Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft
File:                     PDd12fh_DqopaGZ3TqYvYnTQZss.mft (raw, json)
Hash identifier:          tjKkOT1OP73zk4ED5CQFdKQYipukSKHyF+HkyWRU/VQ=
Subject key identifier:   33:9B:F2:13:C1:ED:71:59:94:31:36:55:DB:DD:D9:79:59:91:0A:0E
Authority key identifier: 3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB
Certificate issuer:       /CN=A9193388/serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB
Certificate serial:       0150
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft
Manifest number:          014A
Signing time:             Tue 07 Jul 2026 06:22:07 +0000
Manifest this update:     Tue 07 Jul 2026 06:22:06 +0000
Manifest next update:     Tue 14 Jul 2026 06:22:06 +0000
Files and hashes:         1: PDd12fh_DqopaGZ3TqYvYnTQZss.crl (hash: U+yV4ePs/ffkA3//I37t8k8N5whHJ6baPC8i3h5Fs3w=)
                          2: 6234F532486011F1BE722C61A2833773.roa (hash: ZNIM657eK6Sl+F8NWwjV3R3GlH5ddc6QhKZmeceW07c=)
                          3: 02B9688489EF11F0850AA959C4F9AE02.roa (hash: g6Ap4btn5Dr6jvAfzwN9O4vlhSQj8j0AjLOLHcxiHRE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl
                          rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 06:22:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 336 (0x150)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9193388, serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB
        Validity
            Not Before: Jul  7 06:22:06 2026 GMT
            Not After : Jul 14 06:22:06 2026 GMT
        Subject: CN=6a4c9b0f-ffca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:88:e8:a9:9e:c7:56:f2:a9:7d:bb:4e:9d:f1:
                    ee:48:7a:f2:7d:d9:a9:8a:60:2a:f0:63:67:27:1b:
                    2c:ef:d4:ef:88:c3:39:be:be:cb:3b:bf:ad:cd:4c:
                    0a:83:44:ea:95:9d:82:ff:72:ca:0b:2f:bd:ce:0b:
                    e2:f2:ea:bb:4c:b2:34:45:d2:2e:c8:12:df:ce:55:
                    2e:e3:cf:8f:f0:bb:01:15:6a:6c:97:2f:68:f7:f1:
                    e5:bc:7a:1b:49:ee:8a:88:c1:fb:64:19:52:9b:65:
                    34:40:fa:f3:ed:03:db:d4:17:f1:30:0f:d4:c9:9d:
                    63:90:ff:47:3b:b7:a9:9d:9b:2e:d9:18:8a:0e:fd:
                    20:fb:d3:59:6f:cc:bd:b6:95:29:03:ac:04:83:39:
                    a7:40:b5:2e:fa:3f:fc:e6:13:69:af:f6:64:22:69:
                    c7:fd:2c:6b:39:15:8b:29:36:04:ec:52:13:ed:23:
                    6d:a8:aa:cb:c7:d0:cd:b2:e0:25:dc:cd:52:dd:56:
                    ea:c4:b6:27:02:fd:cd:5f:6b:89:d8:a8:79:ca:65:
                    bb:89:27:f2:12:28:36:4d:d6:71:18:2a:9c:cf:a7:
                    5b:3e:8c:8b:eb:fe:f0:e8:8c:23:76:c0:8e:30:5b:
                    b7:b7:89:95:94:8b:51:4a:87:3b:96:8e:8c:d7:08:
                    03:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:9B:F2:13:C1:ED:71:59:94:31:36:55:DB:DD:D9:79:59:91:0A:0E
            X509v3 Authority Key Identifier:
                keyid:3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:7b:6d:80:d9:6a:5f:1c:af:fc:04:b0:a1:8e:3d:16:b0:11:
         7b:50:54:16:45:e6:40:69:98:98:e0:00:b4:f7:e1:aa:62:c1:
         34:e9:0b:18:7b:73:0b:9d:33:63:54:de:12:28:c3:aa:3d:64:
         81:3e:6d:5d:e7:6a:fe:d6:c1:25:f5:b1:ae:36:c9:33:02:96:
         a3:39:4a:14:9b:c5:c0:52:93:3e:56:f1:f5:a5:11:f2:96:a8:
         ee:3a:f8:2c:57:f0:46:64:c8:76:a0:ba:aa:db:de:e5:2f:35:
         f0:59:30:f2:13:d5:6b:93:3d:d6:53:78:d8:fc:57:09:31:e0:
         33:82:80:f7:58:20:23:ad:a2:a6:75:1d:c0:2e:f4:f2:7d:7b:
         00:c2:b1:5f:0b:ec:f0:10:28:b0:07:9c:29:81:7e:b7:94:33:
         cf:10:c5:31:7a:b1:4a:33:f4:18:76:a6:36:da:8d:1e:77:f0:
         c4:aa:dc:de:e5:01:f4:b2:c8:b1:6f:2d:96:32:71:97:bd:7e:
         13:56:71:57:70:2a:db:37:33:c8:93:b1:bb:86:7b:7c:0f:f1:
         16:60:a1:81:9c:f2:8f:76:0b:0d:29:fb:42:2a:bb:70:34:51:
         55:5e:b2:6b:a9:7a:d4:2d:43:22:b1:25:81:4d:d9:58:51:54:
         80:71:7d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 23:12:56 2026 by rpki-client