Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
File:                     XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json)
Hash identifier:          zmYpBYxu7iRbCbh4H740J8IxjdtkQrFQHDCltah2ZKM=
Subject key identifier:   4E:DF:F2:ED:71:F4:8A:8E:81:F5:E8:15:0C:52:3C:8C:0F:F7:87:31
Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B
Certificate issuer:       /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B
Certificate serial:       05A0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
Manifest number:          0598
Signing time:             Fri 10 Jul 2026 23:39:32 +0000
Manifest this update:     Fri 10 Jul 2026 23:39:32 +0000
Manifest next update:     Fri 17 Jul 2026 23:39:32 +0000
Files and hashes:         1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: Yvhpyj5G8veNI/rXpU3tbqm/8PWypJfBza8RWVCyo7o=)
                          2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: CMK57h7d3VJ8Y5Z6L2ancbIus6PT121u0oU6HX7o5tQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl
                          rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 17 Jul 2026 20:33:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1440 (0x5a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B
        Validity
            Not Before: Jul 10 23:39:32 2026 GMT
            Not After : Jul 17 23:39:32 2026 GMT
        Subject: CN=6a5182b4-3bff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:49:83:3d:0f:1c:87:a7:a3:ab:22:24:42:91:
                    39:4e:f0:e6:e2:c0:9e:65:87:19:63:49:93:d1:15:
                    94:f0:85:c9:e0:ee:d0:57:6e:66:2b:2a:eb:ac:dd:
                    e1:4b:dd:5a:8b:7e:3e:b9:ba:3f:bc:ca:b2:71:06:
                    83:45:a8:a3:e4:52:81:f2:5d:42:a6:29:73:60:fb:
                    b2:f1:8d:7b:96:06:18:12:6e:cd:d6:1d:83:e9:25:
                    ac:64:a4:c9:3c:8e:d4:a1:cd:83:7a:ba:dc:a2:e8:
                    b4:fe:28:d0:e3:67:8b:0c:7f:f7:fa:75:24:9b:ba:
                    6c:00:a3:fb:77:81:4e:b5:3b:f8:ea:c7:1c:95:4c:
                    d7:58:41:c6:fd:47:9b:51:ef:d5:8b:2f:12:e5:45:
                    b7:b6:31:a9:66:44:40:7c:bc:cc:0d:ee:a5:c4:65:
                    73:cb:89:ce:bf:bc:cc:ba:af:ef:1d:70:fb:ac:91:
                    44:b7:8b:a9:6c:64:29:7a:89:75:39:05:ff:ae:9c:
                    c6:a9:a0:39:a1:ca:2e:35:3c:a6:b4:7f:87:0f:43:
                    2d:18:c6:f2:b0:f7:5e:b2:bd:19:11:55:7f:a8:ba:
                    d3:83:27:3b:b1:cc:c9:2e:bb:02:21:81:8a:83:0b:
                    43:07:3a:3f:63:df:7e:cb:16:51:a7:b4:91:16:cb:
                    1b:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:DF:F2:ED:71:F4:8A:8E:81:F5:E8:15:0C:52:3C:8C:0F:F7:87:31
            X509v3 Authority Key Identifier:
                keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:4a:3d:cb:c8:04:cf:3d:1e:0e:45:d3:d8:e1:af:ea:a7:b2:
         2a:3d:84:87:8f:db:3c:d5:7c:5d:53:6f:92:56:20:22:a3:19:
         ee:29:bb:1d:19:a3:5e:eb:bb:f6:c2:2c:51:75:c4:24:09:2f:
         3f:ef:7f:25:8b:93:8a:06:9a:cb:d1:80:c5:be:b8:6c:64:af:
         cb:58:10:39:56:94:7c:a1:64:ce:99:76:88:53:e5:2b:ed:f4:
         4c:e9:b6:4a:f8:11:c5:92:f9:cb:a8:be:3a:34:9c:15:88:a0:
         42:46:f7:12:e9:cd:f0:40:b9:ed:ae:65:43:be:86:be:34:f2:
         5e:1a:71:df:27:2e:b9:a1:2d:cf:8d:c2:43:3d:cb:4f:7f:ca:
         7d:1c:f6:78:5a:3d:5b:ef:88:c6:fe:13:77:b1:72:f7:b1:b8:
         78:61:52:00:ce:05:57:8a:56:96:47:df:19:66:42:37:98:13:
         11:03:d6:22:de:8a:a2:54:96:18:47:c9:dd:68:ba:e2:c8:dc:
         97:22:27:4c:c9:2d:85:fe:ec:28:a6:d3:b6:54:c1:70:d7:9d:
         dc:7e:98:ff:6e:5c:8d:a0:56:70:54:ed:b4:23:82:a1:b1:49:
         06:63:3b:de:ff:de:bb:b5:d6:d1:de:84:35:14:25:14:39:0e:
         f5:56:e9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 01:55:49 2026 by rpki-client