Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft
File:                     HA69woHQL52iTsEXS6nPGEWbk-A.mft (raw, json)
Hash identifier:          NlTJ8fFEzKaQF+44sKPHRNeEeBRjfUt8LddtglkiFWM=
Subject key identifier:   4D:86:8F:21:6C:D0:89:EF:F7:D7:84:B1:9D:F1:49:71:62:42:8F:99
Authority key identifier: 1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0
Certificate issuer:       /CN=A9179D1F/serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0
Certificate serial:       047F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft
Manifest number:          0479
Signing time:             Sun 05 Jul 2026 00:27:38 +0000
Manifest this update:     Sun 05 Jul 2026 00:27:38 +0000
Manifest next update:     Sun 12 Jul 2026 00:27:38 +0000
Files and hashes:         1: HA69woHQL52iTsEXS6nPGEWbk-A.crl (hash: V6C1WNLoquJbq26TW+dsASTbpG1uyGCGondRAf4/RIg=)
                          2: ED816DEC95DA11EC993BD050C4F9AE02.roa (hash: fDOU5iTnJ9Tf4/wEKmB/yast8lh3cbWWkQ+UhkQy1GI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl
                          rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:27:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1151 (0x47f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9179D1F, serialNumber=1C0EBDC281D02F9DA24EC1174BA9CF18459B93E0
        Validity
            Not Before: Jul  5 00:27:38 2026 GMT
            Not After : Jul 12 00:27:38 2026 GMT
        Subject: CN=6a49a4fa-ba65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:ef:17:28:e0:08:88:63:c8:44:b5:a5:1f:07:
                    8a:bd:7f:7f:2d:9d:9b:aa:8f:0a:02:09:0b:c3:db:
                    b2:e1:05:d2:bf:80:dc:83:6a:e1:e0:d3:25:65:37:
                    6e:5c:34:61:31:58:f6:b7:03:ff:20:b1:ad:d7:27:
                    67:19:aa:19:ed:db:08:90:ac:a8:35:8f:50:bd:e4:
                    bb:ee:6a:78:49:39:45:65:41:bd:23:55:02:ec:3e:
                    70:02:30:74:ae:aa:11:be:f7:f5:5a:62:d0:fb:bb:
                    6a:74:43:ac:e9:3f:5c:26:b3:cc:fb:fa:4d:09:5f:
                    b6:a5:51:17:44:70:56:f6:d3:79:94:cd:0a:69:ee:
                    93:31:65:d9:07:fa:3c:7c:83:b4:d6:20:21:73:38:
                    89:ca:b8:49:2b:fc:b9:52:96:59:02:2c:25:65:dc:
                    9e:36:db:34:dc:25:a5:92:42:ad:33:88:45:02:04:
                    33:0a:80:13:94:e2:f6:a1:bb:2c:c7:0a:16:23:c8:
                    0c:cb:1e:87:1d:4f:4a:cd:3b:2f:58:50:6e:93:98:
                    71:78:d7:6a:97:88:6f:f7:ce:79:73:2f:e4:7a:72:
                    1e:a7:d3:f4:08:ad:12:e8:ec:e0:d4:4c:33:ea:b8:
                    58:bd:5e:f1:c0:37:0d:ef:ee:c9:f1:dd:34:2e:34:
                    13:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:86:8F:21:6C:D0:89:EF:F7:D7:84:B1:9D:F1:49:71:62:42:8F:99
            X509v3 Authority Key Identifier:
                keyid:1C:0E:BD:C2:81:D0:2F:9D:A2:4E:C1:17:4B:A9:CF:18:45:9B:93:E0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HA69woHQL52iTsEXS6nPGEWbk-A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179D1F/D982CB5E95D711EC953F954DC4F9AE02/HA69woHQL52iTsEXS6nPGEWbk-A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:4e:d9:41:5f:e8:04:75:13:34:fb:b6:90:13:e7:a3:f6:85:
         4a:b1:90:d6:49:a1:d2:1d:c2:06:02:ea:14:15:a8:20:9e:51:
         fe:70:07:06:17:4a:6d:f9:2b:8d:c7:43:6b:8b:17:95:46:11:
         88:bd:f4:00:df:1b:ab:85:b8:99:4f:06:e1:1e:ce:6c:df:9c:
         e2:47:5c:ea:38:88:ba:0c:cf:cb:b2:b2:78:5d:11:23:1b:af:
         a7:78:54:20:f7:75:b1:e8:2c:b8:24:10:ab:07:3f:27:61:75:
         83:26:8b:4e:b3:be:4a:6d:c6:0b:e8:f9:7e:fd:13:b2:f3:d6:
         5c:81:62:6a:d7:79:24:bb:ef:70:6c:7b:f0:fb:e1:a5:84:a3:
         20:90:5a:5b:e2:23:ba:2c:93:25:b8:01:e6:0a:31:e7:7d:e7:
         00:95:47:72:85:fb:ba:e1:f1:b0:09:f6:08:ab:28:79:e6:ed:
         38:7e:1a:d7:60:ef:cf:d9:8e:ba:b2:e5:dd:4c:cb:70:e4:c5:
         ed:03:b4:68:e4:d4:b2:2e:3c:1f:0a:4a:93:b6:41:55:86:df:
         bf:9c:69:e7:42:c1:8f:af:96:9b:44:70:91:85:cd:1f:d3:71:
         31:c2:f5:eb:a8:b2:8c:45:e4:4a:2b:f9:0a:bd:cb:7c:75:85:
         d2:79:ff:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 08:54:05 2026 by rpki-client