Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
File:                     ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json)
Hash identifier:          mgy903/PW6nYu6QltpgHu8cqRel9XCEIkxat9dc6m2c=
Subject key identifier:   9A:D3:14:A8:39:78:78:0D:B6:3B:15:CC:B7:F9:FF:1D:DC:D0:23:DD
Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA
Certificate issuer:       /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA
Certificate serial:       02BC
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
Manifest number:          02AB
Signing time:             Sun 05 Jul 2026 02:09:26 +0000
Manifest this update:     Sun 05 Jul 2026 02:09:26 +0000
Manifest next update:     Sun 12 Jul 2026 02:09:26 +0000
Files and hashes:         1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: rPuYOqozf5CTR6gaeQnhX3cUIYG2zm9XduRg6Z03/cY=)
                          2: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=)
                          3: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=)
                          4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl
                          rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 02:09:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 700 (0x2bc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA
        Validity
            Not Before: Jul  5 02:09:26 2026 GMT
            Not After : Jul 12 02:09:26 2026 GMT
        Subject: CN=6a49bcd6-a7d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:40:4f:a6:88:eb:26:03:c1:cb:9a:34:c5:b1:
                    0b:d2:cf:7d:dc:63:69:81:76:69:1f:f4:77:81:73:
                    40:2b:c0:a6:31:74:ce:2b:b4:e6:b3:9c:c3:09:6e:
                    07:ec:87:ce:05:dd:ee:53:48:ae:52:06:a0:11:56:
                    73:d3:8b:d8:df:dd:9b:fb:29:1b:0f:ab:68:73:f5:
                    02:03:87:66:1f:97:69:35:80:26:26:91:d4:99:24:
                    8c:a4:58:4c:db:33:c6:5c:55:33:95:5b:ff:47:e9:
                    7b:2f:e2:f4:62:52:0f:03:ea:b4:82:24:d1:30:b3:
                    9f:69:cb:68:8c:83:46:d4:44:eb:88:8f:05:16:d3:
                    1c:48:23:00:cc:e9:25:ad:05:1d:a9:0c:bd:35:cd:
                    09:a1:f9:6c:99:c0:a1:06:23:98:38:d5:b2:63:d1:
                    83:7a:3b:b4:d2:24:d8:06:39:01:61:fc:6e:2b:88:
                    e0:c8:3f:29:f2:d8:23:be:26:1f:38:67:ff:5b:a5:
                    5a:32:f5:15:ce:5b:24:eb:2d:12:aa:0b:89:0e:f8:
                    fb:09:0b:da:78:6d:1e:70:7a:8f:3d:44:7d:b9:e2:
                    01:ae:ad:9c:4a:0d:a6:a2:35:cb:32:05:16:1f:ef:
                    96:fe:5c:4b:37:52:c7:0a:61:52:f3:19:3b:b0:a2:
                    09:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:D3:14:A8:39:78:78:0D:B6:3B:15:CC:B7:F9:FF:1D:DC:D0:23:DD
            X509v3 Authority Key Identifier:
                keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         de:37:b9:e8:12:a9:e0:fa:4a:fa:aa:6f:3d:35:00:42:08:33:
         c0:7c:55:cd:6b:6c:28:eb:58:c1:8f:97:b3:2f:57:cb:7e:e4:
         92:48:a9:94:09:ba:06:ea:5f:41:14:c5:f5:83:a3:f5:4e:57:
         0c:69:b5:cf:f4:b8:8c:5b:47:d9:ff:cd:d9:d6:12:7b:42:cb:
         29:55:39:6f:e4:24:97:12:4a:e4:dd:4e:56:ad:2d:b5:47:7a:
         1e:7f:78:cd:2b:9c:d9:45:df:5c:7e:bc:7c:f4:84:05:3b:cb:
         fc:5c:d2:35:ba:21:84:80:b5:ed:cc:31:23:f0:b6:30:ad:cc:
         da:2e:69:e9:6d:58:8a:4e:75:48:b6:dd:34:d4:4e:cd:9f:b0:
         98:ef:39:6d:90:78:9a:f3:8e:a7:b9:c0:48:40:e1:f2:ef:65:
         62:a8:69:43:e9:6e:57:46:86:7f:f8:9b:93:cd:ba:b1:c9:58:
         93:da:dc:e8:61:34:6b:b2:78:6e:78:d2:4b:4b:e4:9b:29:dc:
         4d:a8:bc:62:4c:96:32:95:12:2a:e4:f2:e7:b5:fe:95:aa:34:
         41:c7:61:b8:a8:34:4a:99:93:89:22:a7:0a:77:0b:8b:2a:f3:
         35:4f:e5:63:b1:03:38:60:95:32:c2:97:a9:79:11:2e:c1:8b:
         41:f4:39:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:14 2026 by rpki-client