Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft
File:                     jgK1xN61PytxL_B33gSQg3XoE9s.mft (raw, json)
Hash identifier:          ygJ3hUdOIydWfawCeZFE621jsjqr4kt0/rmBscbGH98=
Subject key identifier:   4B:B8:AE:90:D9:1F:38:96:CB:89:42:6D:DD:F0:33:E4:F0:28:D9:B2
Authority key identifier: 8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB
Certificate issuer:       /CN=A9185B6D/serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB
Certificate serial:       01BE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft
Manifest number:          01B6
Signing time:             Fri 17 Jul 2026 05:00:45 +0000
Manifest this update:     Fri 17 Jul 2026 05:00:44 +0000
Manifest next update:     Fri 24 Jul 2026 05:00:44 +0000
Files and hashes:         1: jgK1xN61PytxL_B33gSQg3XoE9s.crl (hash: 1Y0L4EyWtQIKo7DIywtp4l1Py3vwVLnRgG1TmSZZHLg=)
                          2: 6F09FF784B3111F0AED6945EC4F9AE02.roa (hash: f/j+ZoewPtF/Q+ftgbifVj+TcEE/wocrnV+k6lZsDKE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl
                          rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 446 (0x1be)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9185B6D, serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB
        Validity
            Not Before: Jul 17 05:00:44 2026 GMT
            Not After : Jul 24 05:00:44 2026 GMT
        Subject: CN=6a59b6fd-ef32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:d6:1d:c7:a8:bb:99:73:1b:4a:09:b6:b1:1f:
                    78:50:d6:4c:a0:df:fc:ae:48:54:55:cb:5b:e5:84:
                    da:ec:92:e5:a2:85:2d:15:f0:c9:70:9d:f4:08:eb:
                    13:9c:83:93:5d:2b:25:82:34:f1:5c:dd:00:5f:98:
                    ed:f0:24:d7:87:9f:63:49:16:e6:ad:5c:0c:87:b4:
                    5c:48:f1:1d:bd:35:91:e7:0c:89:dc:59:5c:47:fc:
                    c4:bf:fd:55:35:c1:0b:0b:f0:78:a3:71:f8:f0:ef:
                    de:02:99:79:0f:5d:5d:4c:f1:e0:fb:cb:54:93:1b:
                    51:16:0c:4c:19:28:05:84:13:1f:ef:63:0c:ce:0a:
                    3a:16:a7:2e:61:a7:ca:7f:2e:d8:48:4e:00:71:67:
                    25:12:f8:9a:bb:2a:67:b1:6b:b4:f5:01:27:b0:ab:
                    dc:46:9b:1f:e0:65:d5:e6:07:8b:a3:b7:63:f4:2c:
                    3d:33:95:62:ee:61:1b:b3:d7:29:83:34:31:93:12:
                    f6:1a:6c:00:e2:84:be:ac:5c:34:3a:3f:45:a8:9f:
                    49:c0:23:82:66:68:1a:c4:03:df:c1:cd:52:d1:76:
                    f8:94:df:5d:98:db:1e:c1:52:8a:5d:3c:40:78:2b:
                    87:5f:5d:2f:bd:06:9e:9e:e7:c5:90:4e:8c:f6:38:
                    54:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:B8:AE:90:D9:1F:38:96:CB:89:42:6D:DD:F0:33:E4:F0:28:D9:B2
            X509v3 Authority Key Identifier:
                keyid:8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:0a:7b:51:17:00:97:93:85:9a:2b:d4:78:b7:40:f1:ca:f7:
         30:f0:b1:c4:ae:81:38:7f:82:2c:78:dd:ec:d3:6a:da:91:52:
         ea:27:52:cc:eb:ee:46:cc:79:47:79:8a:46:e0:d7:6b:63:0b:
         d8:3f:ce:ab:ef:fb:c9:b1:63:6f:4e:7b:0d:b6:64:7e:a3:2a:
         d6:25:4f:cc:bb:be:75:1f:b9:96:3e:54:a2:96:2f:8f:30:b8:
         1f:36:5c:e2:fe:51:59:f5:65:c6:6b:ea:47:94:0b:3d:9a:33:
         01:39:d7:90:e5:45:24:08:e5:ff:13:a6:27:f9:2a:0d:d1:b3:
         97:c0:44:43:74:20:6f:d2:44:f8:ee:1d:f4:0e:9d:1b:0a:8a:
         25:80:bf:a5:79:91:01:ff:c4:29:3a:29:32:07:a2:0c:8d:e6:
         10:92:83:0d:c7:b4:c7:fa:26:15:ab:bb:a1:b7:8b:57:d9:99:
         30:f8:ff:5c:97:c3:86:c9:79:2a:68:60:24:e2:48:24:4f:93:
         ad:65:8a:82:63:e5:b6:e9:96:55:92:12:2e:14:a9:fc:eb:17:
         a0:e1:57:87:a7:f6:6d:83:6c:b5:b0:f6:d7:cc:7a:85:27:39:
         10:67:87:7d:8a:94:aa:a9:25:9d:ec:9e:75:2b:2a:ec:72:fd:
         69:65:32:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:15:03 2026 by rpki-client