Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft
File:                     5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json)
Hash identifier:          q34So8XuaoLvVvlSdor+OAP2IC4ED/PW80HNIq6mRkU=
Subject key identifier:   B1:4C:FD:4C:B0:84:19:E0:44:6A:B5:07:39:34:37:3E:B2:22:C8:F7
Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9
Certificate issuer:       /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9
Certificate serial:       1130
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft
Manifest number:          1120
Signing time:             Sat 04 Jul 2026 17:18:55 +0000
Manifest this update:     Sat 04 Jul 2026 17:18:55 +0000
Manifest next update:     Sat 11 Jul 2026 17:18:55 +0000
Files and hashes:         1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: U7idCS/g9yD8CJdnghLWdnsLKMBKNkiSjWEES94LK18=)
                          2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: IG0t1VHluhfPiafs+6si8BI2lajDC2N00y2Pwi8hIl8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl
                          rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 17:18:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4400 (0x1130)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9
        Validity
            Not Before: Jul  4 17:18:55 2026 GMT
            Not After : Jul 11 17:18:55 2026 GMT
        Subject: CN=6a49407f-b1d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:df:7b:51:79:17:7c:44:56:09:7f:7d:82:93:
                    1e:86:40:d0:07:fe:fc:82:36:80:45:ed:e2:8d:8f:
                    94:ba:ec:99:21:4a:97:dd:88:d3:cd:d0:14:c8:1f:
                    f8:1d:3f:0b:2b:59:15:ee:e5:fd:ea:fe:c1:17:18:
                    ac:e8:7f:f9:65:0e:31:6d:d3:fb:b1:b9:e6:42:b9:
                    1b:9c:58:bc:1a:c9:97:d8:f3:dc:32:75:16:53:53:
                    04:0b:d1:ec:62:44:0e:78:ad:ab:9b:3f:13:fc:79:
                    24:47:2c:38:8e:5c:a0:7c:45:40:3e:b7:2b:bb:f5:
                    8a:ab:69:00:52:e5:8a:59:d0:9a:3c:c7:18:56:14:
                    3d:e3:97:98:29:81:9a:b7:e6:a4:8c:70:25:7d:82:
                    c5:cd:e2:da:ac:2c:62:22:78:1d:14:dc:b1:6e:f2:
                    b2:18:d8:20:d4:47:42:04:c3:12:29:77:2b:93:e3:
                    99:11:55:9c:48:82:f1:88:66:5e:32:8e:45:30:dc:
                    27:86:53:93:92:44:4e:52:39:bc:71:34:1b:03:a4:
                    42:36:70:86:7f:77:6b:59:1a:38:74:ed:af:2c:3b:
                    44:fe:8c:ff:13:42:3d:c5:ae:ab:8f:81:1a:61:4e:
                    e4:f9:d3:cd:cd:29:85:e2:cf:cb:55:64:42:4a:d2:
                    63:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:4C:FD:4C:B0:84:19:E0:44:6A:B5:07:39:34:37:3E:B2:22:C8:F7
            X509v3 Authority Key Identifier:
                keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:c9:f7:06:76:45:91:b2:0d:1c:bb:7a:76:1f:a2:73:55:bb:
         22:20:43:a5:c7:ca:37:a3:22:ca:dc:1e:65:e7:94:c8:79:17:
         29:b6:2e:76:5b:ef:41:ba:1a:b5:fc:1c:e0:79:24:b6:52:89:
         ca:f3:2d:47:7b:9b:a7:81:67:0a:47:97:c7:5b:6e:5f:e8:fd:
         ea:31:0b:b7:ad:12:ec:53:e7:ce:26:2b:6f:ec:ed:a2:77:cb:
         1f:79:93:98:fb:59:10:e3:5e:36:0e:31:3c:72:9a:a4:3f:79:
         b0:bc:15:99:57:d0:4b:7d:9d:98:30:fc:75:5c:03:26:5e:8c:
         16:23:ed:c6:50:7e:0d:42:12:a8:91:37:fc:78:92:b5:9d:6b:
         4c:29:86:ca:ad:0c:1c:5a:97:a8:43:e6:3e:d0:06:14:e8:63:
         12:20:35:87:b4:b1:f7:3e:3c:58:fa:57:ff:0a:d3:12:d1:85:
         e2:26:ad:76:0a:b8:c2:f9:fb:cf:ad:7a:00:ee:f9:bb:67:87:
         41:d3:dd:b4:b4:59:07:de:8e:bc:05:3d:3e:d3:ee:1b:0b:77:
         e2:42:e0:fc:34:3a:7b:b9:6f:64:65:cf:80:bc:d2:8b:87:03:
         4b:58:2b:f3:84:71:56:d4:53:6d:9e:cd:94:17:d3:52:2c:cd:
         de:8c:eb:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:19 2026 by rpki-client