Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
File:                     cHDFVlzC_kVsMWBAi25_toDAjBk.mft (raw, json)
Hash identifier:          fXhUDzKcFFZZu27fVK/1yQHw+8F3q72M66iHcxefs9Q=
Subject key identifier:   D6:A3:71:7F:C8:DC:C3:B5:F8:5C:EC:51:A4:AA:AE:71:68:02:E0:B5
Authority key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19
Certificate issuer:       /CN=A915B77C/serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19
Certificate serial:       0B32
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
Manifest number:          0B1A
Signing time:             Tue 30 Jun 2026 19:52:19 +0000
Manifest this update:     Tue 30 Jun 2026 19:52:19 +0000
Manifest next update:     Tue 07 Jul 2026 19:52:19 +0000
Files and hashes:         1: cHDFVlzC_kVsMWBAi25_toDAjBk.crl (hash: ORBMeNrNwtsznmdXAWPMD3Xwq0S3WcCVXs+ALzLy2TQ=)
                          2: 96ACE9CE8E8F11EE8915FE78C4F9AE02.roa (hash: m6x4cKoG0z5IGxS+jgyTdR66s445veI9JdXQ3dKCikw=)
                          3: 6EA165728E8F11EEA8A9EE68C4F9AE02.roa (hash: 8RfREkb1TfRtm9mZNRjcCr0gSCyT+B9RHPPp4JceAOY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl
                          rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 07 Jul 2026 19:52:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2866 (0xb32)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A915B77C, serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19
        Validity
            Not Before: Jun 30 19:52:19 2026 GMT
            Not After : Jul  7 19:52:19 2026 GMT
        Subject: CN=6a441e73-24b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:20:52:48:54:27:8f:e1:89:e0:7c:ea:db:99:
                    82:8c:f0:0e:eb:6d:ac:5f:00:85:96:f7:7f:ed:d5:
                    46:61:e4:40:6a:12:25:cb:06:0a:35:d4:97:e3:a4:
                    ca:dd:74:e8:4a:5a:5e:10:a4:ae:86:f9:1f:c6:67:
                    26:dd:0c:42:d0:a4:ed:69:46:9b:e5:66:96:05:49:
                    ea:f4:78:dd:75:ba:4d:3d:85:88:f3:21:95:3d:c0:
                    e4:f9:49:1c:36:a9:47:b0:8c:b5:bc:ad:29:f2:7f:
                    73:45:16:b1:fa:3f:58:9c:4a:0c:32:68:e9:7d:80:
                    de:02:0f:88:ad:ca:3b:bb:29:6d:a5:f4:4f:17:80:
                    e7:ee:17:57:6c:8e:a4:d5:87:a6:27:b8:31:61:c4:
                    ec:18:98:0b:b8:81:d6:16:17:64:33:ac:00:a7:b7:
                    24:90:97:5a:8f:31:5e:f0:14:6a:8a:68:20:9e:84:
                    71:4a:03:f9:2e:3c:79:9d:22:9b:67:39:7c:3c:36:
                    db:da:d5:36:fc:c8:a8:7f:8e:9b:62:68:b8:55:e0:
                    90:7d:f1:f3:fd:a1:88:bd:66:a6:cc:b6:6a:94:6f:
                    98:4b:e9:fb:d3:74:90:e9:49:51:dd:2a:6a:e3:6e:
                    a3:af:f0:5f:08:e0:50:16:46:db:03:fe:15:7e:ef:
                    4b:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:A3:71:7F:C8:DC:C3:B5:F8:5C:EC:51:A4:AA:AE:71:68:02:E0:B5
            X509v3 Authority Key Identifier:
                keyid:70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:a3:61:6d:52:28:8f:7d:33:0c:17:6d:52:9c:b2:02:8f:24:
         c7:d8:4d:94:c2:31:e6:22:23:6f:99:76:27:90:db:da:c7:40:
         72:11:4a:ac:a5:f9:90:f9:cb:28:d5:95:72:35:86:e2:de:92:
         55:c4:04:c2:e1:5a:e5:2c:37:d5:af:67:c5:ca:8c:6e:1a:a5:
         48:ed:90:f5:07:99:4b:6c:67:fe:20:d0:b0:ce:79:71:b9:b9:
         3c:47:bf:e0:43:37:76:04:1d:29:0b:f9:76:ef:06:81:dd:b2:
         53:6d:97:57:47:4c:8b:17:9c:36:b6:2e:ae:0b:98:68:25:cc:
         ce:a2:2c:f7:c2:56:43:35:c7:11:db:05:2a:1a:76:ca:83:91:
         44:14:c8:8a:de:97:aa:25:bc:a2:a5:19:4e:3e:4e:93:57:a9:
         cd:0f:cd:4c:1f:7e:5e:43:09:9a:23:e6:7b:28:fb:f6:74:d7:
         0d:58:b8:e5:85:6b:f9:5c:11:e9:98:e1:4e:3b:52:55:b5:0d:
         05:5f:13:f9:bd:2c:dc:1f:37:68:02:db:16:72:68:6b:41:8e:
         43:a9:5c:7c:cb:f2:ec:ce:bf:ba:5f:8e:80:2c:6d:f7:33:4d:
         83:06:86:96:e6:9e:eb:cf:33:f9:1c:28:a4:48:a6:1e:aa:bd:
         68:3f:4e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 21:46:24 2026 by rpki-client