Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
File:                     XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json)
Hash identifier:          bDa6J3CV/ZMS0mfArjouda4JaKPmKsVT1c3blQRLyGk=
Subject key identifier:   3F:09:C1:E5:AD:B4:22:59:F7:AA:48:10:D3:B5:A2:EB:1F:67:43:E0
Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C
Certificate issuer:       /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C
Certificate serial:       0188
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
Manifest number:          017F
Signing time:             Fri 17 Jul 2026 05:11:15 +0000
Manifest this update:     Fri 17 Jul 2026 05:11:14 +0000
Manifest next update:     Fri 24 Jul 2026 05:11:14 +0000
Files and hashes:         1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: XQD79CqEPsJ4AmnKVbY31LvDQsVVIMnFh7UbytJPXqE=)
                          2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: Wxf+pnMbRXmK89KrT1cPFUY8XepsRf7BgNp3XpkASBg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl
                          rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:11:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 392 (0x188)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C
        Validity
            Not Before: Jul 17 05:11:14 2026 GMT
            Not After : Jul 24 05:11:14 2026 GMT
        Subject: CN=6a59b973-cb08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:f2:f6:a0:7f:ea:20:7a:b3:3f:2b:5d:ee:4f:
                    38:55:f4:40:5e:44:89:ee:63:41:07:d9:5f:77:89:
                    79:ce:7a:3f:8b:c4:69:a1:6c:86:16:30:76:74:a3:
                    47:86:08:3b:eb:65:df:28:e8:0e:d7:9d:06:19:e8:
                    75:09:90:ac:2a:a8:2b:3c:0c:4a:aa:d1:28:46:85:
                    68:35:f3:07:39:a5:93:b3:73:33:a7:a2:25:fc:4f:
                    12:42:83:80:19:5b:0c:ae:bd:b5:6b:c6:4c:26:df:
                    d6:e3:4b:4f:4a:62:3f:f7:ec:d6:4c:59:44:a6:62:
                    f6:32:9c:f2:a4:69:4e:d5:80:b5:89:c8:eb:47:34:
                    0f:4e:0f:e4:35:79:ed:56:9d:12:84:79:f0:06:80:
                    34:26:64:18:8b:29:28:fe:dc:2c:0e:e8:91:01:81:
                    55:db:4a:cd:80:57:60:dc:77:19:eb:c2:1d:30:0b:
                    6c:ee:d2:01:e0:d1:b8:c0:40:a7:fa:21:8d:c7:ee:
                    08:41:ae:d0:b7:87:94:ba:eb:ad:a9:bb:3f:35:c1:
                    32:6d:e8:88:34:2f:89:74:28:3c:aa:0a:67:e6:a6:
                    a2:28:32:bf:65:5f:db:d1:15:d3:5f:e1:fc:54:48:
                    0d:6a:7f:fc:46:16:92:f0:52:dc:61:b6:b9:87:82:
                    db:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:09:C1:E5:AD:B4:22:59:F7:AA:48:10:D3:B5:A2:EB:1F:67:43:E0
            X509v3 Authority Key Identifier:
                keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:6a:6b:51:12:b5:8a:0c:a6:45:f8:39:3f:81:6e:2a:51:58:
         dd:c5:7f:a2:32:80:05:1c:e5:ed:9e:d9:5c:0d:05:40:ef:84:
         dd:b1:ac:70:0a:6d:79:dc:67:1e:95:44:45:05:3a:92:29:18:
         0a:ba:91:c7:5e:4b:7a:ba:ac:c7:7e:87:69:57:07:b5:27:10:
         7e:e6:44:21:71:ad:fb:08:83:f5:4f:c6:4c:2d:dd:3a:9a:00:
         e8:2a:a1:61:97:26:fd:05:0d:27:85:9c:93:51:a1:76:fa:27:
         6e:10:90:b0:f6:2b:d3:d7:38:96:ff:c7:f3:37:e2:f3:d5:b5:
         c8:f4:d0:a5:80:2f:f2:e2:ee:4f:0c:5a:57:89:8c:b6:95:c1:
         3b:eb:9e:c9:5d:15:30:82:75:71:df:40:a3:eb:52:4a:1d:11:
         72:6a:0e:20:62:1f:f5:5b:1a:16:e3:90:cb:5c:21:24:53:c0:
         61:93:c6:19:9a:cc:48:9c:20:03:d6:13:68:1d:d8:b6:48:c7:
         d4:a2:0c:ed:4b:e6:cd:ac:de:a2:b7:31:eb:b7:d6:87:0f:93:
         28:0e:9f:e4:6a:f6:78:3f:16:60:21:a8:e4:a5:24:15:b3:fc:
         da:a8:46:ca:b5:e4:29:67:1b:65:54:74:08:2f:7a:c0:3c:56:
         4e:ac:3a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:30 2026 by rpki-client