Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
File:                     k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json)
Hash identifier:          8kOtwsCNix+K8zgGbfwF3VhBme0OSTnTRpNhEpw1jF0=
Subject key identifier:   0D:D0:1E:B5:96:5C:8E:70:98:3E:04:EC:95:CA:A5:EC:97:78:A4:57
Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD
Certificate issuer:       /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
Certificate serial:       0547
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
Manifest number:          0540
Signing time:             Tue 07 Jul 2026 00:06:07 +0000
Manifest this update:     Tue 07 Jul 2026 00:06:07 +0000
Manifest next update:     Tue 14 Jul 2026 00:06:07 +0000
Files and hashes:         1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: rg3ZMPGLK+3lw6+OQlXgvemHIdG2xiDz01GGZ09BSAQ=)
                          2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: SOuuEngzMzJn6tRotSYMuHwkZUu/qid4gvYTernifnc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl
                          rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 00:06:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1351 (0x547)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD
        Validity
            Not Before: Jul  7 00:06:07 2026 GMT
            Not After : Jul 14 00:06:07 2026 GMT
        Subject: CN=6a4c42ef-a8ad
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:f1:69:9c:40:5f:ed:a5:f0:5a:79:53:fc:1a:
                    53:fa:ca:26:3e:17:fb:de:82:50:89:21:da:15:bb:
                    c2:2e:1f:2a:f9:79:03:66:ff:77:23:75:dd:dd:2b:
                    29:75:16:cf:81:df:8d:30:bc:bf:52:cd:66:fa:da:
                    94:f4:c1:b4:5c:48:39:ed:fc:62:32:a4:f6:4b:b5:
                    3a:eb:b6:87:ab:ed:d1:ea:53:af:4a:66:1d:71:bc:
                    24:b3:03:86:0b:18:93:7a:ea:1e:c6:e8:85:24:55:
                    9d:88:65:cc:d8:ab:cc:31:b2:2c:b1:43:d5:a7:b6:
                    f7:b8:ae:86:79:21:11:6d:86:ca:ac:e3:c8:a7:90:
                    72:13:f8:4f:ca:f9:8e:d1:1a:44:8e:63:6f:46:6a:
                    dd:3d:05:57:57:72:f2:ea:88:76:23:60:90:2c:55:
                    55:c0:94:b7:2a:a6:5c:5a:bd:8d:99:e4:93:c9:57:
                    34:02:85:9a:48:64:f7:95:ac:65:cf:dd:ef:ce:04:
                    15:fd:ef:dc:01:a5:84:86:09:a3:a2:ff:74:0d:f6:
                    7d:e8:81:14:9d:39:f0:5c:6c:af:b1:ba:5f:e2:df:
                    85:35:c1:e2:53:e3:da:80:60:d9:09:be:15:ca:92:
                    44:74:ef:61:bf:1d:00:d0:55:e9:45:5c:6b:50:a6:
                    6a:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:D0:1E:B5:96:5C:8E:70:98:3E:04:EC:95:CA:A5:EC:97:78:A4:57
            X509v3 Authority Key Identifier:
                keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:30:d9:e5:b6:e7:0c:f8:30:f1:20:54:b4:65:f1:83:35:2a:
         5b:5d:8e:6a:2c:bf:e5:55:0c:0a:f3:54:5d:b1:8d:26:0b:28:
         04:bd:ce:ec:6c:35:6b:fc:5e:e9:08:ef:37:17:6b:54:a7:0e:
         24:d3:34:5b:23:19:de:2d:b1:82:f7:dd:fd:82:6f:f3:78:c2:
         86:eb:db:11:9a:13:29:76:00:9e:21:3d:a5:86:2c:db:5b:a7:
         07:b2:7e:2b:64:9a:00:bd:a3:7a:cb:43:19:56:8d:34:b3:aa:
         7d:cb:41:b6:57:57:10:44:63:26:eb:48:ea:b1:fa:4c:34:97:
         63:de:de:79:e6:1b:e8:a1:fe:ee:6f:d6:35:bd:3f:77:7f:bf:
         62:05:5e:61:fa:32:1e:48:8d:80:17:70:a0:5f:11:0b:43:74:
         ff:d6:54:57:e0:7e:5c:97:87:cf:56:6d:88:ae:c5:d9:c9:30:
         3c:21:b6:c7:ba:9f:d0:9a:1f:19:5a:86:b3:28:32:03:3f:c6:
         26:e2:5e:ed:a0:0b:08:38:34:0f:fb:d6:01:96:fa:37:18:9b:
         3e:1e:0a:88:65:1a:87:10:c7:19:6b:c9:cf:8b:63:57:56:73:
         1a:25:0b:f6:2a:03:41:cf:db:25:2b:36:4b:e6:b1:a8:b2:24:
         38:c6:0e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 03:35:46 2026 by rpki-client