Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft
File:                     ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json)
Hash identifier:          CxfU3pY2JlA4PKkWd2qG8tvisNILuDMScp6mdFC4xec=
Subject key identifier:   75:F8:00:14:C0:4F:2E:BE:C1:FC:9C:A7:BA:B5:35:BE:3F:0F:1C:81
Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8
Certificate issuer:       /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8
Certificate serial:       07FD
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft
Manifest number:          07ED
Signing time:             Thu 16 Jul 2026 22:23:15 +0000
Manifest this update:     Thu 16 Jul 2026 22:23:14 +0000
Manifest next update:     Thu 23 Jul 2026 22:23:14 +0000
Files and hashes:         1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: l+U4ySA3DERIooeZY7wjIHvHvrhb2UcAdyw/d+Bgi90=)
                          2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: hcKRdUWFaZGYBF8VFWUbhmuLm8Ets1IhBYKNdVYBLqo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl
                          rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:23:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2045 (0x7fd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9157D67, serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8
        Validity
            Not Before: Jul 16 22:23:14 2026 GMT
            Not After : Jul 23 22:23:14 2026 GMT
        Subject: CN=6a5959d3-0801
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:87:3e:f7:b1:20:fa:67:74:ef:b0:20:d6:23:
                    91:95:96:03:da:13:a9:90:f9:83:f2:31:f1:6e:59:
                    7a:50:2e:31:d7:c4:28:2a:5f:2e:65:47:3f:19:2a:
                    da:be:c0:ba:ca:07:49:29:b1:75:cb:dc:5a:4b:2f:
                    7f:9b:b2:a3:ec:78:cb:3a:56:00:01:45:65:33:0c:
                    f5:b1:51:fb:a7:b1:8b:dc:f5:0a:ef:74:e8:d7:5b:
                    64:1a:d5:a3:ba:e0:99:d0:bb:34:1c:83:1d:5a:0b:
                    52:09:70:3c:a8:78:b7:23:11:2a:bd:53:1a:a7:e8:
                    32:4c:b9:f2:58:b1:73:31:11:39:80:3f:c9:20:47:
                    e7:7a:f4:a8:d6:9e:3b:92:fe:67:b7:c7:b3:70:7c:
                    ec:20:b1:af:28:0d:61:33:8c:1d:16:0f:cc:7f:93:
                    82:8e:f3:ae:0e:c5:b9:8d:6e:89:42:54:e9:26:a6:
                    23:34:cb:29:97:7e:11:56:61:82:6a:37:3b:a9:0c:
                    5d:e1:c1:40:9a:06:91:b6:b4:b7:99:c9:61:0c:6a:
                    8e:3f:b8:19:3a:cc:48:db:64:a9:cd:ec:6d:7d:44:
                    cf:4b:c0:74:1f:bb:dd:8e:26:39:1b:52:98:00:c5:
                    47:aa:f2:ac:8a:fb:14:97:c0:50:36:36:0a:0c:d9:
                    44:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:F8:00:14:C0:4F:2E:BE:C1:FC:9C:A7:BA:B5:35:BE:3F:0F:1C:81
            X509v3 Authority Key Identifier:
                keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:fc:5c:54:a2:9e:4f:83:7f:60:17:5d:f4:bb:88:5b:c5:78:
         0f:0d:c3:09:ac:93:92:47:a3:01:4d:43:cd:ec:fe:7c:e5:90:
         7a:4d:05:9c:b4:d6:0f:a0:f5:81:8e:7b:56:f0:99:a2:1f:20:
         86:6e:79:bf:36:e1:fb:a4:ed:ac:66:65:a4:e3:b2:dc:f6:46:
         8e:ea:d6:15:67:98:e6:7d:e1:19:e2:a2:1b:1d:c3:9e:a4:fd:
         5e:09:51:90:c7:a3:7b:7c:da:fb:9f:0e:38:de:95:e7:5c:86:
         2b:1c:73:42:19:6c:fa:da:49:8c:35:89:81:a8:45:ea:c8:94:
         07:fe:85:ad:16:8b:f3:11:cf:bb:41:ac:2d:dc:7b:06:86:61:
         9e:7b:a0:4e:8f:17:51:d8:6e:d9:dc:88:66:f2:e4:ac:a0:bb:
         04:8d:d3:0f:bc:15:d8:6c:90:7a:76:b6:93:85:4f:d9:a4:5f:
         c0:b5:8b:cf:8f:ac:07:ba:fb:dd:47:51:59:6c:ce:40:d3:4d:
         63:71:a4:74:2d:57:47:85:4b:e3:4f:d6:6d:53:e8:ee:c1:e2:
         82:71:0f:2a:63:4d:74:7a:4a:c5:3d:71:23:b0:85:c3:65:94:
         82:b6:41:cf:78:64:15:2b:08:0a:af:65:99:63:53:ff:57:9d:
         7c:dd:d2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:20 2026 by rpki-client