Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
File:                     lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json)
Hash identifier:          xt9raxKmCczCX4dz6Nc+VJDbju11KxpUgGG7bBQY7rA=
Subject key identifier:   D5:24:58:DD:53:48:55:FD:03:AF:DC:84:12:2D:4C:07:05:C2:43:DE
Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5
Certificate issuer:       /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5
Certificate serial:       0229
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
Manifest number:          021B
Signing time:             Tue 07 Jul 2026 03:46:59 +0000
Manifest this update:     Tue 07 Jul 2026 03:46:58 +0000
Manifest next update:     Tue 14 Jul 2026 03:46:58 +0000
Files and hashes:         1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: 7PIU60903z9g0onAHmUxOX32JbO4JKD8qKlI3KIqqKY=)
                          2: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: ul9EAOzO4X5WSgm0Um4L21nKCG4Fzp+91sYnSwxatf4=)
                          3: 2B1FE092CFEE11F082935D16C4F9AE02.roa (hash: 6xMDbRG7wBKknxTgsFGsxPPwxSF0IsdgT+T+xByYGfk=)
                          4: 0A90C738CFEE11F09D36C783C4F9AE02.roa (hash: mUzueILU6DMYRwrPcEFRa5VxiMRJrbIkqI08KQIEvug=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl
                          rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 03:46:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 553 (0x229)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5
        Validity
            Not Before: Jul  7 03:46:58 2026 GMT
            Not After : Jul 14 03:46:58 2026 GMT
        Subject: CN=6a4c76b3-00e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:18:46:2a:7f:2b:6b:cd:43:56:c5:10:82:87:
                    a4:9a:e7:af:59:d4:c8:72:26:51:dd:3d:34:42:80:
                    04:c2:26:31:d6:7d:15:d1:da:15:8d:d5:e9:51:3f:
                    5e:0f:34:1d:d3:aa:23:7b:8e:85:ee:fb:3d:62:ac:
                    60:e6:f6:02:db:dd:1b:4c:0b:51:d3:3c:6b:13:e2:
                    67:89:1a:6d:b5:2d:c4:04:1f:51:04:21:25:bd:e6:
                    a0:6b:9f:c0:82:8b:bf:35:af:82:7c:d7:2f:cf:84:
                    2c:a3:2f:3d:48:0f:42:a2:9f:2b:86:4f:46:2a:ff:
                    93:02:81:71:85:27:f4:37:e6:15:e8:27:4e:35:fc:
                    5b:51:1b:3b:06:7c:f4:44:d1:2b:5f:34:a0:2c:03:
                    b4:5f:45:65:09:6b:f1:e1:69:bd:e5:0d:c3:7f:80:
                    10:a2:85:c0:86:c0:d0:9d:dd:a6:22:5e:b8:0a:e9:
                    4e:ca:ae:ce:e2:0a:8f:4f:92:3f:8e:a4:1d:79:4b:
                    72:d2:3d:d6:c1:54:b8:8a:86:42:09:18:db:dc:9d:
                    6c:c4:2b:d2:fb:bf:09:7a:fc:78:a5:7c:09:f3:5e:
                    ee:55:c0:dd:13:ee:26:8f:4a:ef:da:26:a0:24:36:
                    73:c7:a8:14:37:76:60:37:00:11:72:07:3e:c1:43:
                    be:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:24:58:DD:53:48:55:FD:03:AF:DC:84:12:2D:4C:07:05:C2:43:DE
            X509v3 Authority Key Identifier:
                keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:5b:fe:ae:67:ab:0c:d1:f4:3b:43:f1:27:33:ac:09:47:09:
         4c:fb:7d:82:5a:77:10:42:df:60:ab:57:e8:11:33:6f:ad:f0:
         b4:8b:7f:90:5e:39:ac:c6:c9:c6:74:fa:58:05:66:76:f2:27:
         2d:d0:e9:7a:06:b9:3b:d1:1d:07:43:6d:06:7c:d4:43:cf:be:
         76:a7:29:81:51:5a:1b:39:a0:c3:85:ff:79:7b:ac:f6:11:44:
         b3:16:f2:ac:55:91:2d:a2:d6:e4:8f:49:b3:2d:74:52:47:73:
         d9:22:14:59:ce:7d:ca:dd:4d:80:ed:75:81:db:8b:cb:91:0a:
         57:43:ab:8b:b7:9a:7b:c9:2a:2c:55:1d:e4:06:f4:e0:a5:cf:
         7d:27:d4:3c:33:78:c7:78:27:ea:35:86:c3:14:4b:99:79:96:
         28:5e:f4:28:03:ae:14:32:7b:95:64:d6:de:1f:c1:1b:b2:11:
         0d:69:ad:40:0b:87:68:34:92:bd:9f:d7:ae:19:b5:c2:dc:4b:
         ed:c9:38:a4:06:da:53:7d:11:62:84:9b:82:2b:b2:fc:0e:ae:
         59:bc:73:84:d5:c3:41:01:24:f2:03:1d:a2:20:27:89:51:22:
         c9:8b:88:ac:c9:87:12:cc:93:76:a4:ed:77:30:40:b5:d3:da:
         9f:94:d1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 16:41:46 2026 by rpki-client