Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
File:                     bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json)
Hash identifier:          UHl+X/dEKwhb7s3LHaTkmH2/PfZuoZ0pP05ZNDOf/Cw=
Subject key identifier:   45:D1:13:96:BE:DE:8C:36:7A:95:E5:BE:04:AB:83:D9:40:94:AF:D2
Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4
Certificate issuer:       /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
Certificate serial:       038D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
Manifest number:          0386
Signing time:             Sun 19 Jul 2026 01:19:52 +0000
Manifest this update:     Sun 19 Jul 2026 01:19:52 +0000
Manifest next update:     Sun 26 Jul 2026 01:19:52 +0000
Files and hashes:         1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: Ct/hOyncA2sRK83MFllM4fLNjz/BQspHKhwwIcDcFTI=)
                          2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: KC4FexlexjRXq5lyOPd7yXPhSCmSDo/9sSF69OZy7iE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl
                          rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Jul 2026 01:19:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 909 (0x38d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4
        Validity
            Not Before: Jul 19 01:19:52 2026 GMT
            Not After : Jul 26 01:19:52 2026 GMT
        Subject: CN=6a5c2638-305b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:fb:74:9a:7c:f2:d2:e6:0e:5c:4b:5c:b8:08:
                    39:3b:7f:ce:d7:f4:14:2d:f4:9d:5f:59:45:a5:7b:
                    0f:91:01:3b:3a:97:5d:ad:50:73:34:e0:52:54:32:
                    5a:14:61:74:af:a2:13:f1:9d:05:6d:4c:8d:ea:71:
                    1e:88:de:a1:32:2f:f1:44:40:f8:d1:03:b4:80:c1:
                    c8:47:2c:9b:59:e3:58:d8:e1:f6:73:48:ce:04:67:
                    f7:6e:06:f9:8b:53:82:0b:f5:b9:45:7a:31:bf:1e:
                    a3:96:64:14:b7:ef:da:ae:b4:35:39:9a:14:19:9a:
                    cf:ab:61:55:f5:9a:e7:96:10:b5:d2:7b:59:12:e3:
                    8a:12:5f:d3:58:d8:42:93:f0:ee:da:70:38:c7:aa:
                    d1:e3:92:8b:67:67:80:9a:b6:ca:de:7b:d8:b8:39:
                    b2:30:12:ec:09:e9:49:fe:75:7d:2c:ea:7e:0e:cf:
                    46:0f:37:52:24:00:fd:70:81:51:4d:fa:0a:b7:82:
                    ea:1e:01:9a:c1:b6:63:50:00:23:9e:45:36:cc:a3:
                    97:fe:69:f1:78:17:02:e7:68:8b:07:8c:4f:b5:9c:
                    57:3e:b6:d8:67:17:a3:c2:fa:9e:d0:c3:08:80:f0:
                    c2:11:55:e7:6e:f2:68:cd:45:fb:56:ae:6b:a9:62:
                    cb:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:D1:13:96:BE:DE:8C:36:7A:95:E5:BE:04:AB:83:D9:40:94:AF:D2
            X509v3 Authority Key Identifier:
                keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:81:ac:ca:77:a9:3f:e8:0e:8a:26:f5:00:51:6d:85:2b:e2:
         5b:df:cb:40:e7:3f:1a:34:a0:c3:4d:90:f2:c5:30:72:b4:38:
         8c:d5:92:d0:7a:4a:5d:9b:b0:7e:54:0e:67:e5:a3:31:ca:44:
         31:63:b4:22:c1:7f:23:44:ef:6f:45:16:3f:00:3b:d8:ca:3c:
         d9:1c:5e:c2:5f:37:bc:5f:36:b6:31:8e:f2:96:e2:7c:82:68:
         e4:0f:20:ed:ca:95:6f:44:a9:13:a9:cc:ba:32:fe:34:0a:a0:
         db:7b:17:44:47:01:d3:91:18:33:3f:53:9d:0c:af:76:20:95:
         5a:7a:4f:e1:49:6b:1c:38:14:ec:bc:94:2a:40:04:56:f2:7f:
         45:fd:a7:c7:65:f1:6f:50:e4:81:78:58:b0:34:80:4c:17:e0:
         18:5f:0f:0a:fd:74:39:64:26:9e:77:d9:98:35:34:ae:9f:e0:
         cc:39:0c:55:e0:bd:5a:76:24:04:42:23:c8:dc:d3:2e:81:0e:
         43:0f:44:a4:28:b7:98:5d:ce:1f:51:5d:de:4f:ed:e6:b7:0c:
         cf:0e:a9:9f:8a:1a:67:9b:a7:b8:32:be:64:00:80:c5:3a:b5:
         16:25:c3:e5:7c:34:44:88:f6:a8:60:ae:f3:07:da:c8:75:35:
         e2:24:ab:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 09:55:00 2026 by rpki-client