Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
File:                     ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft (raw, json)
Hash identifier:          bgI6pO90+WboqMrwclqpzQNPu6Szx7hyYmEasyuVO4w=
Subject key identifier:   97:70:52:E7:A0:5E:9B:9D:72:10:83:AA:82:C0:56:06:98:9F:2B:02
Authority key identifier: A2:E2:DF:85:05:FE:2F:2A:8A:CD:D6:DD:F1:C5:61:EF:F7:DD:9E:E2
Certificate issuer:       /CN=A9196AF7/serialNumber=A2E2DF8505FE2F2A8ACDD6DDF1C561EFF7DD9EE2
Certificate serial:       39
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
Manifest number:          38
Signing time:             Tue 07 Jul 2026 09:50:59 +0000
Manifest this update:     Tue 07 Jul 2026 09:50:58 +0000
Manifest next update:     Tue 14 Jul 2026 09:50:58 +0000
Files and hashes:         1: ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl (hash: I6az9ZEEtNk4+eZAL1LYvVpdtPS2A4vjyeGjRkz7VeU=)
                          2: 7EF6CB6E24CF11F1AAA533A9A9833773.roa (hash: 8y7L9hPSTuk1LDFXpb7ShDJmE7OnOp5HbjTXee/kCzg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl
                          rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 09:50:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 57 (0x39)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196AF7, serialNumber=A2E2DF8505FE2F2A8ACDD6DDF1C561EFF7DD9EE2
        Validity
            Not Before: Jul  7 09:50:58 2026 GMT
            Not After : Jul 14 09:50:58 2026 GMT
        Subject: CN=6a4ccc03-dc10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:02:dd:3a:5e:9f:02:b0:ed:9d:d4:04:27:19:
                    87:5a:0c:e9:ba:1c:10:b1:5b:a0:01:1e:d1:0c:22:
                    47:62:d4:2b:5c:0a:9c:38:40:e8:ef:0c:56:b1:3a:
                    d7:dc:b2:33:cf:a3:7d:14:5b:56:0c:56:76:55:9b:
                    c5:a5:07:42:f0:36:8d:95:ca:f2:a0:f3:c5:32:01:
                    49:ce:95:15:2b:98:9a:a7:b3:c8:72:79:0e:20:f1:
                    0c:f4:a5:ce:40:63:e3:41:45:8d:32:0f:69:b5:0b:
                    f1:af:3c:3c:21:3c:94:c2:40:cf:b2:7b:39:0e:9b:
                    ff:ce:18:7c:b7:af:fe:79:f3:e2:c8:dc:f4:12:1d:
                    1f:d0:c4:09:8a:76:76:ab:1d:d5:7c:c1:49:84:52:
                    f2:4d:f6:18:2b:a8:a4:e0:ed:68:39:58:1c:d2:15:
                    c1:89:2e:1d:a1:44:e3:ca:58:a4:48:b0:58:2a:e5:
                    b2:37:a4:e7:1f:4d:93:61:f5:0e:e6:68:dd:73:01:
                    ef:c7:8b:45:c0:14:55:40:96:b3:37:24:b5:05:8b:
                    df:51:8c:5a:41:f7:97:f6:4e:17:0e:99:3d:6b:71:
                    c6:fd:09:39:c7:9a:9c:11:05:72:6a:f5:68:43:de:
                    7f:30:57:d1:1e:c1:4c:11:79:dc:d8:ed:cc:eb:49:
                    33:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:70:52:E7:A0:5E:9B:9D:72:10:83:AA:82:C0:56:06:98:9F:2B:02
            X509v3 Authority Key Identifier:
                keyid:A2:E2:DF:85:05:FE:2F:2A:8A:CD:D6:DD:F1:C5:61:EF:F7:DD:9E:E2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ouLfhQX-LyqKzdbd8cVh7_fdnuI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196AF7/CBE7F36824CE11F1BC1F5B8EA9833773/ouLfhQX-LyqKzdbd8cVh7_fdnuI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:43:83:21:3f:4c:b9:e7:c3:90:df:cb:45:1b:a1:75:97:b3:
         02:ba:9e:a9:dc:5f:7d:97:75:f9:98:bd:be:63:91:68:70:04:
         b5:41:f3:d7:18:1e:ea:81:de:a9:27:aa:d4:9a:ea:70:dc:ef:
         b5:4f:f1:99:cd:8c:29:89:7c:63:57:a7:a5:2a:45:47:df:dd:
         74:48:0b:44:e8:43:08:e0:79:ca:9a:72:c2:ec:9f:e5:a7:77:
         8c:be:22:e4:27:b9:cd:47:27:21:3f:16:c4:31:51:a2:12:65:
         ad:0f:0e:db:bf:07:5c:bd:32:88:6f:ec:5f:25:a0:d8:f5:7a:
         71:79:94:1b:01:2c:5f:e7:d7:ed:f6:d5:56:30:df:94:96:9c:
         38:89:c0:a8:dd:f5:91:aa:34:32:62:59:47:6b:cf:90:fb:ec:
         76:5c:8f:9e:2c:57:06:b4:a2:83:d2:ad:c1:b2:b0:d4:e3:19:
         52:3f:5f:00:39:a5:74:ab:2f:e6:33:0c:08:00:8e:5b:1c:02:
         00:72:dd:e7:20:48:b8:8a:4a:cd:11:4e:b2:4b:bc:22:40:d3:
         29:ba:26:6d:0b:12:83:c9:d6:73:ab:8e:ab:9e:c2:16:3e:bf:
         3c:a2:c1:00:e1:45:0c:f0:95:63:6d:91:3b:2c:59:84:21:a0:
         cc:cc:e8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:03:44 2026 by rpki-client