Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft
File:                     W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft (raw, json)
Hash identifier:          btHcP3CgyPopdfR8KVovrD6wBM7erQUwOOlFeB5w5u8=
Subject key identifier:   EA:DC:F3:D6:2F:FA:14:73:9D:47:F9:97:75:EF:EC:B1:46:03:18:D7
Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F
Certificate issuer:       /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F
Certificate serial:       01B2
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft
Manifest number:          01AE
Signing time:             Fri 17 Jul 2026 05:04:21 +0000
Manifest this update:     Fri 17 Jul 2026 05:04:21 +0000
Manifest next update:     Fri 24 Jul 2026 05:04:21 +0000
Files and hashes:         1: W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl (hash: SNhX+4hneKQ9MVioSGCe62T0ksKXzdq3IegWqH+CCQE=)
                          2: FD990E7AF0B311EE9923BC84C4F9AE02.roa (hash: n8KxMW0Aaa9rptIg6bayOha3cuq2edyW8e+5wMGI3io=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl
                          rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:04:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 434 (0x1b2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F
        Validity
            Not Before: Jul 17 05:04:21 2026 GMT
            Not After : Jul 24 05:04:21 2026 GMT
        Subject: CN=6a59b7d5-6b6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:64:a1:4a:93:03:0f:f0:4d:8e:af:bc:93:4d:
                    9a:b3:45:69:65:03:04:f3:60:64:11:d3:0d:51:7b:
                    08:85:f0:49:1b:67:a2:29:4c:1f:72:a7:28:4a:3e:
                    86:86:a9:95:58:d4:34:3f:2a:22:2a:d8:3b:0a:1d:
                    12:e9:3a:c8:90:12:d8:56:b8:91:db:60:17:91:33:
                    40:36:2e:c9:a1:37:9c:2e:c8:09:1e:e1:bf:0a:a8:
                    10:45:f4:2e:25:35:ff:7c:d9:ee:2a:7b:ac:55:d6:
                    32:4c:b5:9f:f6:3a:91:98:b4:f6:1a:55:47:30:c4:
                    d6:8e:ad:dd:6a:a7:84:6a:ed:61:ef:0e:3a:15:8f:
                    28:09:95:ee:27:7a:e6:56:9c:08:18:af:e4:f4:e8:
                    e3:e2:cb:01:6b:fe:a7:0a:c7:a8:61:14:58:95:fa:
                    d1:f5:8c:68:0e:54:b9:1d:2e:b5:3f:1d:8a:84:33:
                    b0:b5:c4:38:33:ad:08:56:4b:b2:78:53:51:69:c1:
                    36:c0:1d:21:65:96:55:ae:ee:57:fb:30:f5:69:f2:
                    e5:db:44:d5:d9:f3:58:f8:af:93:63:4d:1e:41:5e:
                    a4:a3:13:68:3a:c3:bd:5d:2e:27:64:74:ca:06:aa:
                    cb:40:a2:7a:0e:be:f2:24:1e:ef:08:a2:5e:30:88:
                    5b:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:DC:F3:D6:2F:FA:14:73:9D:47:F9:97:75:EF:EC:B1:46:03:18:D7
            X509v3 Authority Key Identifier:
                keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:9c:d4:ad:db:22:bb:93:3b:6f:39:17:82:2f:40:f9:4d:f1:
         da:98:76:ef:a4:29:ee:d7:27:b9:74:97:99:c8:33:43:52:ee:
         59:24:83:65:62:5c:8d:1b:0a:c2:8c:47:83:53:bf:8f:b0:92:
         93:31:13:dd:b0:65:30:7e:dd:90:51:07:21:f2:8c:b3:d5:9d:
         6c:5c:b6:1c:71:c0:05:d2:23:2f:40:8c:15:e4:c3:28:a9:96:
         90:44:a4:89:ff:8c:1e:bf:02:d2:ee:f0:f6:95:ca:16:38:52:
         f9:17:65:b1:4c:d4:29:ec:5d:b3:05:f8:0b:67:aa:7a:20:a0:
         9e:83:b5:77:ae:2e:e3:9a:28:17:1d:1e:f5:15:e5:4f:71:35:
         b0:e7:42:fa:a6:bd:3c:7e:af:59:8f:53:13:40:2f:1c:6b:0e:
         0f:e7:91:e2:cf:22:53:4e:d4:f9:13:8f:03:c7:64:10:a6:f3:
         29:1d:18:a6:a2:bf:c7:12:d6:3b:3f:0f:5d:50:e3:2f:8c:00:
         62:f9:24:84:89:84:8c:bb:7a:71:95:56:59:5a:70:18:22:cb:
         94:8c:cb:09:b1:00:62:ab:70:f0:2e:fc:30:44:3e:c1:c5:2e:
         bd:ce:5a:03:11:e7:c6:1f:b6:e3:bb:c9:bc:57:0f:3d:dd:a1:
         70:1a:c2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:48 2026 by rpki-client