Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft
File:                     0ewZe9sNlRk40e71SWoRrMoCiO8.mft (raw, json)
Hash identifier:          fn2nvDzdJLVJ5hqbIVxHpwnyUJsrARY4YhBxPFmpHjA=
Subject key identifier:   88:43:94:25:27:8B:FC:5A:CA:F5:B1:25:43:74:3B:8B:17:FD:26:C8
Authority key identifier: D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF
Certificate issuer:       /CN=A919FDC0/serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF
Certificate serial:       B9
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft
Manifest number:          B7
Signing time:             Fri 17 Jul 2026 08:16:30 +0000
Manifest this update:     Fri 17 Jul 2026 08:16:30 +0000
Manifest next update:     Fri 24 Jul 2026 08:16:30 +0000
Files and hashes:         1: 0ewZe9sNlRk40e71SWoRrMoCiO8.crl (hash: fS52wQ8NETCCMBGZsxKHmHyVKHMU3gU5O9aUsXsIfvA=)
                          2: ACFE803469E911F0A7D42F68C4F9AE02.roa (hash: +DP6MilESaiHYhOyYqOuZcz5QFs57aj6iwKoYbBinoQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl
                          rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:16:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 185 (0xb9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919FDC0, serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF
        Validity
            Not Before: Jul 17 08:16:30 2026 GMT
            Not After : Jul 24 08:16:30 2026 GMT
        Subject: CN=6a59e4de-ac39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:53:f3:2e:3a:5d:8e:02:3e:ee:16:ee:a7:d2:
                    b2:42:b1:a1:16:ca:4c:d6:f3:fd:7f:9a:a1:2f:23:
                    0f:98:44:83:6d:a2:c2:63:a0:31:28:78:12:6b:13:
                    f1:2a:92:0e:a1:6d:25:45:1f:73:eb:75:14:2f:32:
                    40:43:d7:85:df:ab:75:d5:72:2d:4b:dd:b9:a9:90:
                    32:55:0d:d0:21:38:b5:ec:02:a1:ee:8d:f4:b5:9b:
                    73:4e:6c:f8:28:8b:a3:76:95:64:77:2e:88:d9:f5:
                    a2:d8:49:f0:4c:58:64:b3:95:fc:9b:96:0d:b9:03:
                    43:0f:f8:12:c3:8f:cb:27:aa:9e:9a:e3:4b:3f:84:
                    13:f7:84:d6:2e:0b:de:f7:63:d2:11:95:2a:66:89:
                    62:77:95:5d:c5:e6:d9:a2:a9:0c:01:6e:58:9b:5c:
                    57:14:4f:e9:44:41:fe:fe:f3:f4:0b:6c:0f:4d:ed:
                    3e:2b:c5:b6:fd:e7:c0:c4:1c:58:1d:37:d6:40:1f:
                    37:bb:28:23:40:f7:2e:77:fa:46:bb:33:66:c2:ed:
                    18:48:1b:e9:1c:f9:81:e8:0b:cd:16:d9:c4:83:9b:
                    c2:c0:3a:a3:f1:09:7c:e3:71:90:c3:bf:75:89:20:
                    0c:f0:c1:a3:3a:95:57:d1:87:88:da:74:cb:2d:b8:
                    31:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:43:94:25:27:8B:FC:5A:CA:F5:B1:25:43:74:3B:8B:17:FD:26:C8
            X509v3 Authority Key Identifier:
                keyid:D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:63:1f:0b:a4:b9:4b:f9:97:f4:db:db:2f:3c:31:e8:a3:00:
         3e:65:f7:82:34:f2:33:eb:20:57:c0:b0:9b:76:2b:c6:d0:04:
         3f:c4:3a:b9:ee:96:c2:2a:2e:ad:f1:5d:73:43:d8:5e:f1:96:
         e5:3c:03:17:4a:be:de:2b:e0:d9:d3:13:02:d8:56:43:34:a0:
         40:f2:96:4f:c3:52:29:a5:53:28:fa:aa:a9:13:e5:b3:5e:33:
         b5:8c:76:85:54:b5:15:26:53:d6:6c:40:ca:53:f1:8c:63:6c:
         03:4d:58:2f:40:b9:8e:e4:0a:37:f3:a1:e6:8e:a8:ac:91:73:
         05:75:e6:cb:99:d2:14:ee:a9:52:93:ce:c6:d1:f9:87:25:d9:
         81:82:75:b8:0d:09:a7:c3:84:3d:8e:d2:2d:96:ce:da:6e:24:
         2d:c9:17:5c:bb:cb:05:5e:f1:7b:06:b2:c7:c8:cc:47:a4:cb:
         1d:ac:6e:28:5d:b5:63:15:09:a8:ad:6b:f5:b6:27:0d:b2:67:
         33:19:66:2a:43:d4:be:b0:e8:68:09:c2:bf:be:35:4f:ec:4a:
         2b:40:69:5e:66:39:42:10:1d:be:ee:88:0e:1d:1f:6c:89:74:
         f7:eb:91:46:fd:63:f9:c1:09:2a:89:e1:ce:a7:0e:89:90:97:
         c4:85:e9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:30 2026 by rpki-client