Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft
File:                     2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json)
Hash identifier:          A4o33pNl6jlecfM8TIqBOOx0vM5nAXNvsLi8FYc7wKM=
Subject key identifier:   A8:47:09:DB:82:9A:A2:74:6E:0A:FF:CD:6E:55:EE:00:B7:4F:FB:3C
Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29
Certificate issuer:       /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29
Certificate serial:       013D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft
Manifest number:          0139
Signing time:             Fri 17 Jul 2026 06:36:45 +0000
Manifest this update:     Fri 17 Jul 2026 06:36:45 +0000
Manifest next update:     Fri 24 Jul 2026 06:36:45 +0000
Files and hashes:         1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: kq4Rp6p6Ir3yGIu+0rnGm2azVNehwZ0SYQSufX462yQ=)
                          2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: Mbaq1JxQwVcFP87z4eBI+1tbhFSk65AD4tx8mWL3NcA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl
                          rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:36:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 317 (0x13d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29
        Validity
            Not Before: Jul 17 06:36:45 2026 GMT
            Not After : Jul 24 06:36:45 2026 GMT
        Subject: CN=6a59cd7d-b4fb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:51:42:08:5f:e4:fd:05:0e:c9:6c:c0:12:ff:
                    6e:ff:42:91:2d:c5:58:c7:ed:69:d6:c7:e5:c9:28:
                    23:e6:18:bf:48:c8:d0:bd:31:bc:74:b8:ee:63:ed:
                    14:08:51:cd:a3:01:31:5e:de:f5:2c:61:90:4f:01:
                    33:73:ef:54:d5:38:6c:4b:a9:f7:f4:03:84:47:32:
                    74:ed:70:75:d1:ed:7f:82:74:68:e9:06:db:76:cd:
                    f8:0d:11:09:02:ca:7e:40:d0:0c:59:59:83:fb:99:
                    e4:65:c9:b0:07:6a:77:13:b0:4d:c3:de:8e:0e:8c:
                    cd:6c:2b:89:b4:56:de:1a:27:24:4b:28:02:91:9f:
                    de:b8:ef:89:e5:be:5c:f2:34:b1:32:cb:e1:4a:d5:
                    6e:eb:a1:f2:cb:5d:6c:57:8f:a3:a8:33:6a:06:65:
                    80:d8:02:94:ce:32:0b:e8:0e:bf:fa:92:87:24:bc:
                    a1:4c:35:9a:49:37:9e:6c:5a:f9:d7:e6:dd:17:ab:
                    e3:62:1d:65:46:ab:7e:75:94:df:23:01:35:c0:23:
                    f8:8f:20:48:09:74:17:f8:15:a7:9c:5f:bb:b6:78:
                    6e:ff:73:64:63:29:23:e9:47:f3:97:a2:2c:a0:62:
                    d8:d8:36:78:d2:db:78:f8:0e:7b:df:68:1c:41:b7:
                    d1:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:47:09:DB:82:9A:A2:74:6E:0A:FF:CD:6E:55:EE:00:B7:4F:FB:3C
            X509v3 Authority Key Identifier:
                keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:68:0d:8e:76:35:73:02:32:55:24:29:73:7d:20:3b:e1:bc:
         78:77:28:72:92:8d:dd:37:4b:3c:22:db:f7:2b:b8:de:8d:9a:
         9d:ef:b7:98:16:fa:46:af:7a:2a:1c:58:a3:6b:17:a0:ba:23:
         9d:a2:f0:86:f6:46:f3:f2:e4:e8:73:55:34:94:a0:5f:a3:67:
         d6:92:84:23:2f:d1:76:27:13:02:83:11:ca:77:ee:88:33:55:
         84:05:f4:25:27:68:58:a3:63:4f:1e:22:b5:83:b3:27:7f:b3:
         7f:bc:29:0c:11:99:c5:96:e9:2d:e3:47:05:60:3a:20:ea:48:
         f8:20:c3:49:d7:6d:c2:84:48:6c:9d:7e:c3:03:07:bd:5f:cd:
         9d:49:9a:b0:55:a8:ff:e8:80:c3:f7:5f:f9:ba:72:e3:34:aa:
         26:a6:85:bd:95:89:64:71:ee:26:32:9b:30:69:93:ba:fe:3a:
         48:3e:20:a6:91:2a:f7:19:3d:90:3c:aa:43:fe:9b:ef:6c:80:
         d7:cd:f4:a3:89:56:8c:2f:20:96:e6:7f:44:35:aa:04:5d:34:
         e5:69:2d:6e:3d:44:11:71:ef:00:05:90:a5:e5:ab:9b:6a:8a:
         3c:3f:86:16:36:45:93:97:39:20:bc:5a:51:2d:2d:d5:e7:5a:
         1e:b9:94:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:47 2026 by rpki-client