Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft
File:                     -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json)
Hash identifier:          RJp7MB4iLGotW39DKjzKMOM0U1//rPJHPfOYcNsMzOs=
Subject key identifier:   9B:C6:3B:8D:84:19:C0:75:0A:54:E2:40:72:84:79:40:32:E8:46:A5
Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0
Certificate issuer:       /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0
Certificate serial:       020A
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft
Manifest number:          0205
Signing time:             Thu 16 Jul 2026 15:32:18 +0000
Manifest this update:     Thu 16 Jul 2026 15:32:18 +0000
Manifest next update:     Thu 23 Jul 2026 15:32:18 +0000
Files and hashes:         1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: KrqUPwAsf0hQQ/BdaGCqg+SX69NrgZEL8TVim+/zmlY=)
                          2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 7WBF/67tQLlM0JIff5LKTgy333KC+LPGrQsaWqMRIeQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl
                          rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:32:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 522 (0x20a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0
        Validity
            Not Before: Jul 16 15:32:18 2026 GMT
            Not After : Jul 23 15:32:18 2026 GMT
        Subject: CN=6a58f982-9e07
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:cb:8d:97:a7:f8:82:5c:60:8c:32:a6:20:0d:
                    15:f5:69:41:44:ba:0a:d5:74:21:fa:07:b5:b6:0c:
                    70:c7:7c:fb:22:d6:09:75:6c:6d:b3:6f:bb:23:70:
                    85:1c:74:3c:3b:36:a0:c0:d4:90:8e:39:9e:2c:9c:
                    1b:53:e3:c3:7b:d5:0b:ff:24:be:dd:31:2e:f6:1b:
                    05:cd:a3:88:92:cc:16:fb:2f:f4:87:69:85:4c:d4:
                    5f:e2:2c:45:32:65:71:f6:0d:97:6f:d7:05:69:2a:
                    e2:ec:a4:85:37:d5:98:ba:ba:27:41:1b:ca:fc:ac:
                    c1:86:52:9f:db:36:57:b2:b6:81:dc:a4:88:47:e1:
                    bd:99:fa:28:d2:63:80:a8:22:13:3a:32:61:b8:70:
                    76:74:e1:ef:0f:70:ce:e7:7d:49:37:83:96:d8:9f:
                    84:e1:1b:31:d1:69:36:58:e1:58:22:2a:37:00:e0:
                    43:ca:ac:3f:8f:77:82:97:c1:49:4d:ca:f1:1b:95:
                    20:13:0f:93:18:bf:2a:db:d5:6a:a1:24:ad:1b:3f:
                    3d:9b:c0:32:0c:51:3a:1c:fd:a8:07:b0:c5:0f:b2:
                    db:c1:da:e5:bb:c1:d7:27:39:9c:ae:d5:c8:2f:b0:
                    ca:ba:6d:27:e8:ac:61:3d:0e:df:99:2b:a7:68:a1:
                    3c:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:C6:3B:8D:84:19:C0:75:0A:54:E2:40:72:84:79:40:32:E8:46:A5
            X509v3 Authority Key Identifier:
                keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:91:8e:7b:a9:3e:84:db:a9:98:69:47:f6:99:3c:b7:02:a4:
         43:4b:ce:f7:86:ef:b4:6e:c6:34:2f:44:90:0c:4c:f0:21:85:
         ae:51:5a:01:73:0e:64:58:5d:d3:89:43:52:8a:af:03:fb:9a:
         f2:bc:3e:e9:d4:00:d6:5a:44:37:2c:02:0f:60:cb:59:32:85:
         2d:fb:a0:26:18:14:f4:0f:58:92:2f:89:69:47:02:96:11:8d:
         89:04:f4:a9:f4:3e:6a:39:b8:36:52:2c:e7:de:7a:96:10:ea:
         2a:ea:ad:81:89:44:28:7b:ad:4e:90:74:1a:f6:5c:17:2f:6d:
         1c:21:8c:78:59:89:c7:e6:0b:84:8e:01:30:72:f9:2a:e2:0c:
         3f:6b:7b:41:2f:75:f1:01:c9:46:5c:a3:24:1f:76:d1:be:70:
         85:20:0d:68:a6:19:26:48:1b:50:2e:19:7c:27:eb:d8:c6:e7:
         e6:a0:a2:e7:6e:0a:d4:00:79:56:49:27:7c:8d:71:13:c0:fb:
         f3:6b:a5:fb:e4:c5:88:74:45:22:62:30:62:84:55:31:43:30:
         1e:65:07:d3:92:26:8b:01:ac:23:d9:5d:e3:89:78:01:f8:02:
         7e:8f:29:56:1d:72:23:ad:ab:4a:c4:eb:33:5f:b3:3b:28:dc:
         52:3c:2f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:35:03 2026 by rpki-client