Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft
File:                     cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json)
Hash identifier:          /scBluuvoWbiYsuc4ndmhzTNZRZJ80m0DSaXLLshvlA=
Subject key identifier:   4A:36:A8:B2:FB:53:4B:63:06:07:73:9D:CF:AB:C2:F3:CD:3C:DD:8B
Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01
Certificate issuer:       /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801
Certificate serial:       01CF
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft
Manifest number:          01CA
Signing time:             Fri 17 Jul 2026 04:45:16 +0000
Manifest this update:     Fri 17 Jul 2026 04:45:15 +0000
Manifest next update:     Fri 24 Jul 2026 04:45:15 +0000
Files and hashes:         1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: 9GJZtqjYfACAGXp0QpFK0eQjdIkOnoA1IzsSjnuoO2Y=)
                          2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: k3TfFva0pazkCIRXdBLI4mn/25rKAlL7flbXoW+92L0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl
                          rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:45:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 463 (0x1cf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801
        Validity
            Not Before: Jul 17 04:45:15 2026 GMT
            Not After : Jul 24 04:45:15 2026 GMT
        Subject: CN=6a59b35c-3d54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:5e:24:9b:79:d1:e1:31:90:cc:6d:74:7b:4d:
                    84:c4:4b:c1:39:33:02:32:08:6d:30:8f:b1:5a:3b:
                    f9:f7:7b:7d:d8:9d:7a:bb:77:ce:c1:5c:40:79:48:
                    83:d9:1c:dd:71:5d:bd:51:98:2e:58:32:98:1a:e7:
                    2f:b6:be:85:df:9f:e5:36:6e:9c:47:d6:ea:23:9a:
                    d5:03:a3:aa:28:22:64:7c:de:c2:bc:ba:2f:30:b1:
                    5c:68:8c:d1:a7:da:74:3c:66:5a:24:5a:4c:db:f6:
                    50:e1:8f:7e:e4:fb:de:df:a7:a9:05:af:32:76:70:
                    cd:c0:14:d7:28:06:5c:71:e8:1e:6e:bf:94:f0:a1:
                    c3:e7:01:80:47:48:d3:c9:9e:ae:01:0c:43:de:e9:
                    ba:6f:ae:b0:a8:f9:7c:e1:fd:20:b0:ac:3a:4c:99:
                    9c:b7:f0:d7:ed:7e:f4:9f:93:65:80:a1:b8:49:92:
                    ee:16:fd:a4:79:05:ad:1c:e1:bc:09:48:a7:6c:a7:
                    83:25:aa:96:29:0e:04:26:55:cc:dd:d4:ca:08:2b:
                    54:63:b8:b8:a6:d8:76:23:19:f7:dc:e9:92:47:d9:
                    76:50:83:66:d7:12:71:b0:e0:fa:63:7f:81:83:38:
                    9b:c5:f2:36:b2:59:06:27:9a:57:c6:03:dd:32:0c:
                    ad:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:36:A8:B2:FB:53:4B:63:06:07:73:9D:CF:AB:C2:F3:CD:3C:DD:8B
            X509v3 Authority Key Identifier:
                keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:97:cd:a6:16:1a:26:c8:6d:f7:7c:15:ff:87:78:84:f7:2d:
         38:ef:e7:72:fc:58:d7:80:17:9b:bb:a0:fb:ad:9b:0e:98:f8:
         83:c6:67:9a:d7:24:57:d9:95:06:8a:b6:33:16:d3:18:fe:ea:
         a1:3f:5a:94:04:ac:3c:bb:74:fc:b5:f2:c1:a6:5b:cc:a5:38:
         3f:60:70:08:69:da:a2:32:1d:86:56:bb:b1:4e:be:f5:20:76:
         fa:9f:4a:ab:57:e4:9b:c0:3a:b9:f5:cf:17:4f:ad:af:76:50:
         2f:cc:86:19:db:6d:ad:ab:da:1a:e3:11:8d:c4:a9:33:04:14:
         57:0f:82:b0:4e:ce:cb:2d:be:c5:49:10:82:ea:7e:72:99:3a:
         92:ef:20:c7:df:2d:68:a5:d4:f8:55:2d:69:82:0b:d1:23:cd:
         e1:d4:ff:c4:8a:33:ce:e3:10:a4:03:04:97:9a:79:5f:51:6d:
         59:d6:3f:aa:47:57:1b:e6:30:c4:16:5d:33:75:55:b8:6e:2c:
         02:4f:34:e2:d3:f8:6e:7b:14:27:4a:15:7c:fc:31:0d:9b:62:
         55:6f:a8:ce:f5:92:cb:f8:f1:0d:eb:64:e7:9e:de:8e:48:7b:
         06:e7:5f:a5:80:eb:25:a3:91:e4:81:54:e0:0e:a4:35:2c:18:
         72:5e:74:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:13 2026 by rpki-client