Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
File:                     Klc5bc5w61bAc94adgtipyKwR44.mft (raw, json)
Hash identifier:          Cw9x4n3dMgsA/Ldjm4PU448FTrUP+FgP3gSijJV2JDM=
Subject key identifier:   88:F3:D0:EE:47:13:EF:C6:56:34:5E:3F:EE:E3:EC:22:44:33:9C:9E
Authority key identifier: 2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E
Certificate issuer:       /CN=A9193B94/serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E
Certificate serial:       0131
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
Manifest number:          0129
Signing time:             Fri 17 Jul 2026 06:50:45 +0000
Manifest this update:     Fri 17 Jul 2026 06:50:45 +0000
Manifest next update:     Fri 24 Jul 2026 06:50:45 +0000
Files and hashes:         1: Klc5bc5w61bAc94adgtipyKwR44.crl (hash: CzaiegFNOV53gtiMJra7yHJcX7tFUanU5Vvv6SVmej4=)
                          2: 329C17E6BCDA11EFA2D81814C4F9AE02.roa (hash: fMdXJV+1ucniyu3k/11VAI6qy/FxoiJSc5x07sN7B60=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl
                          rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:50:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 305 (0x131)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9193B94, serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E
        Validity
            Not Before: Jul 17 06:50:45 2026 GMT
            Not After : Jul 24 06:50:45 2026 GMT
        Subject: CN=6a59d0c5-934f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:75:fd:27:68:68:e1:85:74:6e:29:9a:ff:e7:
                    8e:a1:96:26:6c:ed:21:27:8d:a7:1f:61:08:e7:ee:
                    12:4f:df:a4:5b:5e:94:b2:75:fd:62:1e:db:5f:1d:
                    04:dc:e9:b0:3e:68:ac:23:36:77:26:33:9e:d6:28:
                    a2:25:69:60:d8:1c:15:6d:4e:0a:20:f9:e1:90:a9:
                    04:e5:55:9c:06:80:6f:44:6e:b8:f5:88:89:93:13:
                    90:15:1a:b9:46:6c:08:e3:9c:f4:a0:0c:cf:2e:a7:
                    e8:7f:07:61:78:52:aa:47:f3:e0:55:ca:bf:c4:2f:
                    c8:ca:4f:8b:9c:b6:65:76:66:d8:6e:19:21:ba:8d:
                    3b:08:88:8b:b2:6a:ce:04:c4:3d:0b:14:e4:b8:83:
                    b1:f4:9a:7c:5f:97:c5:70:2c:e6:9b:c6:66:ce:d5:
                    4c:62:b5:bb:73:b6:5a:95:6f:e4:cc:fd:45:0b:53:
                    57:4b:0c:97:c7:31:b1:5c:fa:82:82:6f:e0:73:fc:
                    45:91:fd:b3:21:46:2c:cb:4a:b3:d0:e6:74:9a:e2:
                    c0:8b:b8:5f:9d:9a:9e:a5:d2:47:d5:3f:ff:ec:7c:
                    f0:72:84:bb:fc:e1:0a:96:ff:67:cb:f5:16:f9:da:
                    a2:a6:6d:90:e7:b2:d8:6f:13:a5:df:43:3b:06:8a:
                    8d:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:F3:D0:EE:47:13:EF:C6:56:34:5E:3F:EE:E3:EC:22:44:33:9C:9E
            X509v3 Authority Key Identifier:
                keyid:2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:05:57:cb:2d:3e:1c:72:27:0f:12:d5:29:73:e4:01:b9:bd:
         16:e2:dd:81:c5:5e:97:0a:3b:23:dd:b0:f5:f9:82:a3:f7:da:
         f4:1e:77:d7:8b:34:bb:ef:e2:6e:ea:ba:d4:ed:85:8d:58:5a:
         73:86:ab:b0:05:65:c4:de:42:57:6e:7c:61:4f:e0:5a:9a:44:
         bf:cc:03:03:36:85:68:9d:e6:10:db:d0:0e:5b:f3:96:40:ac:
         3e:e1:a6:e9:9a:31:d0:99:ec:fe:63:66:39:c2:94:56:19:2c:
         ae:ee:9b:e8:90:c9:c0:64:28:57:b7:aa:79:71:fb:4c:23:5a:
         f3:a9:ec:3e:cb:b8:ca:09:8b:d0:6d:55:ec:78:50:d6:76:1c:
         7b:47:dc:32:d6:e4:6c:65:d6:46:f1:4d:4b:32:90:7a:95:ca:
         66:0c:60:55:d1:09:bb:53:f7:9c:c1:bd:99:b6:62:37:03:a4:
         23:38:c5:18:b6:d7:ad:14:88:0e:38:8d:85:00:ea:50:88:fa:
         79:1f:c9:f1:2c:bb:0d:4b:51:5e:a9:be:60:87:ec:d3:6d:fa:
         22:8e:41:8b:14:9e:69:e7:c0:48:af:99:a3:4a:0e:ce:09:72:
         97:54:f0:17:51:3d:e1:a6:e5:3c:39:f4:4d:4d:cc:99:97:a2:
         86:63:45:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:44 2026 by rpki-client