Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
File:                     4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json)
Hash identifier:          DZ52Iz1aefJ3114bsLbZjA6MHzt0yF5aznKL9o9pSGg=
Subject key identifier:   0A:61:29:74:D4:DB:38:E2:B5:49:6F:8D:2D:7E:58:47:D7:52:9A:F4
Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86
Certificate issuer:       /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286
Certificate serial:       0731
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
Manifest number:          072B
Signing time:             Thu 16 Jul 2026 14:48:34 +0000
Manifest this update:     Thu 16 Jul 2026 14:48:33 +0000
Manifest next update:     Thu 23 Jul 2026 14:48:33 +0000
Files and hashes:         1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: O34N/Ihb++FCPBzdhlojwVGrpqtdMNzQoQe+x1s8LnU=)
                          2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: nifz0lZY0B16BBA+MbGH96xeil4xf4rsxF/RU1Jcvug=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl
                          rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 14:48:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1841 (0x731)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917D4C4, serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286
        Validity
            Not Before: Jul 16 14:48:33 2026 GMT
            Not After : Jul 23 14:48:33 2026 GMT
        Subject: CN=6a58ef42-5ef1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:c9:ee:bb:a2:cd:31:83:0d:05:e3:11:ce:5f:
                    f9:73:c0:83:a6:17:af:d3:e5:bc:6f:ba:97:f8:a2:
                    0d:91:20:a3:7b:66:a4:c4:15:e6:96:e8:4f:f5:a4:
                    d4:79:f5:17:ae:69:04:1b:89:5c:19:3a:27:d5:5f:
                    31:a8:8d:c5:90:0d:35:23:1c:db:e0:8a:f0:f2:f9:
                    89:64:9b:0f:fa:34:f0:74:80:05:d8:20:fc:ca:00:
                    84:97:d8:50:f2:7d:11:cf:56:59:ed:96:62:3c:11:
                    4b:56:1f:a2:66:46:1c:44:7a:ae:87:8f:59:f7:c1:
                    e1:14:62:c9:03:e0:61:e8:b4:d1:e3:77:4d:23:6d:
                    4b:09:67:49:4e:11:e3:9f:27:a6:3b:8f:5e:12:12:
                    16:10:9d:af:03:01:47:c1:19:65:69:26:59:ce:86:
                    2e:86:ae:af:2f:c5:16:d8:47:74:13:7a:15:cf:f4:
                    ee:cf:7b:65:ac:99:b3:d6:6c:31:f7:8b:5d:5b:99:
                    af:f7:fd:66:15:41:6a:a7:1e:4b:f3:e0:36:dd:9a:
                    ac:62:56:cd:26:88:80:40:55:a4:15:a2:46:7b:57:
                    bb:88:db:55:2b:fa:36:5b:44:35:94:c1:a0:38:8d:
                    24:59:fb:d1:1a:59:48:87:8c:16:63:7a:40:bd:11:
                    6c:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:61:29:74:D4:DB:38:E2:B5:49:6F:8D:2D:7E:58:47:D7:52:9A:F4
            X509v3 Authority Key Identifier:
                keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:43:77:fc:c2:6f:bc:23:61:1e:f0:f8:f2:1e:b6:4d:69:2e:
         bb:3f:44:15:d1:1a:83:16:f6:ea:b4:b9:de:3f:76:28:2c:b3:
         e2:a8:a3:a5:a2:89:53:a6:c9:4c:f4:cb:87:5a:2a:81:c7:92:
         2d:04:d6:cb:c6:1f:c6:c4:af:d4:e5:b3:48:32:fb:d5:ff:92:
         c4:1e:ca:44:eb:a6:90:f6:ed:62:22:be:8b:bb:86:eb:8d:f2:
         7a:e5:ac:e3:6f:27:19:13:8b:46:d2:e6:fa:25:8f:01:93:47:
         c9:91:68:0b:b9:ab:a8:fc:a1:96:2b:14:30:cd:d8:79:92:d4:
         10:e7:99:06:bb:0c:1a:a8:82:3a:30:82:69:81:9b:63:f3:c3:
         6a:d5:b0:8c:cb:be:cc:fc:b7:29:b4:67:41:67:1c:0f:16:bd:
         a0:83:f1:ec:01:db:48:f6:05:28:b8:5d:d9:f3:1c:af:5e:16:
         0b:f5:32:d9:9a:09:3b:04:ca:f9:aa:88:fc:ba:e4:3f:15:eb:
         1c:75:75:50:5b:bd:70:42:16:13:1d:84:a6:b9:81:d8:21:02:
         af:3c:7d:9d:b3:9b:24:57:b9:b2:b4:16:b5:e0:cd:75:42:aa:
         3d:20:5c:f4:d0:f8:cb:f1:48:65:12:af:39:06:c9:ad:5a:90:
         86:f1:22:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:21:31 2026 by rpki-client