Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
File:                     433E2CR2A-hIwAZsRFuc2NpzUNY.mft (raw, json)
Hash identifier:          QqNkJUKGs2ANNz0UETdmgseBtmDCAQ44ZlX7JTtJQoA=
Subject key identifier:   1E:CE:3D:C4:94:E5:0A:F6:28:02:7C:31:EF:B4:AE:67:87:69:36:22
Authority key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
Certificate issuer:       /CN=A916C8F2/serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6
Certificate serial:       C4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
Manifest number:          C0
Signing time:             Fri 03 Jul 2026 07:46:41 +0000
Manifest this update:     Fri 03 Jul 2026 07:46:41 +0000
Manifest next update:     Fri 10 Jul 2026 07:46:41 +0000
Files and hashes:         1: 433E2CR2A-hIwAZsRFuc2NpzUNY.crl (hash: KZ3FqSrzfBq8MSkFZuxB4fDptvPAmCoPFsSsPFAjCRA=)
                          2: 730C503A56C611F096620043C4F9AE02.roa (hash: 0O+T5p2u9RjCzYCInOpadN0gyJxBbnecFtZNvwYOPBQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl
                          rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 07:46:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 196 (0xc4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6
        Validity
            Not Before: Jul  3 07:46:41 2026 GMT
            Not After : Jul 10 07:46:41 2026 GMT
        Subject: CN=6a4768e1-5998
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:de:57:17:dc:9f:95:76:ad:f5:b5:d0:b4:29:
                    b5:50:ed:88:6a:1b:02:97:49:47:9a:3e:22:30:16:
                    37:56:98:ba:fa:d2:7a:2f:f5:26:cc:2b:6e:77:bc:
                    e5:e4:8a:bf:64:3a:5f:30:60:49:ef:57:17:38:27:
                    60:77:1e:70:f9:10:b3:6b:06:5c:e6:39:47:a9:f1:
                    df:9b:20:17:6d:1b:9f:05:08:ea:23:ed:da:aa:ee:
                    e8:d8:84:26:df:20:48:ce:20:70:b3:4f:80:c8:aa:
                    e4:7b:a4:d8:1b:87:12:32:33:a7:c9:5e:bc:bb:61:
                    1c:47:73:87:75:b8:d0:9a:a6:88:b4:41:26:ab:ba:
                    18:fd:fb:7b:66:e0:f8:99:8e:93:40:30:73:c8:e1:
                    b2:b0:21:7d:37:62:69:e2:c1:2e:29:60:56:15:0e:
                    bc:05:d8:3d:d4:b5:7c:9a:ac:ee:86:a2:90:56:a2:
                    83:fa:11:c3:18:d8:0b:44:09:77:e9:6d:5c:4e:ec:
                    80:5d:fa:32:0f:57:f7:a3:3a:ea:5a:f8:bf:a6:ad:
                    f5:26:28:29:87:1c:86:03:bb:d0:4a:54:7b:cb:d4:
                    e9:ca:c3:45:3f:93:16:71:15:3d:9d:dc:f7:b9:e0:
                    f2:c6:6b:4c:98:f1:cc:a3:c6:28:c4:45:ba:a7:56:
                    ec:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:CE:3D:C4:94:E5:0A:F6:28:02:7C:31:EF:B4:AE:67:87:69:36:22
            X509v3 Authority Key Identifier:
                keyid:E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:74:a5:c3:b6:54:82:ad:f8:87:47:5f:1d:54:c5:1f:b5:c7:
         ce:3f:b1:34:70:b6:98:b2:56:c8:af:18:e9:c0:2c:38:61:07:
         7c:da:18:38:ca:28:dc:dc:c1:8a:b4:47:39:a5:c0:08:67:1d:
         d3:19:3a:99:79:2b:67:c6:d7:42:ef:d0:1c:fe:83:2f:40:5d:
         f4:bc:dc:ab:e7:e0:4d:8f:14:e0:a6:04:77:c8:79:01:c8:4a:
         40:f4:82:7c:ff:f9:2e:25:e1:6d:f9:a0:d6:67:e7:f3:0c:93:
         60:67:cb:95:a8:e7:ef:9b:78:ef:cd:e8:55:7e:9c:d7:1f:bf:
         28:15:70:b0:d0:42:db:d6:ef:46:d9:58:72:fa:cb:77:12:d9:
         39:d9:36:66:44:9b:52:fc:49:01:dd:d9:e4:ad:29:70:07:77:
         73:79:bc:f1:6e:c4:74:ec:77:8d:4e:92:16:1f:8e:00:f9:21:
         1a:9a:66:93:48:98:f1:ae:ea:46:41:1c:4a:7c:5c:2d:4a:f9:
         6d:a6:de:38:75:a3:6e:00:5b:af:c8:f7:e5:0f:b2:86:c0:b2:
         f4:df:03:6c:f5:e7:bf:3f:ab:32:8c:02:cd:ad:7e:16:d8:57:
         2a:75:f1:8d:cd:0d:e9:10:24:89:ad:e6:27:f8:77:b1:41:5e:
         8d:bd:6a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:52:41 2026 by rpki-client