Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
File:                     O0irhhZS-u7X4dElg_Frt_uyiRM.mft (raw, json)
Hash identifier:          VcN6GcBnNd1ngAKphp7gQBioxIHmhXXvrZEbyT8HjTY=
Subject key identifier:   59:99:1E:59:BC:9D:89:F8:28:94:8F:55:4A:E1:01:FF:E9:1C:DB:D0
Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13
Certificate issuer:       /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913
Certificate serial:       02E1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
Manifest number:          02CA
Signing time:             Fri 03 Jul 2026 01:53:10 +0000
Manifest this update:     Fri 03 Jul 2026 01:53:09 +0000
Manifest next update:     Fri 10 Jul 2026 01:53:09 +0000
Files and hashes:         1: O0irhhZS-u7X4dElg_Frt_uyiRM.crl (hash: j/Qcyi9RipT1HzDDW/fBAfyatrDYyUTejlWrQnZXVww=)
                          2: EDE89884DB1711EF8929832EC4F9AE02.roa (hash: ZAAc7Mnkor/okk5rhdONOcQdFtaHRUehKntnjNXP9g4=)
                          3: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (hash: 4a9piE3zoyvSIfp92HY2+LDrMoD2lXfFwMPpviHmbTA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl
                          rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 01:53:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 737 (0x2e1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9176909, serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913
        Validity
            Not Before: Jul  3 01:53:09 2026 GMT
            Not After : Jul 10 01:53:09 2026 GMT
        Subject: CN=6a471606-5013
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:7d:d1:c9:ea:3c:3b:ef:1f:66:53:72:76:a3:
                    92:cf:23:b8:69:21:71:4a:89:50:88:ec:12:cf:7b:
                    be:0c:98:4c:85:8e:27:be:aa:c4:65:16:4d:78:d1:
                    ed:05:f2:2b:aa:e1:ba:02:ee:88:97:77:81:81:46:
                    c7:3f:9f:44:a1:f3:ec:54:28:88:63:4c:22:5d:fa:
                    bc:68:79:b6:19:92:44:8c:80:de:26:f1:b2:63:7c:
                    6f:e2:fb:fb:a7:fa:74:ae:33:a9:5d:e9:eb:72:8e:
                    a8:98:92:fe:e5:35:d5:a6:0a:75:02:e7:9b:0c:e6:
                    1b:cf:d4:be:6b:b9:a3:25:05:53:1d:40:34:76:a4:
                    42:33:94:f5:fb:29:a3:21:06:78:36:72:95:c7:c8:
                    5a:b0:a7:f2:01:ca:c0:13:12:17:45:20:cb:15:0d:
                    b5:5c:7b:7a:b3:86:cc:ec:86:7f:38:06:64:5b:5b:
                    5d:7d:e5:18:27:5c:b0:a1:27:3e:d2:e6:0f:51:f6:
                    4b:16:6b:51:ad:f6:61:8f:9e:a9:04:83:90:56:b2:
                    1b:59:5b:70:fa:cb:c6:7a:4c:7d:fe:4b:da:50:d7:
                    a7:69:b4:05:43:eb:76:3d:1a:9c:8b:5f:fb:44:f3:
                    88:0b:f8:0f:52:96:fe:69:c6:29:2c:a7:eb:d4:80:
                    cf:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:99:1E:59:BC:9D:89:F8:28:94:8F:55:4A:E1:01:FF:E9:1C:DB:D0
            X509v3 Authority Key Identifier:
                keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:b4:68:fc:e1:3d:ab:25:84:a8:df:19:f4:9d:0d:ed:e6:7f:
         54:86:bc:26:87:5b:e7:84:5d:b9:8c:a1:93:bd:95:74:a0:34:
         08:41:0b:63:a0:f2:ba:d5:84:48:b4:6e:b1:07:98:9a:a1:a5:
         f5:cf:81:aa:f4:70:e8:5e:d4:5f:55:e1:52:7c:ce:52:66:aa:
         2e:d0:20:72:c3:17:74:a2:ca:4f:ac:21:f8:0c:96:68:49:32:
         65:72:fb:db:3f:98:2b:86:32:7b:8f:ab:e1:d5:e2:78:9d:b1:
         78:ba:1d:2b:8f:95:1e:ec:4c:e3:02:ae:26:a6:ff:39:21:ad:
         98:b9:8c:00:7b:21:f6:a9:2d:ac:cd:45:a6:96:bc:a2:d4:d8:
         54:6b:cb:a7:cc:2b:b4:21:7d:6f:c2:cc:35:8a:12:c5:97:af:
         f5:1e:ba:9a:05:48:47:4e:fd:15:1e:15:9a:b1:7b:db:8f:3b:
         e8:47:18:dc:eb:b5:c4:75:25:1d:e4:ff:5f:d7:93:fe:69:ba:
         8a:6f:ba:17:c9:91:67:b0:ec:c0:1e:33:b6:ea:8d:6c:67:fd:
         d9:73:dc:86:a8:34:26:3e:a2:c9:e3:23:80:07:51:d3:c7:a3:
         5e:9c:24:d1:dc:b1:10:e9:60:2e:80:8f:e2:fb:aa:f8:53:85:
         03:68:5b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 09:30:56 2026 by rpki-client