Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft
File:                     jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft (raw, json)
Hash identifier:          eAfgMwdRUti+0llA6XuWHp28n4yj7NyLcF6OqyuCMg0=
Subject key identifier:   3B:BF:A5:84:26:B2:57:65:46:12:F0:26:71:1A:C0:BD:DA:92:58:35
Authority key identifier: 8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90
Certificate issuer:       /CN=A918497E/serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390
Certificate serial:       01DF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft
Manifest number:          01DA
Signing time:             Fri 17 Jul 2026 04:36:21 +0000
Manifest this update:     Fri 17 Jul 2026 04:36:20 +0000
Manifest next update:     Fri 24 Jul 2026 04:36:20 +0000
Files and hashes:         1: jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl (hash: dkUBir9whBwNBDVEhiCAvPf6mHvD9QbwkpoM5/C9N4Y=)
                          2: D8FEAF6C637611EFB2D9FD47C4F9AE02.roa (hash: Vy56QzLj3xyE23NG6q6W7GkOltoRSJz12saYaOd0mlc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl
                          rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:36:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 479 (0x1df)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918497E, serialNumber=8D4BF79A419EEC0FA533E5FCA50FF372A33CB390
        Validity
            Not Before: Jul 17 04:36:20 2026 GMT
            Not After : Jul 24 04:36:20 2026 GMT
        Subject: CN=6a59b144-c018
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:f9:99:2a:fb:04:69:64:3e:66:fa:55:b0:b7:
                    ff:e0:b7:7f:d2:89:a0:57:f0:9d:60:06:19:c2:d3:
                    17:cf:54:8a:ce:1e:e4:7b:ee:12:61:2b:d8:e8:40:
                    3a:22:cb:b2:97:fa:ef:9f:96:23:af:d8:7e:56:f6:
                    78:08:fd:71:4e:4b:e6:9e:4c:16:21:88:1b:ed:61:
                    c1:eb:3d:61:22:6b:6f:46:50:b8:7c:16:67:64:bc:
                    04:53:2d:b8:6d:47:e5:2b:ff:4b:9a:fd:bf:e3:74:
                    94:6d:18:30:af:76:2d:92:8c:56:9b:af:ea:09:70:
                    ed:ea:d8:46:fe:a6:9f:b2:22:22:dc:2d:d3:f7:84:
                    78:50:98:d7:78:98:07:21:e7:b1:fd:c7:3e:ec:2f:
                    72:82:1d:3f:f3:00:98:91:54:9f:f6:a0:fb:7e:2d:
                    75:f5:1e:3e:2b:0d:e8:95:b4:a8:48:11:ad:f2:99:
                    d7:2b:e0:8a:f9:dc:ee:73:c1:2b:e1:99:fc:64:da:
                    57:0e:ac:5c:d7:70:9a:ba:1d:ea:ad:ce:5d:83:6c:
                    2d:b2:44:8c:fa:64:a4:70:38:9e:7c:af:21:ba:0f:
                    3d:41:7b:f5:eb:be:84:8f:a4:a0:27:ca:2c:8f:5e:
                    db:9a:16:45:53:5d:b9:46:bb:c3:a5:41:22:63:03:
                    49:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:BF:A5:84:26:B2:57:65:46:12:F0:26:71:1A:C0:BD:DA:92:58:35
            X509v3 Authority Key Identifier:
                keyid:8D:4B:F7:9A:41:9E:EC:0F:A5:33:E5:FC:A5:0F:F3:72:A3:3C:B3:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918497E/C320C226B5D811EE8DA66D85C4F9AE02/jUv3mkGe7A-lM-X8pQ_zcqM8s5A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:97:1d:d2:2a:e0:ad:bd:c2:95:69:d4:9e:36:cd:9f:87:5e:
         c3:14:b5:f1:05:cd:ea:7d:41:e5:f5:57:ba:30:c3:4c:e9:bf:
         1d:6c:1a:42:34:3c:4a:12:4b:f5:af:68:e6:d6:8b:eb:d9:69:
         7d:83:f5:d7:01:76:fc:6d:3f:ba:f9:15:fb:fd:00:4b:e5:8b:
         17:3a:bd:b9:7c:f7:3c:04:fb:3d:f0:9b:f8:69:9e:b8:0e:39:
         6d:3f:3d:51:11:e9:15:d5:fc:de:42:96:9a:3f:4f:43:69:14:
         3d:c0:3d:f7:ea:2c:ab:bf:c8:c0:ed:04:89:e6:9d:d4:e4:76:
         5d:3a:4c:8e:94:c4:e2:1b:97:b2:f5:70:4d:ed:81:4c:49:0c:
         06:51:f3:dd:26:49:12:7b:35:ca:15:f1:00:35:3a:9b:e8:76:
         0c:97:a5:4f:97:7b:90:40:dd:62:83:81:c3:fb:aa:44:cf:9c:
         87:9d:69:df:9b:dd:06:ac:e8:bc:ef:78:a4:97:46:c3:eb:34:
         fd:fe:cc:ea:33:29:9d:79:9d:df:9e:3c:e9:62:04:81:ba:89:
         92:50:4c:17:5e:ff:7d:c8:ea:64:ba:6e:80:a9:98:e6:5c:9a:
         74:a4:f6:a0:2d:d2:d1:34:05:86:1d:25:2b:d6:70:25:10:be:
         8f:64:0c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:24 2026 by rpki-client