Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
File:                     PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json)
Hash identifier:          YpfmZP21F0we2hQdzko4kXlCktc2ZkDoUTpcQBYZgdk=
Subject key identifier:   00:9F:DD:2E:BB:ED:6B:C9:36:E3:00:00:B8:2C:17:C0:23:7C:8E:CD
Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D
Certificate issuer:       /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D
Certificate serial:       3553
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
Manifest number:          3550
Signing time:             Sat 04 Jul 2026 15:07:43 +0000
Manifest this update:     Sat 04 Jul 2026 15:07:43 +0000
Manifest next update:     Sat 11 Jul 2026 15:07:43 +0000
Files and hashes:         1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: qs9k63sPPisFS1yIv7RuLMIkmYjGq6pN4NRz3w3HPto=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl
                          rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 15:07:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13651 (0x3553)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D
        Validity
            Not Before: Jul  4 15:07:43 2026 GMT
            Not After : Jul 11 15:07:43 2026 GMT
        Subject: CN=6a4921bf-3e76
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:e8:cc:d7:91:5a:8d:7b:df:be:2c:5c:b9:fd:
                    e5:54:71:18:14:ed:19:85:5a:fc:2b:4e:b9:12:19:
                    ba:f6:2e:b0:f3:0c:84:51:c3:e7:e8:27:c7:08:de:
                    d9:d7:bb:48:a5:d5:6e:9e:37:d9:dc:ea:a8:5f:8e:
                    8c:8c:6f:84:f1:28:0c:bb:04:7e:09:00:d6:b7:38:
                    ef:e8:b4:a1:23:dd:5a:55:e6:1d:f7:69:80:a4:f8:
                    dc:91:dc:39:99:04:d4:d3:05:da:8c:d6:28:a0:42:
                    c4:fb:84:c2:52:ec:06:fd:60:6f:94:92:ba:0b:2b:
                    e3:0c:d4:e7:f1:a0:dd:96:4a:b5:a1:bd:bf:de:3f:
                    65:42:15:98:d6:da:3f:0e:a1:36:be:42:74:fe:c4:
                    2c:74:d3:bf:56:7c:fc:12:aa:98:10:1a:d9:28:90:
                    6f:de:df:7e:1a:e6:1a:bf:9b:6f:ac:22:bf:d8:6f:
                    99:69:e0:58:91:d6:e4:ea:cb:6d:07:07:62:af:13:
                    5e:ec:73:f3:69:07:30:65:30:1f:7e:fa:6c:c3:3b:
                    4d:dd:ee:5a:fa:ee:0f:90:eb:ac:ef:0c:05:dc:06:
                    d7:cd:d8:ca:6f:ec:11:8c:30:01:6a:26:ee:e3:c9:
                    7a:af:23:de:96:c9:9d:2c:28:44:2e:f3:15:95:91:
                    f1:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:9F:DD:2E:BB:ED:6B:C9:36:E3:00:00:B8:2C:17:C0:23:7C:8E:CD
            X509v3 Authority Key Identifier:
                keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c1:62:08:22:b3:2b:4c:a5:ca:10:07:ed:f5:75:23:c9:ee:c6:
         48:08:65:24:de:79:ce:76:7c:f8:40:d5:01:20:85:9d:13:19:
         8f:9d:18:67:7b:18:b9:41:c8:2f:f9:1c:46:60:7f:8a:4b:72:
         e9:97:da:55:9f:28:db:44:32:55:f3:a5:51:5c:ba:a5:96:b2:
         e8:c1:b2:48:8e:50:4d:39:f6:1f:26:e7:55:ff:8e:3c:43:f3:
         bc:80:2a:a0:58:ba:c3:e7:88:1c:ef:f8:21:09:94:d5:17:08:
         3e:f8:a9:52:87:e6:a3:d7:ae:da:ca:c2:10:7b:41:58:25:f1:
         2b:b3:30:a3:19:4d:e3:3d:71:92:8b:ce:25:e9:4b:ec:08:e7:
         5b:d3:c0:47:e4:bb:21:ee:1a:c2:0c:d6:68:b4:d3:a8:3b:7e:
         0c:bd:c7:b4:b5:55:d4:20:10:5d:10:ec:2a:b4:08:a4:ec:aa:
         92:ce:fc:98:86:9e:0f:36:04:ec:a6:77:f2:c5:77:56:22:bf:
         42:eb:28:53:b7:f1:f8:bd:71:9d:4e:0c:84:3b:a8:b3:b5:42:
         04:42:2c:6a:51:4b:a5:3b:9e:59:c5:3b:ab:0f:41:05:ef:f3:
         66:22:46:9f:4f:a4:23:67:b9:fa:d1:09:88:e7:3a:4c:ff:0a:
         4b:e3:44:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:54 2026 by rpki-client