Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
File:                     PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json)
Hash identifier:          cgdiAY1N9vzc23eamByrWw6jWeLNkBiJHX7FBV2B0M0=
Subject key identifier:   C2:39:A6:FF:D8:37:B5:C8:12:1B:AD:D8:22:17:DC:6B:57:00:F5:A2
Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1
Certificate issuer:       /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1
Certificate serial:       0B96
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
Manifest number:          0B8D
Signing time:             Thu 16 Jul 2026 19:19:18 +0000
Manifest this update:     Thu 16 Jul 2026 19:19:18 +0000
Manifest next update:     Thu 23 Jul 2026 19:19:18 +0000
Files and hashes:         1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: jTwdVGljPnvwuQK2pmzBySXYKS+n369Fi9ihNDwfjTc=)
                          2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: ZatHv2sHyWRSC6zewOoWADYzth7DnWj+eG5J7PvU3G0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl
                          rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2966 (0xb96)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1
        Validity
            Not Before: Jul 16 19:19:18 2026 GMT
            Not After : Jul 23 19:19:18 2026 GMT
        Subject: CN=6a592eb6-5b10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:c1:ff:9f:b7:48:31:b0:3d:42:12:98:47:fb:
                    7d:f3:49:ef:91:f9:52:06:ba:64:19:3c:e2:b8:2d:
                    e3:0d:ca:f2:6b:f1:d1:d5:f1:8e:1a:0c:1f:7a:51:
                    cd:cc:9c:5e:9e:3d:87:4c:37:d1:e9:1c:90:74:51:
                    80:9c:d8:65:50:8a:35:be:c7:48:3a:53:d3:55:48:
                    e3:92:b8:46:68:a0:47:42:97:9f:e7:54:ec:69:76:
                    66:cc:ea:16:9c:08:eb:f6:fe:bf:f2:4e:85:1e:02:
                    5b:21:0c:46:5b:33:9e:28:8e:e6:c4:58:40:69:df:
                    1c:08:5f:3b:c3:9e:67:0d:9e:7a:f0:90:51:92:e8:
                    a8:24:5e:6a:cd:60:5e:b8:49:48:d7:06:5e:b8:6d:
                    8c:95:56:32:56:dc:bb:2c:bf:7d:74:79:af:d3:d9:
                    2c:34:e5:b1:04:ff:d1:f8:d5:ef:1d:c8:9c:ea:c4:
                    8a:ef:7c:f6:13:2c:c6:b4:94:5d:fc:f6:ef:27:55:
                    9a:53:e6:cf:35:5f:04:fd:f9:cf:e5:5e:7c:6a:c9:
                    e1:fa:a3:5f:ea:87:68:17:be:5d:d4:b7:0e:32:bf:
                    ca:e8:f2:cc:d5:8e:2c:ee:f6:f6:bb:16:25:96:b4:
                    c7:20:48:0f:60:6a:36:05:44:6d:67:89:34:f5:81:
                    f1:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:39:A6:FF:D8:37:B5:C8:12:1B:AD:D8:22:17:DC:6B:57:00:F5:A2
            X509v3 Authority Key Identifier:
                keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:0a:0c:78:68:51:53:7a:47:6f:9b:28:04:2c:8e:d9:63:ed:
         e5:0b:5b:1b:a8:cf:fe:4e:1d:62:2a:b7:b1:77:8f:58:2c:2d:
         b1:1d:be:e5:54:87:75:9f:2d:45:16:4a:28:cc:f8:b7:cd:85:
         b5:18:df:4b:e2:3b:ef:9b:67:cb:4c:e4:c0:2b:1a:07:b1:da:
         91:4a:d8:f5:16:d7:9f:63:db:19:40:90:39:2f:28:91:5c:13:
         24:c8:f7:3d:62:13:7c:d1:cd:f9:b7:65:f6:68:86:4d:2d:06:
         f1:8f:89:1d:3d:b7:d0:97:41:5c:ee:dc:2c:75:1a:6e:67:ff:
         2a:28:b8:b7:77:3c:3f:6d:f2:f4:1c:0c:33:a4:91:0d:2e:47:
         fb:20:a0:16:59:49:b8:96:15:f6:fd:61:8f:aa:40:e9:fd:2c:
         70:af:ca:20:c5:28:b3:1c:d8:e4:10:df:bc:2c:5f:7a:e8:e5:
         89:a5:06:97:5b:93:c5:e8:d6:bd:a5:79:21:3c:e4:43:b1:26:
         68:cb:8a:cf:cb:6a:28:93:c9:e6:e7:c7:cb:60:86:a7:52:15:
         8d:62:2d:48:a5:6d:26:32:87:d7:3f:8b:ff:d8:88:58:af:82:
         9c:86:79:70:4d:e9:43:75:da:15:5c:99:28:0a:67:7d:9c:3d:
         17:96:fc:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:41 2026 by rpki-client