Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft
File:                     L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json)
Hash identifier:          UTaCYTEB6+7xbuEdL4gwZpMkNKlCb8/tv3f6xA/PAG0=
Subject key identifier:   F2:6A:7C:CE:AA:0E:0D:BE:A6:2D:4E:75:44:FB:11:A0:2F:68:B8:52
Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5
Certificate issuer:       /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5
Certificate serial:       01C9
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft
Manifest number:          01C0
Signing time:             Fri 17 Jul 2026 04:54:07 +0000
Manifest this update:     Fri 17 Jul 2026 04:54:06 +0000
Manifest next update:     Fri 24 Jul 2026 04:54:06 +0000
Files and hashes:         1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: /lYOpzuM6e+luKGld3M8YcRfwdWIZ5ualyTc9ub+OT4=)
                          2: C659227E3D9611F1B3BD8648C4833773.roa (hash: URpwa68ICBHx7NH87HQVK1oNTdznNSwb1RkzR4QbR8U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl
                          rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:54:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 457 (0x1c9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5
        Validity
            Not Before: Jul 17 04:54:06 2026 GMT
            Not After : Jul 24 04:54:06 2026 GMT
        Subject: CN=6a59b56e-e6be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:22:77:4b:6f:1b:2a:11:fb:02:95:5e:2f:fc:
                    f4:3a:a4:96:e7:b6:0b:16:3f:35:8a:d2:bf:94:4f:
                    00:16:89:12:48:17:ed:a4:63:70:f8:27:0d:9c:af:
                    d8:96:d1:2b:ef:81:b0:33:08:20:0a:ee:91:fa:5c:
                    92:06:ee:ca:85:40:16:cd:82:10:f4:8d:e6:53:f4:
                    04:84:5f:bf:29:13:4a:09:32:75:25:54:f2:7a:a9:
                    6a:f7:7c:d5:9a:db:24:9a:d9:0e:f8:8f:e2:9c:0f:
                    3b:37:90:f4:1d:e3:a2:6b:91:48:7e:4a:58:d0:ab:
                    68:f5:41:2a:0c:4a:26:30:15:68:c9:b9:ea:46:1e:
                    84:05:63:ae:6d:75:a1:66:10:ea:d1:82:28:27:72:
                    46:68:9f:06:26:cb:bb:40:7e:df:5e:8a:c6:ac:f8:
                    9c:10:1b:8f:89:6a:24:19:ae:82:4e:4a:a7:d7:df:
                    ba:7e:fc:c4:19:fa:0c:56:60:25:11:e0:4a:66:b3:
                    6d:ad:de:39:c4:b1:5d:a2:ef:f0:81:71:84:9b:d4:
                    f8:39:10:56:62:35:ed:be:6b:5f:8b:ff:8f:24:17:
                    35:cf:6b:02:f4:54:a1:5d:00:dd:b5:a3:65:54:92:
                    84:62:b0:92:35:81:ad:4d:39:29:ff:5d:17:08:16:
                    b9:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:6A:7C:CE:AA:0E:0D:BE:A6:2D:4E:75:44:FB:11:A0:2F:68:B8:52
            X509v3 Authority Key Identifier:
                keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:6f:da:61:16:44:8f:69:b0:2a:05:e4:84:0e:4e:8d:43:40:
         74:b8:1a:26:bc:05:51:58:97:69:3a:0f:fe:fe:27:6c:91:01:
         ac:fe:d7:c9:94:29:af:d9:a4:9d:dd:87:b0:36:b9:95:aa:ac:
         b2:03:1c:73:d5:df:f9:2b:de:15:ba:4e:c0:1d:1e:af:0b:7c:
         6b:1e:78:2b:14:4b:f4:aa:a5:af:98:e3:d5:38:1d:22:5c:29:
         29:88:88:95:6b:29:fc:d3:1a:33:e0:90:4e:d5:e0:89:a7:0f:
         c4:20:f4:23:79:56:3e:74:e2:0b:e0:d5:4d:d7:d0:1e:84:bf:
         26:6f:4e:94:55:20:ed:60:22:0a:06:a1:f8:d5:b5:06:08:da:
         cf:c4:31:aa:1a:1e:f6:41:4d:17:52:45:cb:06:98:72:71:18:
         11:18:aa:23:1a:a5:66:78:76:42:14:85:1c:82:80:d9:c6:12:
         6b:47:e5:42:06:c8:f1:30:eb:2c:fe:08:2e:b1:17:dd:37:fe:
         6c:9c:1a:56:14:b2:04:f9:8b:1a:fe:17:01:6c:1d:ec:a1:13:
         a8:3e:80:c6:af:a5:09:dd:27:96:78:fe:98:b7:2e:4d:74:73:
         eb:e7:36:ce:85:45:ea:b0:cd:ba:da:bc:10:46:e3:81:20:b5:
         d2:64:31:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:31:30 2026 by rpki-client