Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft
File:                     1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json)
Hash identifier:          78RbgOZzfw1XjREWK7wUUjnk1ecPjsODTlJmaEGRVrs=
Subject key identifier:   B0:49:48:9C:84:63:2B:49:F4:68:5A:5D:A6:DE:4B:8A:85:2B:5F:63
Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D
Certificate issuer:       /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D
Certificate serial:       C6
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft
Manifest number:          C4
Signing time:             Fri 17 Jul 2026 08:04:38 +0000
Manifest this update:     Fri 17 Jul 2026 08:04:37 +0000
Manifest next update:     Fri 24 Jul 2026 08:04:37 +0000
Files and hashes:         1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: 16x6FNWk2zZplJ67XoqWudIC7tP4GGrB9Ko8l79Hy8A=)
                          2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: weUBuaqXjk5/5+ZvfK6KOqbWfTtXBnBwNWpgK2K7P90=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl
                          rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:04:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 198 (0xc6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D
        Validity
            Not Before: Jul 17 08:04:37 2026 GMT
            Not After : Jul 24 08:04:37 2026 GMT
        Subject: CN=6a59e216-df3d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:a0:5f:4e:5e:81:e8:19:9e:59:82:61:64:5c:
                    cc:f4:0f:f4:1c:00:9f:bb:b0:64:fc:7f:49:76:f7:
                    cf:05:40:9c:b3:ba:b8:d1:76:1a:92:02:6d:a7:e2:
                    a5:a8:c2:ea:36:02:34:64:7d:51:54:51:cb:fb:9d:
                    8f:94:8c:f1:44:aa:08:b9:f9:db:57:a8:69:66:e5:
                    a4:99:97:12:3a:f3:e3:b9:27:88:12:c0:52:f7:c5:
                    49:b5:a0:82:1d:9d:1a:c3:b8:f8:8e:64:7f:24:15:
                    45:8a:5c:a9:37:76:b2:3d:1d:da:d8:66:ab:8f:20:
                    9d:1c:7a:72:f5:91:8b:f6:92:bd:7e:f7:62:1a:c5:
                    32:74:3a:0e:1f:9a:28:c4:95:6c:21:a8:70:6d:7a:
                    b5:30:f5:4d:2a:4b:d0:12:7b:bf:f7:eb:f3:c6:a7:
                    6f:3e:a2:21:40:d7:12:d3:ed:f6:68:80:a7:5b:de:
                    9d:7a:ca:c7:b8:7f:20:18:09:49:68:62:63:e9:13:
                    f3:f2:f5:80:3a:90:89:13:04:e1:21:74:c7:7a:d1:
                    af:b6:b8:c9:f5:ba:10:d1:fd:e7:be:d6:9c:b7:23:
                    d8:cf:c2:4a:22:10:55:0e:7f:e6:14:79:12:ba:4e:
                    31:95:c7:38:33:1d:c7:d8:d6:02:fa:e0:13:76:84:
                    db:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:49:48:9C:84:63:2B:49:F4:68:5A:5D:A6:DE:4B:8A:85:2B:5F:63
            X509v3 Authority Key Identifier:
                keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:ac:5e:17:86:fe:ee:b1:f9:56:ca:51:63:e3:b6:25:f8:f1:
         44:76:33:0c:d8:9b:f5:c8:93:c3:af:a7:8b:53:0c:7b:36:b6:
         32:5b:57:34:f9:86:cb:0a:97:26:90:28:62:8b:9d:c0:72:b4:
         69:65:04:69:f1:a2:38:f4:c7:10:30:ce:af:b9:1f:c9:92:1f:
         10:85:ab:08:7d:2b:73:82:c4:b4:03:10:1a:de:9c:20:a2:cc:
         3a:c3:41:06:b2:a5:e9:33:9a:b2:ca:4d:06:54:87:97:c0:9a:
         92:71:aa:0b:d6:df:2f:aa:90:e4:8d:aa:c0:8f:db:e3:cc:f9:
         e1:3b:e0:92:4a:9e:ac:65:ac:a4:d7:8a:d6:72:2c:52:19:ac:
         88:dc:cc:a0:56:8f:11:77:8a:6b:92:8f:83:ed:ef:67:58:14:
         92:2b:60:8e:85:dd:b2:2e:48:5f:ce:a8:4a:4d:0c:ef:53:17:
         37:e1:25:a1:85:13:70:91:44:3a:7f:0a:f4:f0:e8:ce:41:cb:
         1b:fe:f6:b2:91:a3:73:3a:9c:7b:d9:f0:4f:54:97:70:86:0f:
         8e:81:7c:f8:37:34:79:57:f4:12:44:e8:04:05:d8:0e:22:2a:
         60:69:51:41:3f:80:47:dc:34:11:cd:66:7e:5e:e6:a3:55:cc:
         f6:33:e5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:50 2026 by rpki-client