Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft
File:                     DeK2pi5UoKYbzzFLbi77jzoeOno.mft (raw, json)
Hash identifier:          rTXEQqvLfbkA1MfnDUG6QrSb5bnl6rawQu0u9xBSwzQ=
Subject key identifier:   CE:E1:ED:2E:A8:5D:9D:67:45:D8:12:06:08:CD:09:0F:E6:9D:70:F6
Authority key identifier: 0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A
Certificate issuer:       /CN=A916F8DB/serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A
Certificate serial:       0210
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft
Manifest number:          020A
Signing time:             Mon 29 Jun 2026 03:32:07 +0000
Manifest this update:     Mon 29 Jun 2026 03:32:06 +0000
Manifest next update:     Mon 06 Jul 2026 03:32:06 +0000
Files and hashes:         1: DeK2pi5UoKYbzzFLbi77jzoeOno.crl (hash: jgjsBc58djE1hKuNmWcryVe4FvSpfBeNX8LjuUm6vKI=)
                          2: 65A459FE54BD11EE8C958973C4F9AE02.roa (hash: ygFLVggZHnv9whDU4ujjfyV418+cMpDVMJ9ym333+no=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl
                          rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 06 Jul 2026 03:32:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 528 (0x210)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916F8DB, serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A
        Validity
            Not Before: Jun 29 03:32:06 2026 GMT
            Not After : Jul  6 03:32:06 2026 GMT
        Subject: CN=6a41e736-9e00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:12:bb:32:0f:c2:67:7a:9d:4b:b7:5a:2e:73:
                    06:53:7f:ac:b9:af:6a:9d:b6:ba:ca:47:db:e2:4c:
                    22:16:e6:a4:07:99:c5:a3:a3:65:c9:63:74:14:a4:
                    66:dd:78:27:ee:e8:68:d1:7b:6c:9d:bb:98:68:d5:
                    63:89:4c:27:e7:6b:e8:bd:79:9f:42:9c:a6:dd:80:
                    e7:84:c2:a9:80:14:2d:2c:af:16:a3:ff:dd:03:74:
                    95:c5:15:d1:24:b8:f5:53:5b:5a:51:0e:02:ee:e6:
                    04:73:91:ea:ec:02:29:bc:8c:be:e4:30:03:b2:02:
                    94:be:41:1f:6c:58:fe:49:4b:6a:7f:c6:e8:4c:fd:
                    34:d0:1a:4e:9f:ef:d4:1f:8e:6b:fa:a0:de:6d:7b:
                    52:0d:3d:83:92:bf:54:54:2e:05:e4:4e:79:db:6e:
                    06:3a:f0:cb:b3:3d:93:18:f2:b6:04:98:e2:1f:8e:
                    4d:0e:b2:3c:2d:4e:8e:2b:bc:b0:eb:a3:e6:ea:5c:
                    36:82:e0:71:ac:20:3b:3a:63:31:b3:3d:60:5c:c7:
                    ba:6b:32:ca:1f:38:c6:0b:aa:f3:21:ca:3e:d9:72:
                    7e:06:62:25:c2:c6:ee:e7:5c:82:e1:7a:b5:a2:76:
                    25:11:51:e5:02:0d:00:8b:8f:57:c0:7e:21:c3:56:
                    68:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:E1:ED:2E:A8:5D:9D:67:45:D8:12:06:08:CD:09:0F:E6:9D:70:F6
            X509v3 Authority Key Identifier:
                keyid:0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:44:52:8d:ca:8e:6c:d6:fa:5b:fe:83:e1:24:a0:d3:c2:15:
         fc:de:48:b1:ea:6b:03:c9:13:cd:23:42:8d:f9:cd:94:14:71:
         65:87:80:b1:2d:df:48:d6:0a:f9:ba:1a:b7:d5:dc:e7:3d:be:
         06:d9:79:e6:eb:68:e2:bd:cb:a4:73:bb:f9:99:1a:76:aa:f1:
         2a:e5:5a:b9:25:02:39:47:66:a5:03:fa:69:86:7e:ad:2c:3b:
         dd:72:84:49:9b:e4:ca:b7:36:8d:b0:9d:d2:c6:ef:3f:af:1c:
         2b:43:08:ad:90:d5:62:13:49:eb:d7:ea:c7:02:09:43:b2:ee:
         5f:40:ba:9b:95:68:38:e5:7f:0f:9a:c8:d6:d2:ac:d1:25:03:
         d9:c9:cd:7a:46:ce:76:78:70:b3:94:02:a6:36:63:b1:48:62:
         ab:cf:62:ca:bb:07:f7:c3:6e:dc:54:51:0b:b5:33:dd:04:ab:
         e6:52:5b:d8:5b:3c:15:54:19:f5:08:c0:93:f9:fc:96:41:eb:
         e9:a6:4b:a4:8b:b7:2e:43:a5:11:bb:11:4a:6f:97:f3:39:96:
         69:2f:33:32:e7:71:02:8b:9c:01:25:e7:be:11:de:1d:18:7f:
         e5:5a:25:66:6d:58:1c:f7:36:96:1a:89:20:41:47:3d:6a:a3:
         85:c0:44:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 02:18:49 2026 by rpki-client