Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
File:                     ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json)
Hash identifier:          moJ7x7xnfEdqHBtqQUuu5ilcOqCFHJVc0vi0vBKxTsc=
Subject key identifier:   60:D8:2C:07:16:97:5E:0F:17:39:CE:CA:23:7F:21:68:2A:F7:6E:ED
Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C
Certificate issuer:       /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C
Certificate serial:       01B2
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
Manifest number:          01AC
Signing time:             Fri 17 Jul 2026 05:03:57 +0000
Manifest this update:     Fri 17 Jul 2026 05:03:56 +0000
Manifest next update:     Fri 24 Jul 2026 05:03:56 +0000
Files and hashes:         1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: Nz4YPElhKZTgXaMacKRsi14/TofM4RlkCPGFkbFS09k=)
                          2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: LehxYUyNY+Aih3/gKb031XwxWefiznlK8xHHelOl+ms=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl
                          rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:03:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 434 (0x1b2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C
        Validity
            Not Before: Jul 17 05:03:56 2026 GMT
            Not After : Jul 24 05:03:56 2026 GMT
        Subject: CN=6a59b7bc-5ce6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:da:56:bf:58:49:9b:ab:21:4d:8a:e0:66:a8:
                    2b:36:49:7f:52:97:45:1a:c3:86:38:d3:46:24:a4:
                    81:10:26:96:21:44:ae:95:ff:9d:77:9b:01:ce:c6:
                    d7:f3:ed:52:54:64:6e:d8:38:a3:b5:56:03:82:f6:
                    3d:e7:35:b3:4b:d3:ab:a3:4f:0e:63:ee:9f:8a:eb:
                    ee:9f:01:09:22:b2:b3:27:c5:d9:d4:45:a6:6c:7e:
                    32:b3:f1:47:e0:42:27:13:d0:8a:d6:c1:df:da:2f:
                    dd:f8:af:29:6c:09:aa:01:88:bd:a6:03:e0:74:4c:
                    7d:87:02:3a:e4:b2:81:83:ec:85:ab:39:88:e2:cd:
                    dc:02:a1:8d:a8:e5:85:12:ff:60:86:de:a2:de:79:
                    96:97:09:50:91:20:24:fe:85:cb:1f:96:51:f4:cd:
                    e0:8c:85:b7:2c:ff:06:36:78:77:c6:46:bb:41:fc:
                    99:fc:ea:d5:e0:7b:46:77:fb:62:36:a1:ad:63:ba:
                    ea:6b:3c:bd:b8:b1:40:77:e8:bc:05:5e:91:ad:05:
                    c4:6f:8c:a9:f0:73:12:1e:a3:f3:6f:48:ff:a9:21:
                    2f:8d:29:96:46:ca:10:f6:1d:3c:55:ad:3a:d9:bb:
                    6c:43:53:d2:87:06:59:df:be:d8:96:2a:f8:cf:06:
                    81:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:D8:2C:07:16:97:5E:0F:17:39:CE:CA:23:7F:21:68:2A:F7:6E:ED
            X509v3 Authority Key Identifier:
                keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:ff:b4:43:d3:cd:76:ba:c6:fa:85:79:ae:50:4b:a8:3c:21:
         55:fb:7a:64:42:a4:47:da:fc:89:28:7b:d5:4d:13:c6:d6:18:
         61:3b:01:d5:fa:82:19:56:50:af:80:ca:71:87:40:a1:f7:f4:
         96:27:48:df:40:97:05:51:52:a4:41:7a:8c:41:64:53:5e:f8:
         83:67:ee:0b:25:c9:99:47:c9:b1:b4:b1:46:82:3e:f7:67:9b:
         8b:90:9a:76:8d:2d:e8:64:58:89:d3:c2:d9:4c:ba:a6:a7:8d:
         19:7c:93:7b:58:0b:02:7d:db:93:dc:fa:3d:d9:f5:51:bd:e6:
         a3:46:5f:a5:24:0a:99:98:46:96:1a:0d:e2:94:0f:dc:c7:f0:
         58:cb:bd:24:81:fb:18:9a:e4:15:15:89:3d:f9:e0:83:71:0b:
         62:e2:a2:96:2e:17:76:dd:72:18:85:6a:2e:e6:43:e6:a5:48:
         c4:ee:44:f2:cc:3f:47:28:25:04:79:f0:c6:9c:4c:32:7c:85:
         5f:e8:55:65:ec:cf:fc:ff:12:dc:1e:3a:85:ae:fe:77:9a:5d:
         08:d5:5f:ce:e3:da:32:1b:d1:48:5b:cb:03:04:b2:35:fb:b1:
         69:a3:f5:80:c6:72:c6:36:13:7a:1a:81:a5:d7:3b:ec:d6:45:
         77:68:e5:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:24:16 2026 by rpki-client