Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft
File:                     Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json)
Hash identifier:          39VfNKQztfTImb/5HIdsqf2EA6cw5jTqQOpJOgK7sKo=
Subject key identifier:   57:FB:8B:0E:87:BE:33:AB:EA:0F:BB:A3:6E:53:EF:43:AC:FC:D3:F8
Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94
Certificate issuer:       /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94
Certificate serial:       058E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft
Manifest number:          0584
Signing time:             Thu 16 Jul 2026 23:49:09 +0000
Manifest this update:     Thu 16 Jul 2026 23:49:08 +0000
Manifest next update:     Thu 23 Jul 2026 23:49:08 +0000
Files and hashes:         1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: dEqopo4q3mwzoxAZhUxq8Rt8k8FOFpWohNF9tK9xOT8=)
                          2: FA73196C6DE711F1AA720C725CA30FBC.roa (hash: pCO2JAGPlXln8a9u0qBW16Bj24ZR218132+aPis8m+k=)
                          3: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: I6IT2owDLfV5TvMKrbrd8HwemeT+BKI0jfx24fbp7QE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl
                          rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:49:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1422 (0x58e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94
        Validity
            Not Before: Jul 16 23:49:08 2026 GMT
            Not After : Jul 23 23:49:08 2026 GMT
        Subject: CN=6a596df5-b963
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:57:09:58:f7:4d:a4:c2:87:35:5f:f2:00:f3:
                    5d:49:39:aa:22:7c:d2:d5:cc:65:36:58:f4:cc:85:
                    45:57:93:36:c7:67:be:cc:b1:0c:f6:57:1e:40:47:
                    22:f9:e0:38:41:6d:df:3c:99:28:de:69:73:59:01:
                    4f:fd:52:83:d0:09:27:c9:64:8a:58:9d:95:5f:d2:
                    aa:49:ff:ea:d0:d5:68:fc:5a:39:f4:12:c5:d0:9f:
                    94:07:28:c9:8d:b4:4d:8d:9f:e7:2b:ac:3e:09:89:
                    6f:94:0e:9b:54:a2:f5:07:ac:0c:fd:9e:a9:11:4e:
                    78:fd:5b:b8:e7:df:07:93:42:70:86:fe:6f:48:35:
                    81:cb:42:20:79:69:43:41:10:8c:e9:b1:56:b2:23:
                    dc:e5:ba:30:a8:a6:a8:3c:74:51:0a:d9:e7:45:e7:
                    4b:68:03:2c:3c:ec:57:dd:ef:5f:15:95:09:0a:b6:
                    3f:45:0a:28:47:4b:07:f5:54:d2:2d:05:6c:29:3b:
                    3e:d7:74:5d:de:ac:25:fa:19:42:0c:b1:32:3f:03:
                    38:f0:ef:45:22:03:c8:38:10:48:19:c2:2e:20:3c:
                    32:fa:d4:3f:f9:d6:ec:b1:4f:5e:79:8a:d2:9c:66:
                    78:9f:56:0f:56:9f:42:27:84:c5:35:1a:1a:69:a5:
                    4d:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:FB:8B:0E:87:BE:33:AB:EA:0F:BB:A3:6E:53:EF:43:AC:FC:D3:F8
            X509v3 Authority Key Identifier:
                keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:50:57:f5:18:97:ec:2d:62:34:24:6c:71:16:3a:14:a1:44:
         d3:46:d1:6d:7d:44:95:82:87:14:4c:c1:da:ef:2e:a6:dc:8d:
         84:d8:5a:0f:53:19:22:22:50:85:f1:1b:4b:f2:66:26:45:9d:
         cb:e7:d3:fd:2e:ab:48:25:7a:59:28:fe:85:40:a2:43:cf:48:
         9e:e1:6c:a4:34:1a:9e:cb:b8:b0:a8:25:0f:fd:7c:e4:6a:e7:
         5d:c9:d7:b8:35:bf:7c:de:8d:4b:86:67:ca:2d:96:d7:ef:ba:
         ad:cf:3c:21:93:ce:64:57:4b:55:2c:07:68:70:97:0e:f3:84:
         0b:34:88:c4:d4:2d:67:53:bb:a8:c8:9a:a3:bd:b7:2f:b3:73:
         37:ea:88:d2:d4:bc:b1:80:47:f3:a3:67:77:4d:1e:39:99:00:
         67:b3:1a:92:7f:2a:bd:54:b4:fb:bb:22:25:75:28:75:ae:5c:
         c2:d6:18:53:aa:bc:9f:0c:33:1e:ff:58:17:bf:4d:b4:27:26:
         46:3e:2d:3d:65:33:67:fd:ed:48:31:ef:3c:29:56:a2:fb:e9:
         79:37:49:fc:e7:6d:0a:4b:28:0f:16:6f:7e:2d:30:55:e7:04:
         3c:21:47:dc:4c:13:3d:e0:f3:8b:a0:f1:75:6a:05:50:e4:57:
         27:29:2f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:21:59 2026 by rpki-client