Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
File:                     cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json)
Hash identifier:          +x5Lf+Grtn3NWKnXtXMaqlUAbxEJMEfsz5LyGXycZOU=
Subject key identifier:   F2:02:4D:E5:4D:C2:89:82:15:92:68:53:07:E3:BB:C8:01:C7:52:06
Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3
Certificate issuer:       /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3
Certificate serial:       01D3
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
Manifest number:          01CF
Signing time:             Fri 17 Jul 2026 04:43:06 +0000
Manifest this update:     Fri 17 Jul 2026 04:43:06 +0000
Manifest next update:     Fri 24 Jul 2026 04:43:06 +0000
Files and hashes:         1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: xTGL/31mbDQtb0/hGNrnxbC0KsuRv/szEOCPvZUbfDE=)
                          2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: w85ShfVmSSazA40BnYySK0taMWm3Jht1Z+WUVvSZtWM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl
                          rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:43:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 467 (0x1d3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3
        Validity
            Not Before: Jul 17 04:43:06 2026 GMT
            Not After : Jul 24 04:43:06 2026 GMT
        Subject: CN=6a59b2da-2f37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:b9:cd:29:b2:c9:58:a0:9e:cc:7a:9a:3b:a2:
                    9c:ec:a1:78:4a:26:c6:b0:f2:44:76:87:65:f2:a4:
                    7b:f0:4f:b0:27:12:26:46:80:cb:94:a3:4b:69:fe:
                    54:4f:7d:46:e8:b9:4d:cc:f2:40:27:9f:05:14:1f:
                    c0:6d:98:eb:86:59:99:31:62:ee:6c:ab:1d:00:06:
                    74:2b:b9:d2:ce:87:80:90:2d:05:e0:5b:fd:1c:4b:
                    9c:c4:d1:91:78:d3:44:a4:20:65:41:78:f1:eb:9a:
                    7b:c1:bd:bb:f5:63:80:df:21:8c:d6:ad:21:40:55:
                    2f:e5:c0:90:ac:da:47:66:c8:d3:38:be:d6:64:77:
                    07:00:6e:7d:43:eb:ef:29:1d:44:aa:af:e9:aa:c3:
                    a0:fa:6a:5f:cb:95:19:a5:fe:f5:34:e8:78:11:93:
                    74:9b:d8:aa:41:2b:dd:c1:77:63:21:4e:f0:36:dd:
                    63:bf:9e:9c:4a:df:f7:70:22:8f:21:34:de:0a:37:
                    d1:9b:a2:a9:ab:c7:9d:14:30:ec:42:e1:71:e0:49:
                    d4:43:97:c2:78:e0:83:d9:88:2b:63:0c:33:ae:65:
                    83:87:a7:36:d9:af:26:53:fd:1b:89:b0:f6:b2:27:
                    a9:25:71:27:e2:bc:65:9f:ce:81:d1:a5:36:cc:c0:
                    e5:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:02:4D:E5:4D:C2:89:82:15:92:68:53:07:E3:BB:C8:01:C7:52:06
            X509v3 Authority Key Identifier:
                keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:b1:8d:ff:f4:b7:a9:b4:fa:0b:2d:5f:2f:79:7a:bd:53:ab:
         e3:46:fe:61:7c:d2:43:f2:df:cf:bc:0d:79:d1:f5:12:92:78:
         44:3a:3b:b3:40:aa:74:d2:ac:2a:d9:02:6c:8b:60:7d:b0:a8:
         81:df:26:be:79:12:08:69:f4:61:11:d8:a4:e1:4c:92:db:38:
         ea:f3:f2:a3:43:32:a9:fc:a1:6d:10:5e:83:97:dd:83:bd:9b:
         84:40:3f:b1:0d:58:3b:d3:a4:3a:f3:4d:14:4e:3c:f8:e8:93:
         94:7b:9b:a1:06:c5:5d:dc:3c:d6:32:79:dd:1c:a1:a0:b6:91:
         bc:e5:43:a9:b7:9c:7f:c9:83:71:fc:17:3d:fb:26:bc:2d:78:
         5c:df:e8:ed:01:64:8b:20:fe:72:d6:42:7b:df:78:86:24:79:
         ee:a7:03:fa:d8:db:3a:e4:80:e2:2f:4b:af:54:92:c1:a1:ad:
         8c:b8:4a:68:1a:e2:76:4d:01:0f:27:e5:2f:76:a9:e7:e4:b7:
         93:e7:cd:41:63:92:e7:e8:87:8a:b5:0d:08:a2:be:4c:4d:2f:
         cd:77:bc:ae:19:97:9f:35:e5:dd:5f:f5:00:71:43:a4:be:49:
         10:89:3e:91:88:fb:7b:12:0d:f9:f3:e0:c7:37:31:f2:0b:4b:
         0d:3d:8c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:31:30 2026 by rpki-client