Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
File:                     IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json)
Hash identifier:          qrOV5ayoLgDukWE8Ml7xBgCbRP9Ve+7sGR2hqApl+SA=
Subject key identifier:   03:39:8F:4F:18:5F:C4:0C:A2:82:29:31:D7:50:15:F7:AA:F0:15:89
Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62
Certificate issuer:       /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62
Certificate serial:       0A9C
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
Manifest number:          0A8A
Signing time:             Thu 02 Jul 2026 19:44:34 +0000
Manifest this update:     Thu 02 Jul 2026 19:44:33 +0000
Manifest next update:     Thu 09 Jul 2026 19:44:33 +0000
Files and hashes:         1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: tsUI2wWUb3V21W7IYdGhvrA3mNmcDwoR889vNmpYDVM=)
                          2: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: KvrhkQvnKnpFTYVGWnMJN98DGB3DYDNMGELyZhZWRGk=)
                          3: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: LPpHOK81C3pNsWyGa2Q2W3gfstRuGd26hh2KRKuaOPE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl
                          rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 19:44:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2716 (0xa9c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62
        Validity
            Not Before: Jul  2 19:44:33 2026 GMT
            Not After : Jul  9 19:44:33 2026 GMT
        Subject: CN=6a46bfa1-dac9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:4a:31:8f:f1:64:60:6b:01:54:c5:dd:49:11:
                    d4:73:db:ab:7f:9a:be:fc:14:e1:75:87:31:e0:67:
                    e3:3a:ea:26:08:4a:f1:b2:da:61:f5:83:08:76:9e:
                    85:ea:b9:b4:ad:d4:97:3d:4a:62:80:4a:81:30:c8:
                    eb:18:86:c2:d9:0a:a3:38:70:1c:7a:33:ec:57:72:
                    e4:02:3a:31:8b:d9:e2:83:d7:03:7e:41:ee:2d:5f:
                    57:20:d6:36:e1:fb:d2:86:e4:39:1e:b1:c0:d1:dc:
                    d3:22:55:87:d1:2d:f0:5e:61:6a:50:0f:6b:ea:e8:
                    e9:c7:91:d0:ec:70:b4:17:02:6d:9e:fd:a5:4f:d1:
                    0b:68:9e:b6:25:a0:3d:86:26:2f:8e:b3:62:53:28:
                    d5:ef:5c:c1:3f:ec:20:f3:28:63:42:38:d6:9f:77:
                    d8:3f:a5:b2:fa:4f:e4:c3:07:a4:48:df:b7:64:c9:
                    b9:a3:5f:59:e3:87:c5:d5:46:26:77:e7:cf:98:b9:
                    a9:a9:17:c2:9d:19:ca:17:b4:3c:cf:e0:a2:77:a2:
                    a0:fa:a6:d8:f0:70:f2:0d:0e:73:07:7c:2f:57:c6:
                    2d:93:e8:e4:d4:65:55:d0:d1:32:d2:47:cb:ba:14:
                    3a:cd:e8:30:cb:e0:b9:15:8d:2c:74:df:25:8e:7c:
                    ce:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:39:8F:4F:18:5F:C4:0C:A2:82:29:31:D7:50:15:F7:AA:F0:15:89
            X509v3 Authority Key Identifier:
                keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         f0:69:55:32:98:a0:96:58:2f:43:0e:fd:61:4e:40:02:a8:69:
         35:fe:2b:92:ea:62:a1:02:dd:df:92:6f:3a:da:6c:fb:74:67:
         d0:4c:45:21:26:5f:56:1b:c9:6b:20:1b:ff:01:9a:ac:2f:84:
         ba:c5:f1:94:c4:e8:d6:65:bd:85:d6:42:5b:3e:df:12:4f:11:
         b7:46:ef:e2:02:bd:36:ef:90:2c:b0:67:f4:19:45:4d:a3:01:
         e8:4b:b8:70:0a:73:9e:4c:4c:ca:f6:da:ce:17:59:0b:32:86:
         c5:a7:0b:17:f7:c7:0b:ac:31:3d:e9:5d:9e:fe:d2:0b:44:48:
         3c:8a:52:bc:5a:4a:0a:db:27:09:fd:45:88:1e:24:d4:59:9f:
         4e:4d:45:bb:72:f5:6e:2b:80:ed:df:e4:1d:47:74:31:d2:4a:
         a4:12:fd:65:a9:59:41:3f:b3:69:39:53:9e:cf:43:15:18:d1:
         3a:91:c9:d0:e0:75:4f:c0:d6:62:e6:f8:4d:f6:8e:0f:4c:02:
         fc:5e:05:03:d3:f7:92:c0:64:80:f3:b3:ef:61:9a:86:07:14:
         c2:d0:55:56:41:6d:0e:dc:13:7f:65:17:1a:b7:36:f1:4e:e8:
         73:36:a7:fa:fb:6c:b4:7f:3f:30:1c:ab:20:ee:56:12:af:1d:
         88:b6:ee:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:49:00 2026 by rpki-client