Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
File:                     I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft (raw, json)
Hash identifier:          5BVhz8l+361lVfyqbtwXg4l8NDTRC6pCE1f2RpsT1fA=
Subject key identifier:   4A:2B:BE:54:20:61:08:23:04:DB:17:7F:15:8A:02:9F:CA:A4:4C:86
Authority key identifier: 23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28
Certificate issuer:       /CN=A919DB08/serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828
Certificate serial:       59
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
Manifest number:          55
Signing time:             Fri 17 Jul 2026 09:35:13 +0000
Manifest this update:     Fri 17 Jul 2026 09:35:12 +0000
Manifest next update:     Fri 24 Jul 2026 09:35:12 +0000
Files and hashes:         1: I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl (hash: BOh+ZZNYFiMeCxRVg0tRHP9gonSdk+S4+3o6UTJKsx0=)
                          2: 3F7E724808FA11F1B69E3FD3313D8C67.roa (hash: NZDM0P5b400zVrhyd2jzSLfxw/qGeaxR3jXe0NSn67o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl
                          rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:35:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 89 (0x59)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919DB08, serialNumber=2391FB4D9AED44AB80E6AFD8D820A1C064439828
        Validity
            Not Before: Jul 17 09:35:12 2026 GMT
            Not After : Jul 24 09:35:12 2026 GMT
        Subject: CN=6a59f750-6665
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:cc:be:62:e3:d0:7c:6c:45:08:64:09:55:1d:
                    68:0a:db:a1:0c:34:7b:1a:7c:d9:07:f9:be:d4:dd:
                    d1:ef:d4:dd:7b:db:60:f1:78:a5:b2:48:13:39:c1:
                    46:28:72:cb:9b:4f:09:0b:7f:16:9c:35:98:6b:15:
                    a2:b9:b5:be:ce:62:58:0b:c2:81:12:75:70:5a:18:
                    2d:5d:76:6d:2a:25:f6:a0:09:ae:c8:a2:90:e2:4d:
                    80:00:aa:39:23:2f:4b:68:de:76:3f:0f:7a:ae:8c:
                    57:2f:e2:89:50:fc:e2:d5:8f:2e:61:a3:33:2c:df:
                    0d:07:54:d0:3d:26:e2:d1:d2:e8:8d:12:73:e1:bc:
                    64:00:d2:b5:c0:0b:8e:cc:ab:10:02:4a:64:95:b3:
                    84:15:7f:bc:dc:07:0e:09:c6:52:7f:0b:2a:65:57:
                    78:75:9b:f1:fa:ce:03:83:99:0d:1c:50:37:91:2e:
                    b8:a7:6e:0f:f3:50:26:af:0e:99:8d:4b:0d:d5:1e:
                    7f:66:35:81:df:9a:0a:f4:50:e1:cd:e2:62:04:bf:
                    a2:78:f9:fc:f4:84:bc:d0:0a:4c:2b:de:58:a4:30:
                    af:3b:56:34:2d:f6:03:40:25:46:03:0e:d5:8c:f4:
                    23:df:df:e8:c4:1d:0d:35:47:93:4f:f2:6d:30:f2:
                    fe:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:2B:BE:54:20:61:08:23:04:DB:17:7F:15:8A:02:9F:CA:A4:4C:86
            X509v3 Authority Key Identifier:
                keyid:23:91:FB:4D:9A:ED:44:AB:80:E6:AF:D8:D8:20:A1:C0:64:43:98:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I5H7TZrtRKuA5q_Y2CChwGRDmCg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DB08/3886E8B808F911F18084D086313D8C67/I5H7TZrtRKuA5q_Y2CChwGRDmCg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:f9:ca:ad:ae:96:81:17:83:de:0c:02:a5:10:a0:bb:a5:07:
         f7:fe:38:47:a1:b9:36:0e:be:1e:aa:d3:72:04:6c:e9:fa:eb:
         76:62:30:cc:65:a1:a2:e5:62:f7:2f:2f:0b:07:08:e1:47:67:
         fb:ef:c5:4b:d6:b4:57:1d:c2:2d:2b:fc:3c:07:91:c3:31:5f:
         3f:e4:4a:6b:99:fb:1b:0d:91:8b:98:12:ae:94:3d:91:7a:0f:
         3c:87:d4:eb:73:ea:7b:64:fe:b0:ef:3f:da:fe:72:75:34:3c:
         98:2c:8d:dd:bd:e7:22:fc:5f:62:73:a7:5d:0b:ac:2a:8e:55:
         86:96:da:bc:fd:15:9e:a6:41:82:8f:aa:83:d9:6f:76:0a:17:
         31:99:05:cc:53:21:03:18:e7:55:47:7d:f1:e6:43:17:fe:63:
         f7:82:ba:22:e3:40:51:dc:eb:78:11:40:a4:d9:3e:d2:ee:3d:
         82:60:fb:82:a5:a8:5b:29:2f:6d:a5:1e:fa:05:a7:5f:d1:05:
         64:d6:d6:a5:e4:48:9f:48:02:4d:be:ff:ed:4d:ea:f4:cc:16:
         7f:26:08:3f:de:c2:77:7c:33:75:23:bf:94:db:ef:6e:bd:d9:
         27:6c:f3:16:2b:01:82:c5:9b:dc:96:a9:c3:65:24:ea:a1:fa:
         f0:80:19:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:20 2026 by rpki-client