Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
File:                     iaMdROlPHMJ4ULusFsAsIKqznOU.mft (raw, json)
Hash identifier:          2sKuSAlLr8TLAaT2RejDPtgxH4ZtsVqJkJjO415xXIw=
Subject key identifier:   10:80:97:A2:3B:DC:AD:3B:E9:01:13:4C:EC:07:A4:65:A1:9E:23:32
Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5
Certificate issuer:       /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5
Certificate serial:       0B99
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
Manifest number:          0B83
Signing time:             Sat 04 Jul 2026 19:15:19 +0000
Manifest this update:     Sat 04 Jul 2026 19:15:18 +0000
Manifest next update:     Sat 11 Jul 2026 19:15:18 +0000
Files and hashes:         1: iaMdROlPHMJ4ULusFsAsIKqznOU.crl (hash: jbfBPycsVrMQ/vFSWQwBmSRAia9wax+KwJXLeXaaaMs=)
                          2: F392CF9E53A311EAB1641213C4F9AE02.roa (hash: hK13KfCAsMi+xHUuka2Pkznncer1XgUOHCwFnVLDtqM=)
                          3: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (hash: JuE06CSNAAV8+NliC0AVlzjHWrODAM4vJnnB5WZLKk8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl
                          rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 19:15:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2969 (0xb99)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9196F73, serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5
        Validity
            Not Before: Jul  4 19:15:18 2026 GMT
            Not After : Jul 11 19:15:18 2026 GMT
        Subject: CN=6a495bc7-f518
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:c4:c4:c6:c8:56:80:3c:7f:7a:a6:5a:09:4f:
                    c9:d3:ca:e9:dc:9c:de:c0:15:bc:fb:44:6e:d0:51:
                    d3:bd:24:c2:18:a0:a1:eb:b3:22:24:43:c3:fe:98:
                    78:76:59:5d:09:d9:d5:d5:24:9f:25:30:19:b1:fe:
                    28:22:a7:a2:02:92:52:65:98:9b:70:1a:fb:6d:4a:
                    87:af:12:5b:37:fe:e3:72:32:7c:78:36:b3:65:9b:
                    c9:02:54:09:73:37:2b:e4:be:ec:1b:5f:9a:44:af:
                    21:14:2f:85:7e:38:c9:29:cc:bc:ad:fd:7b:61:45:
                    7a:e4:2e:52:8f:00:3a:77:6e:f9:f7:74:ff:7b:47:
                    ef:33:ec:8c:32:0c:fb:38:52:ae:ad:f1:90:db:d1:
                    5c:89:7b:f1:8e:1e:e9:b0:e4:68:44:92:a6:ca:75:
                    fa:d1:65:1d:be:99:ff:a7:dc:3a:f0:d5:ba:86:f3:
                    41:e4:76:39:b6:c5:30:c5:1d:97:8b:ed:6f:74:01:
                    26:f8:8e:58:e4:75:a3:dc:38:52:b1:ff:21:3a:63:
                    4f:94:1d:fa:6e:c9:3d:d5:df:26:e6:3d:c1:62:40:
                    c9:c7:c6:16:0b:a8:02:8d:97:3b:d6:e7:8f:29:f8:
                    91:a1:69:fa:4b:2c:23:83:dc:b6:60:ee:93:94:59:
                    36:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:80:97:A2:3B:DC:AD:3B:E9:01:13:4C:EC:07:A4:65:A1:9E:23:32
            X509v3 Authority Key Identifier:
                keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:fd:f4:03:37:de:2f:0d:ba:d0:33:14:43:63:2c:3b:f8:d8:
         94:5d:ea:a4:c9:34:17:70:ef:c4:8c:32:52:23:cb:57:05:be:
         92:38:53:c2:3d:ca:3e:63:17:ba:6c:d6:6f:df:e2:e2:d0:5d:
         bb:ee:f7:20:65:d2:67:ee:92:77:fc:2f:a1:3a:e0:10:f7:fa:
         2e:9c:c0:d0:19:77:f9:4c:fb:36:f3:5e:f4:10:85:04:1f:6b:
         9d:74:d9:8d:02:2e:0b:4e:3a:c3:82:8b:42:af:88:6e:38:64:
         46:db:73:21:e5:11:00:44:41:92:bb:60:25:da:20:2f:70:96:
         60:69:39:bd:c5:35:70:d4:c4:3f:1c:c5:51:74:cc:7a:cf:e8:
         a6:84:e3:55:c3:67:53:9c:7f:d7:c2:57:e1:43:a4:d8:f7:d0:
         43:99:67:b2:c5:6c:e3:92:ac:ef:7c:15:2d:f3:a3:e7:58:b9:
         5c:60:7c:7c:e0:d2:16:f8:be:7d:3f:bf:d8:08:e3:21:5f:cd:
         38:40:d7:a9:e2:3f:43:cf:98:c5:71:02:69:49:01:aa:7d:32:
         ba:e5:b3:8d:88:18:3e:00:f0:3d:4c:c1:4d:b4:01:5b:29:72:
         da:ec:3b:bc:ba:82:9e:d3:bf:d1:98:fa:be:aa:43:7a:54:0a:
         89:31:1b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:14 2026 by rpki-client