Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
File:                     TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json)
Hash identifier:          UISgXnT7h+COWEDk5UVdar1oY+sQEdrhgKiF1bY75Dw=
Subject key identifier:   03:78:E3:C7:9E:FA:84:6B:DC:55:FF:FB:8A:4C:35:C8:5F:C2:6C:98
Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
Certificate issuer:       /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Certificate serial:       1AEA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
Manifest number:          1895
Signing time:             Mon 06 Jul 2026 16:59:00 +0000
Manifest this update:     Mon 06 Jul 2026 16:59:00 +0000
Manifest next update:     Mon 13 Jul 2026 16:59:00 +0000
Files and hashes:         1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: 7HJdIiWPiB0cPXB8W2VpVzSOOyHLGFySMuTTdKFUedQ=)
                          2: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=)
                          3: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=)
                          4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=)
                          5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=)
                          6: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=)
                          7: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=)
                          8: D00F9A8643A511F1B04E115C93833773.roa (hash: QPdt4fsCL2XWpqN3V1Gtq0d4gMm1PZ100Z5/4Fr7hyA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 16:58:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6890 (0x1aea)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
        Validity
            Not Before: Jul  6 16:59:00 2026 GMT
            Not After : Jul 13 16:59:00 2026 GMT
        Subject: CN=6a4bded4-6c2b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:74:db:63:5b:5a:1b:0b:8f:4d:3e:f8:95:52:
                    b4:f5:fc:50:59:8d:b8:a3:1e:ca:8c:65:20:8b:31:
                    aa:59:18:9b:e2:68:2a:e7:c0:95:1e:98:57:25:c0:
                    30:0f:bd:24:2e:71:aa:86:1f:08:2f:c6:78:67:75:
                    22:44:57:3a:77:af:4b:39:40:ef:9a:4e:3c:37:4d:
                    f9:b6:b8:dc:ec:bc:a9:f4:f7:ad:e9:9d:13:1d:d9:
                    07:13:02:58:0c:35:65:bd:b8:22:5d:09:63:b1:6b:
                    53:c9:44:46:ad:ec:99:f9:d0:cc:8e:b0:ce:88:a2:
                    ab:52:4e:8e:bf:43:75:f3:11:78:d3:8e:dc:44:45:
                    8a:54:79:a4:31:66:07:27:4b:c6:f2:9b:99:bd:bd:
                    31:b5:6b:6c:c8:42:ed:19:d1:e9:c0:2a:a4:f2:eb:
                    ad:33:ab:96:a0:f9:f3:13:e1:61:72:97:f4:b5:5e:
                    8b:7d:13:27:0f:21:f8:52:21:36:89:d4:d8:d5:69:
                    37:9e:3b:8d:22:75:17:65:49:4c:98:5a:40:8b:2e:
                    08:5b:86:ce:3e:3e:39:ee:cf:8d:6c:c2:bf:33:6d:
                    00:ab:77:c0:55:dd:3e:ec:87:0d:ba:05:11:70:d6:
                    cb:00:cf:ea:ba:01:3a:ce:06:03:9d:1c:51:50:d5:
                    98:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:78:E3:C7:9E:FA:84:6B:DC:55:FF:FB:8A:4C:35:C8:5F:C2:6C:98
            X509v3 Authority Key Identifier:
                keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:d5:13:94:52:6f:9b:05:ff:24:d3:be:4f:78:bc:52:8c:49:
         6f:40:d3:8e:35:1b:ca:90:e3:f4:20:ea:e8:63:c4:a2:9c:99:
         4c:2a:7f:7b:09:1c:31:60:a9:0d:eb:6d:c5:0f:a1:d4:2e:6a:
         3a:99:59:d4:5d:57:bf:95:ed:c5:7c:88:d3:d5:13:f3:7a:16:
         f2:43:19:65:87:2a:c3:f7:4c:54:90:69:f1:b0:e4:23:40:90:
         fd:87:7f:ab:32:89:77:32:d2:44:b0:1f:ff:3c:34:e9:40:4d:
         84:51:3b:63:d8:e2:a8:cb:9f:a8:62:97:cd:9b:71:3c:3e:d2:
         42:6d:f2:2b:ce:52:9f:53:d5:b6:5a:6b:bc:0a:3f:96:92:a8:
         91:13:cc:b2:59:e7:a7:d2:1d:d9:b6:1d:6d:6d:09:b2:54:f0:
         02:09:e3:d5:ac:44:ee:38:f3:11:f7:73:63:38:e9:b7:e7:ad:
         c4:f4:2f:8b:fb:95:af:8d:44:3f:e4:4b:f2:65:51:28:62:f6:
         f3:42:c7:22:3c:ce:97:8d:e4:59:30:3f:4b:2c:55:6a:b6:75:
         0d:df:ad:51:ec:04:24:90:4a:4c:14:b4:65:5e:99:d9:cb:d6:
         cb:f0:7e:26:f8:b7:d9:f4:9f:47:f3:0d:9c:12:95:a7:ab:c1:
         89:35:97:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 06:28:18 2026 by rpki-client