Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft
File:                     KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json)
Hash identifier:          71rsED9iJRi4KS4MpM0msq1kRJNmKsq1ThASD6tbEX8=
Subject key identifier:   41:51:68:31:77:B6:91:E6:75:3B:48:83:0B:62:03:4A:42:94:DF:BF
Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D
Certificate issuer:       /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D
Certificate serial:       1A8F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft
Manifest number:          1A5E
Signing time:             Thu 16 Jul 2026 16:22:53 +0000
Manifest this update:     Thu 16 Jul 2026 16:22:53 +0000
Manifest next update:     Thu 23 Jul 2026 16:22:53 +0000
Files and hashes:         1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: Hv9Q4F6beRA5AFtHxKlm6FF47Lvw2AuIQQbgTawgSdk=)
                          2: CAA99CAC6EA911F1979A4FB45FA30FBC.roa (hash: m7EUzzHnpucYKiHcNFB8qgSUahU1+/tp+vEsRlqPQUM=)
                          3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: 4taf7ltYE6M7p58XiP5zUTTzb89QrcQbwrr0YABbhPc=)
                          4: CB355B666EA911F1979A4FB45FA30FBC.roa (hash: MNd1FxOTtziaGFt9RjkG1a0nL0y01M/Sc5RidiPZ/uo=)
                          5: E7729178378211EF822BAA6EC4F9AE02.roa (hash: kWi4j9Wig93ekWVxphoEylI+bhEAyZFHwi2cC9HjPZU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl
                          rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:22:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6799 (0x1a8f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D
        Validity
            Not Before: Jul 16 16:22:53 2026 GMT
            Not After : Jul 23 16:22:53 2026 GMT
        Subject: CN=6a59055d-42c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b7:8f:5e:a7:4f:18:3f:e4:23:30:f9:8d:37:
                    ab:c9:2d:43:d6:16:96:ee:54:12:cc:97:7e:3e:da:
                    7b:96:ce:73:6b:76:7d:b9:eb:74:16:68:9f:aa:74:
                    7a:fd:f5:20:90:d0:3f:d6:45:fe:74:6f:bf:a0:88:
                    eb:ce:8c:b8:8f:17:07:58:2a:7b:b1:ba:e0:2b:35:
                    76:87:bb:ad:d0:31:58:0e:8a:a0:b2:c1:2b:24:29:
                    21:fd:98:71:fc:f4:83:36:39:22:d5:d5:d2:0f:2b:
                    96:9b:1f:1c:3c:77:fb:1b:6b:c9:cc:97:44:58:18:
                    52:72:55:c9:47:3d:25:59:36:ba:20:62:3b:82:6e:
                    1a:f7:a5:9e:54:08:1e:03:bd:68:9a:d5:68:22:85:
                    4f:dc:e9:6a:9b:54:4c:6e:6d:9f:dd:fd:79:f8:1b:
                    2e:f2:38:68:49:b8:d8:a3:c5:9d:28:01:6e:68:10:
                    ab:d0:45:fc:16:e0:83:66:c3:61:d4:f4:84:2f:91:
                    43:c3:ce:3f:e7:b1:27:df:c4:80:41:fd:f2:96:bd:
                    d4:be:c0:09:4d:c9:51:78:52:09:10:9c:ff:f1:12:
                    ae:48:29:f8:a4:a0:bb:b4:44:30:53:8c:f4:78:22:
                    75:a2:db:ba:70:79:fc:58:fd:bd:94:a1:41:9b:f4:
                    55:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:51:68:31:77:B6:91:E6:75:3B:48:83:0B:62:03:4A:42:94:DF:BF
            X509v3 Authority Key Identifier:
                keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:8b:ed:a9:ba:80:7a:44:d3:68:b3:bf:f8:e3:f2:91:0e:33:
         58:30:39:eb:ab:6a:ba:db:a1:13:64:b2:f1:88:f1:82:02:e4:
         87:2b:26:70:d9:f7:70:52:35:51:09:c4:1c:e6:00:4b:7f:87:
         c7:8e:f4:7c:b1:c5:82:ca:0d:c7:1e:60:cf:21:22:6a:1c:8d:
         19:b6:c6:7f:6e:5a:dc:43:e9:ba:f6:1e:8a:dd:57:17:97:29:
         fe:c4:99:d1:8f:a6:d7:55:3f:26:a3:5a:f6:b4:42:a8:d8:67:
         67:0a:96:33:69:c8:29:cc:ca:01:48:4f:17:d3:28:85:c6:d1:
         f0:14:fa:05:7d:af:56:8c:1d:22:35:b2:5e:e8:00:0a:ad:a8:
         d6:0a:28:be:56:ff:54:e1:8c:6b:b2:36:02:29:15:81:c1:2a:
         d5:bd:59:3d:21:dc:83:a2:c3:cd:b1:68:54:a5:bc:fa:c9:ed:
         78:2a:7d:74:78:60:03:9e:f0:24:34:b5:97:8b:f6:62:d4:6d:
         f0:92:a8:5a:8d:dc:36:01:4c:c8:09:e8:e3:7c:dc:f9:ff:0d:
         a5:c6:5c:96:b7:83:f2:24:76:da:8a:92:b1:09:6e:2d:d4:0d:
         10:28:fd:8d:17:eb:a8:ea:69:ff:32:bb:b9:45:81:ab:80:8a:
         0a:26:82:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:54 2026 by rpki-client