Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
File:                     G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json)
Hash identifier:          oAxU1HmgJYBJhq3gzs7rK5q67sZH8xaQsfJF/ET10HQ=
Subject key identifier:   D3:B3:78:C4:44:FC:7E:8D:1B:BB:DB:60:3C:2D:42:64:25:EB:76:9D
Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A
Certificate issuer:       /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A
Certificate serial:       1C7C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
Manifest number:          1C67
Signing time:             Wed 08 Jul 2026 16:24:32 +0000
Manifest this update:     Wed 08 Jul 2026 16:24:32 +0000
Manifest next update:     Wed 15 Jul 2026 16:24:32 +0000
Files and hashes:         1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: AptlaykHQjdMxDhqiQFcr4CRx8M6YDRH9Oeal6dHtmY=)
                          2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: fv4oRIQ4Gxh8CoHiTKL/BcGQRnYE0nj0QiSPtWSrjAM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl
                          rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 16:24:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7292 (0x1c7c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A
        Validity
            Not Before: Jul  8 16:24:32 2026 GMT
            Not After : Jul 15 16:24:32 2026 GMT
        Subject: CN=6a4e79c0-141a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:fa:57:c8:9e:6a:75:26:18:1f:db:94:14:2c:
                    1d:50:4a:fc:48:ae:c9:94:e0:7c:1a:fb:09:4e:84:
                    bd:ef:17:21:87:10:f1:c1:f3:4f:cf:16:71:05:4f:
                    a8:11:0f:05:ba:98:40:cf:7c:33:33:24:a1:5e:45:
                    45:ca:7a:0a:50:69:5f:80:93:05:8c:39:d6:5b:15:
                    94:53:ae:1a:20:3c:35:8d:a3:b4:ba:5e:0e:83:9a:
                    f5:b2:a8:b9:63:b9:e3:9a:3f:67:98:ac:57:16:5a:
                    e7:c1:1d:15:72:a1:ba:cb:42:b9:37:8c:dc:da:60:
                    45:2f:f4:82:06:d0:b5:ab:64:5c:70:a0:bb:dd:a5:
                    23:ec:13:3b:dc:00:a1:dc:5e:a8:1a:0f:4e:f1:e7:
                    cd:b9:c4:4f:84:74:bb:f6:40:e7:3f:83:be:ee:8b:
                    88:2e:fd:02:9f:87:58:ba:a6:f8:a2:99:5f:07:77:
                    36:3d:a2:52:e8:a3:7e:c6:a8:c1:bc:e5:12:72:dc:
                    b4:e1:de:42:d3:bf:91:66:75:9c:e7:87:4e:a6:f7:
                    25:97:41:00:11:64:37:3e:f7:67:6c:da:17:54:ed:
                    45:6f:45:ba:98:c7:6e:2e:38:a2:81:af:8e:83:2b:
                    ae:94:f3:c7:15:31:a3:2d:98:5f:5b:3d:33:46:4e:
                    43:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:B3:78:C4:44:FC:7E:8D:1B:BB:DB:60:3C:2D:42:64:25:EB:76:9D
            X509v3 Authority Key Identifier:
                keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:49:f7:37:70:1a:64:3d:9d:e4:f0:3a:5f:06:04:a8:93:8f:
         05:c9:3b:1b:7d:70:eb:cd:0b:a1:b1:ed:08:ba:97:06:20:07:
         e5:09:a0:4c:43:ed:61:3a:e3:04:7f:3d:e8:36:9b:d6:ea:3f:
         92:a4:5a:96:b6:50:35:69:14:ce:36:3d:b3:89:09:75:37:1d:
         90:a0:db:98:0f:b1:70:cc:c0:09:b0:f2:e3:63:a0:27:24:65:
         86:5f:3c:45:47:1e:3d:d3:6b:68:2b:e6:8f:06:07:1e:93:18:
         61:d7:28:fc:c0:4b:36:e0:29:de:72:e1:df:c3:35:4f:7f:96:
         52:00:4c:b1:75:6a:8f:05:1f:fb:e8:5c:82:8d:55:a0:5f:f1:
         71:9b:1e:7b:92:af:1f:1d:d7:c7:40:b8:1c:63:77:6a:3b:c5:
         ad:fe:e6:15:d7:09:39:0a:3a:22:2b:eb:45:e0:b1:c0:7a:d3:
         a5:d2:3a:d9:bd:93:c9:c6:30:64:41:d9:6c:01:66:57:54:7a:
         32:75:11:99:97:6b:a7:c3:8d:8a:a8:bb:3e:df:e2:c0:6f:0f:
         28:03:f1:1e:a1:d2:f3:dd:b9:98:bd:23:b5:52:6f:3b:03:26:
         da:e2:ad:52:28:35:cf:6b:7b:10:4a:da:b5:cc:ee:cc:ff:3a:
         d3:d5:1c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 16:35:58 2026 by rpki-client