Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
File:                     PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json)
Hash identifier:          ojiNstuv0SqkbakJhNOvYgT5c1vS0TZaRPSV9lmw+p8=
Subject key identifier:   20:65:0D:9B:50:ED:0E:A0:C9:97:99:23:86:CB:C0:4D:2F:40:02:6E
Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D
Certificate issuer:       /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D
Certificate serial:       0609
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
Manifest number:          0600
Signing time:             Thu 16 Jul 2026 23:24:14 +0000
Manifest this update:     Thu 16 Jul 2026 23:24:14 +0000
Manifest next update:     Thu 23 Jul 2026 23:24:14 +0000
Files and hashes:         1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: TnonN0Pain60rXmNBhr9iPpLf3FN5vJsM1URFVi9bys=)
                          2: EC7B7E82DFD811F08F00FF64536F56BC.roa (hash: GBcRPAk26rh6dyuaJcennk1M9baT+ZU2RXBW85It44s=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl
                          rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:24:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1545 (0x609)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D
        Validity
            Not Before: Jul 16 23:24:14 2026 GMT
            Not After : Jul 23 23:24:14 2026 GMT
        Subject: CN=6a59681e-922a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:5a:d5:89:49:d3:5a:b9:4b:99:34:e3:8a:99:
                    7a:8d:29:71:ed:66:48:38:e2:c7:19:12:1a:fa:7a:
                    e7:af:d7:46:d7:e4:34:4a:24:d6:51:bb:64:17:6d:
                    11:42:d7:39:36:98:72:f9:d4:83:3b:51:36:fc:85:
                    77:52:88:83:63:77:90:97:bf:0b:18:c4:f2:41:d2:
                    eb:06:47:e1:b5:45:0c:a5:a1:e8:c2:61:32:31:ae:
                    ec:b5:d9:7e:1c:0a:54:b3:80:00:0e:e1:94:50:57:
                    dd:59:9c:8a:d4:0e:b5:b5:ff:8f:6b:1e:6c:7d:7d:
                    3f:bd:09:66:dc:44:c7:f0:e9:6a:ce:96:17:f3:dc:
                    8d:a7:0f:ce:bf:2c:76:71:2d:e1:b0:80:c3:c7:7b:
                    1a:92:42:0e:b8:e1:27:42:6d:12:4a:f8:2a:f1:ea:
                    51:6f:01:cd:35:48:09:b6:4f:be:bb:dc:15:cf:09:
                    57:ce:fb:84:13:cd:e6:27:46:3a:1b:34:bf:fb:f0:
                    e0:42:47:d3:08:eb:29:19:eb:17:91:0c:cd:eb:49:
                    fe:de:54:5a:9f:ab:31:8c:ce:05:e5:79:60:9c:f8:
                    04:a6:28:8e:f9:b3:70:31:04:18:05:99:69:8a:da:
                    76:67:2f:66:cd:b6:7e:e3:23:83:79:da:fd:4a:08:
                    f5:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:65:0D:9B:50:ED:0E:A0:C9:97:99:23:86:CB:C0:4D:2F:40:02:6E
            X509v3 Authority Key Identifier:
                keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:89:e1:d4:30:64:91:a4:b6:e5:af:09:a9:d3:af:f2:de:6d:
         a8:c6:f6:cc:a4:80:6d:99:a9:b2:d4:b2:05:41:4a:13:7d:67:
         57:3b:c4:d3:54:18:c3:1f:63:a7:f1:20:6a:5c:95:53:4b:36:
         70:29:7a:81:a2:11:3d:87:ca:3e:4c:85:72:34:4e:12:d4:26:
         7f:db:0e:e3:c3:f5:71:cb:65:93:36:aa:33:43:33:b0:3b:0e:
         47:84:80:0a:76:d8:e9:c4:4a:46:d8:1a:7a:d3:64:2f:5c:37:
         9f:1f:1f:e9:5e:fa:ae:e1:4c:e3:86:50:cc:73:96:c8:db:3a:
         6f:52:98:f5:2e:db:a9:df:bb:f5:61:d6:61:01:2f:aa:a0:fa:
         83:31:d7:58:7c:42:66:ae:e5:c2:fa:59:4c:95:1c:b4:a2:28:
         75:8d:fa:d6:d5:8f:c1:f8:85:8a:72:5d:e9:f2:e4:e4:3e:1a:
         72:18:1e:84:3a:59:bd:42:51:41:78:33:3f:e1:bc:78:c9:bb:
         95:d0:9e:48:bc:67:03:aa:e4:4d:1c:8d:5f:fe:90:51:c6:d1:
         e9:01:26:80:88:62:7a:4b:1d:3a:f1:47:3d:5c:e3:9e:26:57:
         fe:9e:c5:de:7c:43:7c:6b:f0:b6:55:88:37:90:6b:92:28:86:
         08:b6:e8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:46 2026 by rpki-client