Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft
File:                     jzFgL06-RV4JnABJu3sAZlWLnYk.mft (raw, json)
Hash identifier:          mwuDYA3C1Et68uVbTxr+UifvecongZz7Xornjc5CyZA=
Subject key identifier:   AA:45:01:44:A8:5E:9D:5F:AD:84:2D:09:C6:64:68:23:3E:48:18:B7
Authority key identifier: 8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89
Certificate issuer:       /CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89
Certificate serial:       3587
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft
Manifest number:          356C
Signing time:             Thu 16 Jul 2026 14:38:21 +0000
Manifest this update:     Thu 16 Jul 2026 14:38:20 +0000
Manifest next update:     Thu 23 Jul 2026 14:38:20 +0000
Files and hashes:         1: jzFgL06-RV4JnABJu3sAZlWLnYk.crl (hash: JXrLl1vC397odmRZQ/EmOJg49OIb9HPhdRz943jS3NI=)
                          2: DC50B57AE84511EB87AD6B49C4F9AE02.roa (hash: WdRTaGnFoQwXTrDKxW4rp2v7Q/g6mL76weyA7zS/lnI=)
                          3: DD5C8412E84511EB87AD6B49C4F9AE02.roa (hash: xn1GYfH1rwc+2AIvQfDokFXkj6OoQH1mNdhrUcoaQW0=)
                          4: 12C0FA5EA8E811EB8801993BC4F9AE02.roa (hash: QvGmtT1ZWDXn7Q9qTG1+FbSqpfo986BnpmRtmxx/sP4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl
                          rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 14:38:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13703 (0x3587)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196E6C, serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89
        Validity
            Not Before: Jul 16 14:38:20 2026 GMT
            Not After : Jul 23 14:38:20 2026 GMT
        Subject: CN=6a58ecdd-5538
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:c3:ed:d3:f9:07:42:72:e4:db:bb:10:15:50:
                    ad:bc:eb:a5:07:fc:a1:a3:31:99:2f:60:cf:e5:21:
                    f6:79:ca:59:23:b9:05:12:80:f9:f1:21:7d:14:91:
                    93:9f:c6:e7:28:ee:fd:fb:da:38:75:2c:56:19:46:
                    9d:fd:17:45:72:a4:d8:f9:12:85:3d:ea:f6:c4:15:
                    36:ce:56:e6:52:49:d0:03:ec:2d:ed:15:64:90:43:
                    26:8d:9e:95:85:c0:51:36:3f:dd:c5:0a:82:93:a8:
                    78:0f:97:3c:94:66:b5:95:66:98:42:92:da:8a:41:
                    ab:3b:10:2d:6a:5e:31:b7:25:aa:f9:56:23:ac:ab:
                    b6:ba:7a:1c:e8:2d:66:5b:07:02:22:0f:a2:2d:36:
                    a9:80:1d:71:47:ac:fb:a2:6f:d5:3d:e9:06:ac:8c:
                    da:c4:00:f4:de:11:c6:a0:3f:d8:90:0c:8a:2f:a6:
                    a7:53:65:9e:e6:0a:90:72:18:dc:80:23:d2:36:06:
                    b6:d8:ff:ea:db:3b:1d:02:d0:25:88:40:0d:ca:76:
                    f3:b6:3b:3d:4f:bb:c8:c3:fb:16:30:0c:b3:fa:bf:
                    4f:d7:b7:e9:8c:54:aa:b7:54:d9:a3:65:30:a9:b2:
                    c1:fa:cf:05:59:78:49:61:09:4a:fc:b4:be:51:54:
                    82:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:45:01:44:A8:5E:9D:5F:AD:84:2D:09:C6:64:68:23:3E:48:18:B7
            X509v3 Authority Key Identifier:
                keyid:8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:f8:f6:e6:df:73:58:1a:fb:bc:3d:fa:19:f6:10:04:e7:99:
         30:58:2d:6f:59:0d:87:38:2f:5d:c3:42:cd:1a:2b:a8:e9:92:
         c0:39:ab:33:5a:83:a8:2c:28:b9:1a:6d:65:19:aa:75:a4:e5:
         2e:e7:aa:30:cb:cc:79:f7:d4:0e:81:ac:7e:89:90:1c:72:30:
         42:3b:ef:87:ab:93:79:28:94:ee:a8:5d:c9:b0:2f:61:95:ce:
         aa:0c:a5:17:20:1a:cf:83:11:cf:96:ab:90:55:b5:96:40:fb:
         62:29:3f:2a:51:66:ff:17:90:74:54:39:bf:1f:cf:ab:9b:35:
         91:c1:b6:b8:b6:4f:21:9e:43:f1:88:12:d7:82:f9:56:7f:fd:
         be:33:ad:90:5f:ee:e1:77:11:5f:8f:b7:64:94:a9:76:f5:69:
         ec:a0:db:0f:d0:62:7e:63:70:f9:ba:c3:ec:28:e6:9f:2e:92:
         a9:fa:e9:6d:7b:2e:fa:a3:fc:cc:38:68:ff:55:e4:c8:2a:05:
         99:35:87:c6:89:69:99:ab:9d:87:c3:a3:05:8b:68:47:87:de:
         8f:54:cf:85:68:f8:66:35:d7:f5:db:dc:ce:68:e1:28:cb:c2:
         34:40:86:ab:af:f3:10:14:53:bb:77:ba:81:87:cb:35:1b:94:
         2c:fd:06:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:25:42 2026 by rpki-client