Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft
File:                     tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json)
Hash identifier:          soRVXBvj1n8207Tfgm9e6Ulq/O7L4TcUIWL7S0QStyQ=
Subject key identifier:   CC:A5:09:1F:3F:43:59:7D:05:33:B2:AB:EB:C5:F8:4F:11:74:E9:AF
Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D
Certificate issuer:       /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D
Certificate serial:       01EB
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft
Manifest number:          01E0
Signing time:             Fri 17 Jul 2026 04:33:34 +0000
Manifest this update:     Fri 17 Jul 2026 04:33:34 +0000
Manifest next update:     Fri 24 Jul 2026 04:33:34 +0000
Files and hashes:         1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: Zz8qcEXAhctaUpD9RB7l+ugttFaeA3ZS5EXUUrCCTbU=)
                          2: ACC45B54619411F19AF0775A8347A888.roa (hash: JuZvLZgp7cBMbz5SArZAcdTlGbnZq2/Za1QddcsY5rg=)
                          3: 79E25D40601211F1AD9319218A47A888.roa (hash: q30SnaEDLTLFEYzr3C7O98SoFArm/k9dGLI4gYwGx7A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl
                          rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:33:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 491 (0x1eb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D
        Validity
            Not Before: Jul 17 04:33:34 2026 GMT
            Not After : Jul 24 04:33:34 2026 GMT
        Subject: CN=6a59b09e-903d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:ca:b7:85:f8:d7:44:02:3f:a4:cb:62:24:15:
                    56:cc:bf:70:a6:14:14:24:20:08:f4:17:ff:91:60:
                    92:97:d2:77:40:78:59:89:6e:e0:3a:38:f5:2c:6b:
                    3e:b1:1d:9f:36:76:9f:da:b9:0f:32:4c:55:b9:95:
                    b2:5d:0b:04:83:08:58:62:66:73:9d:74:be:03:75:
                    11:72:66:c6:db:da:cd:55:a6:8d:67:1a:a3:a5:06:
                    11:83:25:0b:ad:33:33:94:27:ce:51:bb:00:47:cd:
                    b5:51:3a:a1:41:83:f8:a4:a9:df:df:ca:a7:cb:af:
                    21:66:92:7f:05:98:69:73:e1:02:d2:d6:56:14:e2:
                    20:c6:a7:da:a4:3d:c1:5f:85:ed:00:57:11:cc:53:
                    c6:e3:5f:a7:5e:53:67:5b:e1:45:86:05:53:2c:97:
                    80:b9:66:7d:7e:67:49:9c:d2:7e:8c:05:55:cb:14:
                    a2:25:55:37:4e:7e:4b:1c:25:3c:31:c2:61:d8:c0:
                    80:a8:47:f4:0a:4d:20:9d:cc:22:c2:8b:c8:9c:2d:
                    7b:65:c9:58:44:39:c6:d5:45:6c:81:d8:44:d0:41:
                    6d:07:6e:97:c1:dd:81:0b:d5:00:2f:5c:86:5d:d8:
                    be:43:2d:34:39:c5:7f:07:db:7b:97:2b:c7:e2:80:
                    ae:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:A5:09:1F:3F:43:59:7D:05:33:B2:AB:EB:C5:F8:4F:11:74:E9:AF
            X509v3 Authority Key Identifier:
                keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:1f:2b:26:01:9a:17:cd:b5:37:d3:3f:e7:1d:1a:95:06:05:
         3e:81:16:8d:16:42:09:c9:f4:84:94:c9:94:83:01:40:fc:23:
         64:ae:dc:2e:dc:00:4d:21:fb:af:42:de:9f:14:e1:47:56:4c:
         47:10:27:2b:78:c7:7a:f8:85:85:2f:f1:d3:44:eb:44:b9:44:
         53:0a:f0:1b:de:07:24:4d:e5:64:d0:c8:ac:13:e6:95:eb:d8:
         a8:8d:89:62:8c:e8:6f:e6:ce:3d:54:8c:a5:11:74:2b:9c:1a:
         b5:ed:7d:1a:27:ea:13:0c:ec:9f:a2:9f:50:84:df:ca:5d:33:
         bd:7b:23:46:b7:20:d6:25:fc:68:e0:93:11:91:b4:d5:54:2a:
         7f:58:78:f9:47:f2:b3:5b:21:18:54:49:13:ce:2f:27:8c:b7:
         44:3f:e8:32:29:32:7b:56:b9:80:6f:9c:5d:d4:1c:a9:87:f5:
         31:43:31:1c:d5:7b:67:4c:8a:95:18:85:4a:c1:09:cd:d1:04:
         7b:91:02:a5:c4:3b:89:c1:f3:0c:b8:af:49:a8:3c:df:24:fa:
         c0:a1:7c:e9:86:43:19:e8:bd:af:af:73:5d:53:59:01:b0:ea:
         37:f5:77:25:4b:0a:73:4b:0f:70:92:59:c6:6b:a0:43:7e:9d:
         cf:bb:79:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:40 2026 by rpki-client