Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
File:                     z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json)
Hash identifier:          pa4KCko8IUq1MsLxL5O2hcfWTKklkQnQA30ibJvzWOE=
Subject key identifier:   F3:92:28:7C:74:66:11:C6:C0:D9:4A:3B:F9:8F:5B:5A:8F:81:3D:29
Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9
Certificate issuer:       /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9
Certificate serial:       0168
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
Manifest number:          015F
Signing time:             Fri 17 Jul 2026 06:06:06 +0000
Manifest this update:     Fri 17 Jul 2026 06:06:05 +0000
Manifest next update:     Fri 24 Jul 2026 06:06:05 +0000
Files and hashes:         1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: Gu/hSVSR2DlCsURK0UcYT/HBkhktjQ2UTJLQ7rEMbcQ=)
                          2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: cWJj/maUSSWmIwVQv3v+/nXUc2cIEZ3WxI91PpLYj30=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl
                          rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:06:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 360 (0x168)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9
        Validity
            Not Before: Jul 17 06:06:05 2026 GMT
            Not After : Jul 24 06:06:05 2026 GMT
        Subject: CN=6a59c64e-f346
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:ee:bc:f1:e9:2d:2b:67:d7:81:b8:f6:95:99:
                    5a:16:9e:13:df:79:37:0d:a2:ba:a8:1e:2e:4c:e9:
                    78:d2:22:df:1a:fa:9b:ef:78:2f:fb:ad:db:28:69:
                    e6:40:a1:64:d9:6e:a0:f2:69:2a:69:10:46:0f:5b:
                    67:aa:55:a2:85:06:e1:d2:03:48:68:32:85:91:68:
                    15:5c:0d:7d:67:dd:15:c2:e8:e2:4d:61:fc:1e:49:
                    14:95:c5:e1:2f:c8:22:0f:ce:09:b5:14:03:a8:4d:
                    88:5a:e4:31:c2:84:b9:20:16:8d:e0:09:aa:a3:16:
                    57:b2:52:3c:8f:f9:c1:4d:fe:76:e8:5f:f4:6e:2b:
                    b9:cf:4c:0a:34:39:bd:cd:99:64:57:f0:f6:a3:f1:
                    01:13:f7:12:1f:d1:6e:8d:26:a6:1a:05:30:69:59:
                    f2:23:c6:25:18:83:cb:f8:da:24:d2:a2:6b:14:b8:
                    b1:5f:44:e7:75:83:e7:40:2f:ad:d3:4f:f0:f0:54:
                    71:f5:0c:e5:c2:82:04:3b:3d:68:08:ef:f5:0d:e5:
                    f5:e1:1a:24:89:77:13:4d:fa:bc:ab:e0:e3:56:98:
                    cb:91:1a:64:7b:4d:fe:c1:21:5b:e4:45:a7:03:e2:
                    31:e8:fb:8f:09:57:37:46:0d:f7:b9:a4:1a:32:d5:
                    7c:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:92:28:7C:74:66:11:C6:C0:D9:4A:3B:F9:8F:5B:5A:8F:81:3D:29
            X509v3 Authority Key Identifier:
                keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:14:54:67:da:8a:17:81:ac:61:90:60:8c:c2:33:63:6f:cf:
         96:5f:63:c9:5b:3f:df:b8:2e:84:43:24:ab:b3:1f:f0:77:d6:
         c2:d2:91:3c:8d:bb:f9:ef:7c:1d:65:62:21:7f:4a:1b:ce:cc:
         56:6c:91:7a:f6:1a:3d:a0:1e:e8:85:11:4c:b5:69:a3:1d:26:
         d8:af:a4:6c:22:ba:76:51:b3:94:db:c1:1c:c0:31:fc:4d:da:
         48:04:d8:63:1f:ed:49:75:86:42:e7:e8:eb:8c:5e:60:d5:78:
         07:35:b2:a9:ba:55:46:ee:cc:56:e8:c6:40:ee:58:43:f8:3f:
         57:ce:da:0d:d5:f5:63:ee:6c:7a:cb:a0:ad:bf:02:a7:fd:49:
         46:65:79:4c:f5:9d:67:17:26:8d:7f:f2:0b:c4:9c:9e:13:03:
         57:6f:44:ef:3d:d2:74:0c:e6:17:5d:4a:95:0d:05:20:20:71:
         5c:47:cc:43:ec:73:98:36:d7:0a:c1:8f:10:9d:d9:e6:02:09:
         fb:61:6d:22:61:9f:30:eb:1d:e6:a2:c3:7d:c4:e1:18:bf:a7:
         d5:a4:2d:12:47:82:09:a9:f6:06:b6:6b:1e:69:8f:bf:b6:74:
         0c:6a:8a:7c:80:18:ab:30:f5:6d:b2:89:5a:f8:6a:85:21:6f:
         82:1e:0a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:11 2026 by rpki-client