Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
File:                     TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json)
Hash identifier:          jL3MB+FOZ9hOr2v/IR3ZISY4E8VFdHU0834AD7gyCqI=
Subject key identifier:   FC:09:88:A6:51:CD:3F:F2:83:B0:73:F5:FA:E1:30:55:13:0B:92:6F
Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8
Certificate issuer:       /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
Certificate serial:       1AED
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
Manifest number:          1898
Signing time:             Sun 12 Jul 2026 16:45:43 +0000
Manifest this update:     Sun 12 Jul 2026 16:45:43 +0000
Manifest next update:     Sun 19 Jul 2026 16:45:43 +0000
Files and hashes:         1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: 1iEnS81qRXD645iF0ty821LKXFImdTlHRQ1C+8ZV60s=)
                          2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: 4OyLgz5MRwPAxGcF1j5OxwWLAe68/1HWOj58azhiKRQ=)
                          3: 70E478D0C06D11F0ABA91C6CC4F9AE02.roa (hash: mAI+w5MJltTPoLHCV1t34FNAjUXQLcbk8DhNQ3Alegw=)
                          4: D00F9A8643A511F1B04E115C93833773.roa (hash: QPdt4fsCL2XWpqN3V1Gtq0d4gMm1PZ100Z5/4Fr7hyA=)
                          5: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: Br+Yh3Miw3+3u+15blKMFIN8mMQA+4yr6RfTrCX61aY=)
                          6: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: JtaNsAVPLe7G1DcQvRskSfK/91+ur/u1SIY8DTdFa1o=)
                          7: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: cWhKsGGtwm24L2b24qEiOJQYknotmIIZJa7i5F5KPHg=)
                          8: A865A1925B1611F083088661C4F9AE02.roa (hash: 2IUNVUDvVcfHXyE54Zp6qTjDmEVqUm9kf4i2mX6/zX4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 16:45:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6893 (0x1aed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678, serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8
        Validity
            Not Before: Jul 12 16:45:43 2026 GMT
            Not After : Jul 19 16:45:43 2026 GMT
        Subject: CN=6a53c4b7-416e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:0c:20:b8:48:15:b7:83:33:ed:64:05:d1:f4:
                    44:b9:c2:2f:67:07:ee:00:56:a5:55:e1:46:2e:4c:
                    c0:d9:a4:9a:cf:7b:02:95:5a:3e:db:90:4f:0b:10:
                    5b:1b:b1:42:9d:56:3f:bd:f9:d3:b9:ce:d2:75:34:
                    85:c9:1c:2a:2a:d2:ef:bb:c4:02:cc:54:48:af:f8:
                    73:e3:67:76:23:ab:2e:6a:a3:cf:bb:69:7e:49:51:
                    a3:3f:29:39:8f:d2:3c:49:c3:45:c5:d1:d1:d0:70:
                    80:32:0f:1b:d8:82:db:06:19:5d:09:40:f1:6f:b5:
                    64:09:eb:b5:2d:d6:ba:65:89:05:33:40:0b:a6:26:
                    fe:79:2e:cf:da:e5:65:91:ac:0c:be:dd:30:1d:d3:
                    19:da:24:66:54:43:dc:41:13:f4:37:e4:f1:f4:00:
                    be:64:8b:e9:9d:05:b1:5c:3e:a6:7e:58:2b:52:ec:
                    80:7a:4c:39:26:c5:dd:e2:48:ce:b2:e5:bb:5c:b2:
                    f3:cf:46:0f:13:2a:04:b0:b1:98:82:dd:49:8d:ac:
                    5b:f8:bd:04:ac:91:84:b6:a6:79:37:bc:63:c6:d1:
                    a1:53:6c:b0:57:2b:ac:d0:74:c4:63:84:93:48:37:
                    97:a0:30:df:b8:67:bc:94:5d:8d:ce:73:89:58:65:
                    bf:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:09:88:A6:51:CD:3F:F2:83:B0:73:F5:FA:E1:30:55:13:0B:92:6F
            X509v3 Authority Key Identifier:
                keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:0b:5e:76:55:f3:b9:9c:eb:0c:05:55:78:90:61:26:92:1b:
         fd:04:a0:4c:f3:1f:9e:b6:0a:73:7f:fd:06:f6:47:9e:04:7e:
         a6:ca:7b:25:0a:6c:2b:34:6d:1f:a3:06:4c:9f:cf:ee:b1:f9:
         c7:d3:3d:b9:b8:04:e9:16:9a:d3:08:09:d8:fc:d7:ae:31:22:
         23:77:ed:85:b8:fb:df:4e:b7:04:73:4c:87:50:39:5d:40:e7:
         2f:9e:df:89:c6:e3:0c:e9:74:21:80:2a:9f:97:3e:48:c1:bf:
         0d:b7:a6:a3:8c:f2:ce:27:6d:3e:09:21:0b:55:2c:57:3a:9c:
         b9:75:f6:cb:eb:10:c7:72:86:e0:b9:93:a5:a5:e2:ef:55:da:
         0d:3b:0b:3c:62:d1:fd:7c:d5:aa:10:31:e1:27:5e:4a:88:2d:
         64:ab:5e:8b:15:47:d6:cf:ff:a6:ba:ef:74:0b:05:40:b8:e2:
         b9:fc:32:a5:bd:c5:8f:26:b2:95:7b:b2:f7:b0:5b:17:ef:7a:
         e4:88:68:49:83:03:1f:d6:de:34:cc:d2:7b:74:7f:6f:c5:f4:
         2f:10:75:2c:87:ff:70:ef:b5:f6:51:a7:38:dd:24:66:1e:cd:
         2e:36:33:11:8d:f1:f4:22:d3:b2:8b:a4:8c:4a:db:67:d1:6e:
         b1:b7:d1:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 15:57:28 2026 by rpki-client