Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft
File:                     Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft (raw, json)
Hash identifier:          DAeyzAVxx0H+X2M3z3/uiY9HVu1EuOckKZN4sAql83w=
Subject key identifier:   B5:D7:51:CE:1B:86:E6:4E:7E:EA:71:D9:4F:A1:2D:97:80:B4:D9:F9
Authority key identifier: 4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98
Certificate issuer:       /CN=A9148CCE/serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098
Certificate serial:       D0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft
Manifest number:          CC
Signing time:             Fri 17 Jul 2026 08:01:18 +0000
Manifest this update:     Fri 17 Jul 2026 08:01:17 +0000
Manifest next update:     Fri 24 Jul 2026 08:01:17 +0000
Files and hashes:         1: Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl (hash: Kt4KsAiLN9PFx0mrQEuqE68ajoF7Y7MpdgKtKoBba0M=)
                          2: 8FD5A938522911F0AECD911AC4F9AE02.roa (hash: 9yyOlJOhdq5a9n8HjUs77Doecig0wOxCg0TdaMSwGMQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl
                          rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 208 (0xd0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9148CCE, serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098
        Validity
            Not Before: Jul 17 08:01:17 2026 GMT
            Not After : Jul 24 08:01:17 2026 GMT
        Subject: CN=6a59e14e-068f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:0e:af:7a:c4:0c:9e:0b:3b:b7:e1:d9:30:d8:
                    4e:15:a0:30:08:cb:bc:eb:25:85:37:1e:eb:e1:f7:
                    ea:4d:55:29:3f:b9:ca:7a:1a:08:df:2d:19:43:31:
                    fb:07:2e:e8:72:ed:71:6e:5b:fd:63:84:80:0e:db:
                    8a:2e:57:91:5a:aa:0b:a4:90:37:74:3d:2c:c3:39:
                    e2:e0:e1:e2:80:0d:3b:1a:d8:37:76:a9:e0:5b:76:
                    2d:c4:8b:5f:d5:c9:ae:71:ed:ab:d3:9e:ea:a9:90:
                    74:e6:f4:bc:0f:1c:28:1d:b3:87:33:f4:0f:3a:67:
                    05:a4:3b:ef:a1:d7:55:7b:63:e4:6e:ed:fe:d3:59:
                    68:92:c1:d6:2f:ee:7a:16:12:03:61:43:e2:43:17:
                    5b:57:0e:00:7b:72:1a:1d:4f:73:3a:05:d3:56:3e:
                    24:4c:a9:1b:a9:27:c3:5f:63:5e:a0:3b:9a:07:72:
                    d1:48:9d:7b:d8:15:1e:6e:ed:9e:c0:a6:4a:f8:f5:
                    c5:ad:70:9b:89:55:10:99:5a:72:8c:98:a3:01:7b:
                    fe:bd:28:78:11:c4:9d:2f:6e:a5:32:f9:c1:42:0b:
                    07:bd:37:9e:8f:86:11:c4:49:df:78:85:8e:ce:55:
                    99:ba:cd:13:7a:e7:48:86:69:6a:63:cf:d5:dd:55:
                    65:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:D7:51:CE:1B:86:E6:4E:7E:EA:71:D9:4F:A1:2D:97:80:B4:D9:F9
            X509v3 Authority Key Identifier:
                keyid:4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:83:5e:ba:6f:23:79:e7:e4:f3:0e:58:84:d9:6e:34:dc:ec:
         e2:69:3a:df:cb:a2:3d:a8:d9:2a:8c:e5:e2:30:4b:39:e3:da:
         c8:72:14:8a:46:ba:bb:5c:3b:a7:ea:3c:f7:08:9d:29:0f:05:
         f0:bf:db:8f:79:c6:b9:c5:81:9b:c6:1e:6c:c7:74:a7:b6:10:
         bd:b5:04:6d:a1:40:79:05:2b:3c:3e:e6:75:2b:1f:f7:79:fd:
         99:57:48:c7:1f:09:2c:8f:33:ed:f5:aa:d0:a2:e1:ba:2c:94:
         d3:7a:10:76:bd:fc:9a:d3:4d:29:7f:e1:0c:ad:e5:b6:fd:ad:
         3b:60:7a:79:a3:e1:b9:a0:af:91:3d:ad:d2:ff:9c:68:d2:ab:
         5c:5e:e7:cd:82:c8:cc:b4:2d:65:a8:47:f3:46:20:60:7d:16:
         a0:0a:fc:18:3f:96:ad:37:35:49:d7:54:fe:3b:03:01:4e:2f:
         37:bd:e6:d0:dc:fe:80:55:c3:39:05:2c:a5:4b:d1:25:06:27:
         95:19:2b:85:07:59:12:18:f5:a7:50:64:fe:ce:01:d6:d3:f7:
         5f:70:a8:e7:1d:2c:b1:f3:5c:0f:70:13:8b:a0:af:76:4e:3c:
         c8:71:e1:89:c0:13:07:ec:a3:0c:c0:49:b3:94:84:e2:3f:de:
         63:26:95:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:35 2026 by rpki-client