Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
File:                     tdRsD3W7vyQRKYrr0rVitaqV7Go.mft (raw, json)
Hash identifier:          /EC5JEAhswAR6K2uPl0sfdlX4EP5AFVSFERUzYjRIJw=
Subject key identifier:   E7:4F:D7:15:43:24:80:3A:64:93:BE:1A:A2:C4:24:34:72:E4:A1:8C
Authority key identifier: B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A
Certificate issuer:       /CN=A919C230/serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A
Certificate serial:       0B47
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
Manifest number:          0B34
Signing time:             Sat 04 Jul 2026 19:24:05 +0000
Manifest this update:     Sat 04 Jul 2026 19:24:04 +0000
Manifest next update:     Sat 11 Jul 2026 19:24:04 +0000
Files and hashes:         1: tdRsD3W7vyQRKYrr0rVitaqV7Go.crl (hash: 34QgokX7igIpNOPpVi42pDug/6YU+ckuKbkmBpJ5YVk=)
                          2: 1429DACC099B11ED8A62781AC4F9AE02.roa (hash: FCTA0G0uWrgDnGlcYqqrvYV0NmPe1FK7O4WuK+aX7qM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl
                          rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 19:24:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2887 (0xb47)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919C230, serialNumber=B5D46C0F75BBBF2411298AEBD2B562B5AA95EC6A
        Validity
            Not Before: Jul  4 19:24:04 2026 GMT
            Not After : Jul 11 19:24:04 2026 GMT
        Subject: CN=6a495dd5-a911
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:4b:d7:3c:77:b6:a8:86:c3:67:7f:b7:fd:93:
                    a3:87:a6:0b:49:11:33:f1:52:c1:5e:17:53:70:80:
                    dc:ef:e7:c3:2e:61:05:c8:52:c4:46:14:8a:0a:6e:
                    50:66:5c:5f:98:22:be:cf:ea:01:bd:86:fd:01:05:
                    ea:9d:62:26:bf:af:0c:4b:d4:82:cc:28:d5:bf:6f:
                    17:f2:9f:b7:32:91:c5:58:7f:b1:04:6b:5a:15:30:
                    4c:be:23:00:30:ab:10:2a:06:fc:91:f2:91:74:b7:
                    e6:e4:64:17:9a:a7:fc:96:39:bf:aa:3d:3b:f0:f2:
                    fb:f5:74:fe:a7:57:dd:66:53:d7:f7:74:be:e9:13:
                    7c:98:a7:7b:d8:2b:7b:22:5d:df:da:ab:59:56:ae:
                    29:c1:b8:31:34:f7:cd:f1:be:1d:ed:15:48:40:c8:
                    44:02:2e:26:ba:e9:b4:69:09:84:d7:61:ce:49:ed:
                    33:e1:f6:c8:81:d4:5a:79:dc:d4:d6:f6:3e:c3:df:
                    e1:e9:b1:b3:19:d2:9e:4b:cb:d7:24:bc:cb:aa:74:
                    71:5b:15:fc:08:91:94:8b:b6:a3:04:bb:12:17:aa:
                    4e:74:1d:43:ff:d4:68:11:a9:fe:04:98:67:cf:49:
                    74:2f:4d:5d:82:0b:83:f3:18:8f:a4:53:d9:5c:6e:
                    78:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:4F:D7:15:43:24:80:3A:64:93:BE:1A:A2:C4:24:34:72:E4:A1:8C
            X509v3 Authority Key Identifier:
                keyid:B5:D4:6C:0F:75:BB:BF:24:11:29:8A:EB:D2:B5:62:B5:AA:95:EC:6A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdRsD3W7vyQRKYrr0rVitaqV7Go.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C230/2954ABDC654E11EA90C63580C4F9AE02/tdRsD3W7vyQRKYrr0rVitaqV7Go.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:c0:da:05:e5:2d:99:93:79:d5:0c:7f:0b:75:ce:f7:c0:33:
         92:60:b7:a6:a6:a6:6e:b3:68:ec:2e:76:79:41:26:c7:ee:80:
         0d:79:86:36:17:fd:2e:03:cd:41:fa:de:80:5b:88:e6:db:36:
         dd:52:f4:28:8c:18:57:01:3a:8f:16:b9:a0:9e:08:08:33:50:
         88:1b:9a:3b:7b:d0:f9:fa:fc:6f:e9:02:9d:e5:5b:a0:cc:a0:
         de:b0:42:4d:57:bf:e7:91:ef:94:13:fc:4a:a0:e8:62:2a:a0:
         51:3c:8e:18:73:fd:2c:5b:e7:87:fe:b3:50:a1:58:6f:b2:04:
         f2:3d:b4:e1:2d:3f:94:14:ed:d4:fe:8e:b4:79:16:35:4d:85:
         a7:f2:50:a9:3c:24:73:9c:42:5b:34:12:e9:29:45:fe:79:37:
         bc:64:3d:9d:f5:01:a2:08:88:56:c5:07:42:24:2f:a5:f7:91:
         56:bb:71:72:5c:12:42:36:89:95:a8:1c:f4:6b:ef:21:56:6d:
         b6:92:6a:49:bf:34:30:a8:cb:4b:25:8e:f5:56:9e:f4:63:af:
         4a:85:0e:96:50:b7:aa:52:47:22:b0:33:c0:ae:40:a6:a4:8a:
         97:5a:9b:81:03:f1:fa:e7:ba:1d:3a:25:79:11:7e:b1:21:b7:
         28:df:2e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:44 2026 by rpki-client