14:4b:e5:03:2e:38:24:
                    54:e8:4e:38:40:ff:a3:37:83:81:ab:9f:95:81:4b:
                    dc:23:f5:6c:26:42:60:be:6a:7c:68:98:8c:a9:ab:
                    c5:84:38:ba:5a:17:5b:45:20:d9:3c:8d:76:cf:66:
                    e5:ee:33:b5:77:14:34:0c:8b:c9:65:71:b2:b3:33:
                    7f:8c:e1:de:42:06:62:35:81:11:df:49:56:fc:32:
                    0f:9f:db:c6:3b:9d:32:64:ee:1a:1a:0d:66:93:4c:
                    40:a3:bd:fc:92:d0:74:a6:e8:bb:42:19:32:f2:1f:
                    68:91:14:bd:cd:d7:c6:00:7a:56:fb:90:de:79:9a:
                    47:0f:62:d8:33:d2:db:d8:1f:12:50:bb:15:16:91:
                    26:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:1C:AB:D9:B0:1A:82:3C:19:52:5D:3A:E4:8A:D8:8A:12:94:7B:A5
            X509v3 Authority Key Identifier:
                keyid:50:32:72:DA:3E:F0:AB:ED:E9:53:9C:7E:24:3A:1B:86:86:B1:61:FB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UDJy2j7wq-3pU5x-JDobhoaxYfs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146906/283A668EE77611EEAAFF3E74C4F9AE02/UDJy2j7wq-3pU5x-JDobhoaxYfs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:b7:c4:51:f0:19:7b:56:67:58:f7:ae:ad:1e:c8:a7:af:fa:
         51:de:f2:c7:78:ff:9a:61:22:3c:d5:3b:d2:74:b5:68:9c:59:
         54:da:23:22:9e:88:89:a3:53:2f:27:39:75:d5:cd:cf:53:8d:
         35:23:75:09:74:c0:5c:b1:84:4f:58:42:d8:af:2d:d5:59:67:
         08:84:33:ac:c7:ae:62:9b:f0:aa:d6:03:a9:a8:cd:d9:1f:0c:
         3d:2e:06:13:3b:6c:15:d3:cc:45:83:12:6d:e2:2b:7e:05:40:
         13:f9:6b:c7:b2:53:ce:a4:d6:a5:f4:80:4c:f6:bd:a7:2b:cd:
         19:fd:ba:ab:f5:93:69:d3:8e:d3:91:d4:07:02:30:7e:75:6b:
         a2:82:ed:73:06:5a:62:1b:d2:ba:9c:66:42:3d:d1:8f:c9:f7:
         dc:42:e6:c7:ef:40:9b:12:51:2d:50:44:55:80:41:9f:8a:11:
         c4:99:b6:da:e2:f9:f8:b1:cb:a6:39:9d:e9:13:2a:0b:b3:6c:
         85:91:81:6e:6f:a8:bc:7f:c8:87:d7:b3:3a:00:05:dc:1d:08:
         08:47:d3:51:ef:ab:92:e6:a1:14:79:6a:8e:e2:b0:5c:0d:27:
         f9:b2:03:57:05:66:01:80:19:72:d3:28:cb:70:1c:52:e5:e3:
         50:67:5b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:16:23 2026 by rpki-client