Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
File:                     oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json)
Hash identifier:          na7bvQ1abEYgRKg+LnhTCFmO2s/9Hagh9fSd8js4D1Y=
Subject key identifier:   C1:C9:26:DD:F5:4F:2C:AE:91:4B:35:33:A9:9F:62:4C:3F:C4:BC:7D
Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF
Certificate issuer:       /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF
Certificate serial:       0209
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
Manifest number:          0202
Signing time:             Tue 07 Jul 2026 04:03:12 +0000
Manifest this update:     Tue 07 Jul 2026 04:03:11 +0000
Manifest next update:     Tue 14 Jul 2026 04:03:11 +0000
Files and hashes:         1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: Pk90SSSX8pAKu9zWiEjuOnpIW9vVYnusrDkFkk72SUE=)
                          2: 8E87CD5A8D4C11F0AD32532AC4F9AE02.roa (hash: 0I41scQnlQoDdFvVFzcCFfoeGZFnCbRneF/j1Qm629c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl
                          rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 04:03:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 521 (0x209)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF
        Validity
            Not Before: Jul  7 04:03:11 2026 GMT
            Not After : Jul 14 04:03:11 2026 GMT
        Subject: CN=6a4c7a80-2ad4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:61:a8:fa:96:ba:1f:39:53:f3:3d:3e:68:b1:
                    9f:cc:5c:28:88:b6:ee:de:54:fa:c9:bc:50:3e:99:
                    d9:a0:fd:e9:33:02:65:4a:35:5d:a2:88:79:29:6f:
                    9a:00:13:1e:36:7d:39:6c:ac:f7:59:7c:27:68:01:
                    f9:89:3c:af:d7:5d:e7:49:78:ef:21:e6:d8:85:bd:
                    7b:f2:89:61:5d:dd:bb:b5:1d:30:b4:52:6a:9e:74:
                    9e:cf:18:54:46:36:8e:26:e7:da:de:66:89:8f:1d:
                    f4:c7:d1:b3:2e:17:65:85:8c:b2:5a:21:fc:4e:e3:
                    5f:35:a5:61:c2:04:9b:6d:a6:54:79:b1:55:6a:bb:
                    ba:d5:8c:94:b4:13:b8:7d:fd:bb:56:3d:c5:bf:b2:
                    d7:98:d7:d3:14:ce:dc:05:97:0d:31:13:d5:26:4d:
                    47:cd:25:d7:38:39:dd:01:e4:d3:a8:d8:8d:a7:1a:
                    52:27:47:cd:5a:4d:46:f3:08:c8:fc:57:58:37:7e:
                    0b:4f:8b:c2:f8:4b:1a:04:f8:ed:59:aa:c0:ce:a7:
                    66:1d:62:8e:9c:7a:24:20:a8:8d:fb:92:d3:79:10:
                    3d:1f:cb:4b:67:be:de:37:9f:5f:e4:61:4d:3d:12:
                    5c:1f:2c:50:cf:dc:07:ee:ee:55:cc:1b:62:c8:db:
                    86:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:C9:26:DD:F5:4F:2C:AE:91:4B:35:33:A9:9F:62:4C:3F:C4:BC:7D
            X509v3 Authority Key Identifier:
                keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:db:33:1f:88:df:a4:7c:c5:62:7f:50:89:2d:2e:09:3c:fb:
         09:77:1a:fa:bb:81:7e:44:0d:42:28:47:d1:70:83:12:1e:7f:
         6c:c6:1a:fc:76:06:9d:82:26:1f:9f:79:76:53:e2:99:88:e0:
         d2:2a:b6:8c:df:fb:fd:cd:d7:f8:8e:c8:10:ac:e1:bf:5c:ee:
         69:d0:01:31:76:6b:f3:be:4f:ab:af:21:5b:07:95:e6:3e:62:
         89:05:82:fe:59:82:2a:e6:b2:41:c9:2a:04:51:51:7e:5d:53:
         3d:d1:b7:22:35:20:62:58:36:3b:b0:d7:f0:67:20:19:d6:a3:
         40:cb:58:83:87:d0:f5:db:fd:7d:93:d9:98:ef:4e:a0:58:b7:
         12:99:aa:f9:57:92:eb:43:4d:01:ca:22:c5:ee:be:25:1e:d2:
         ec:b1:db:e2:f9:da:dd:3d:0f:ba:35:6c:e5:fb:92:cb:89:73:
         18:0e:d0:63:b6:72:61:74:0a:f7:6b:94:f3:08:b8:e2:a2:32:
         04:f2:d6:db:bd:a6:4b:42:bc:1c:83:dc:10:e3:ea:84:d3:51:
         f7:b6:80:2c:19:60:8d:cc:43:ee:12:23:55:8e:af:1c:55:95:
         69:78:9f:6c:eb:d6:0e:85:a2:ac:9c:e0:67:fe:e0:e6:db:b8:
         39:e2:fd:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 23:12:47 2026 by rpki-client