Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
File:                     TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json)
Hash identifier:          Oacdl4V7Jqt4T3Do+mpxhXNc+KVv4baoo6IyRgONgHM=
Subject key identifier:   B4:EC:1C:0A:E8:69:36:F0:9B:F3:78:7B:0B:39:3A:28:79:DE:94:F7
Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D
Certificate issuer:       /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D
Certificate serial:       01A0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
Manifest number:          0195
Signing time:             Fri 17 Jul 2026 05:24:28 +0000
Manifest this update:     Fri 17 Jul 2026 05:24:27 +0000
Manifest next update:     Fri 24 Jul 2026 05:24:27 +0000
Files and hashes:         1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: HgiysKhwcKJMOVsTDk53pfj/wZwVrBeoUDZhJ/kdFrc=)
                          2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: bs1Xgw6z8UHVdG8cs/XzlMBqu7GicIxeKJC8ZxwnNXc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl
                          rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:24:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 416 (0x1a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D
        Validity
            Not Before: Jul 17 05:24:27 2026 GMT
            Not After : Jul 24 05:24:27 2026 GMT
        Subject: CN=6a59bc8b-baf2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:c7:ef:a2:5a:2f:16:6c:e7:c6:25:c5:f5:95:
                    b5:d0:85:10:65:0a:52:d2:93:29:30:4a:bd:9b:76:
                    2b:af:fd:52:20:25:4f:04:0a:94:6d:93:ab:c2:de:
                    fa:71:b5:ea:46:86:27:ad:2b:d3:77:73:99:d1:5e:
                    2b:37:58:91:b2:59:48:3f:49:24:84:1c:ed:97:5f:
                    59:8e:74:f4:9f:df:b5:93:69:67:1b:a4:3e:52:69:
                    e7:77:3a:2d:b7:d3:cd:56:22:07:3b:1c:38:c3:c0:
                    cb:5d:d0:58:09:90:3a:d3:1d:d8:68:5d:57:40:5c:
                    67:fe:9f:78:ad:e8:32:b4:92:35:67:90:6e:5f:04:
                    dd:ff:fe:46:91:9e:9f:db:92:42:9d:56:7d:a1:fc:
                    04:5b:ed:e9:b7:7f:de:07:4f:1d:44:ce:94:fc:ef:
                    cf:83:81:39:80:91:e1:45:71:15:f8:6a:60:91:f5:
                    81:00:52:bd:dd:54:21:b6:dc:fd:cf:51:6f:88:84:
                    41:b0:e6:96:ab:17:46:80:d8:e3:be:2b:63:3e:df:
                    f4:27:34:1b:46:82:3d:1f:21:e6:3f:69:c0:ed:98:
                    ee:d8:f8:98:ff:7f:16:d1:57:8d:b1:6f:79:98:ff:
                    8c:2d:49:21:c2:42:e4:88:10:b2:99:f9:99:7a:21:
                    59:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:EC:1C:0A:E8:69:36:F0:9B:F3:78:7B:0B:39:3A:28:79:DE:94:F7
            X509v3 Authority Key Identifier:
                keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:fe:4e:37:20:b2:89:98:2f:27:ee:f5:39:26:89:45:a3:e2:
         3e:1c:2a:48:c8:c8:2e:84:98:a4:6c:b7:a1:69:cf:75:d5:57:
         a0:9c:b1:f9:c6:f2:53:17:c7:51:48:2f:85:88:c5:5b:fb:62:
         7e:63:cd:12:34:c0:19:02:1e:18:6e:40:d3:11:36:ff:9e:31:
         3d:50:da:6e:4e:25:ea:ef:9b:c6:62:00:b5:17:4a:62:dd:8e:
         00:28:61:48:58:95:c5:3d:18:9d:7c:32:f5:f8:51:c6:c6:6a:
         d7:4f:e6:7e:50:d7:b0:bb:2a:47:de:b3:7c:09:b3:64:46:4a:
         fa:dc:25:ff:79:20:22:20:5e:03:4e:1c:88:80:86:19:7d:6d:
         ec:6d:d5:cf:3b:b0:c0:5a:e6:c1:fe:a2:ca:e2:e1:07:08:16:
         3c:87:3e:41:e0:4f:aa:8d:47:4d:80:d7:68:ce:d5:56:ec:1d:
         4e:9c:ae:f2:0a:79:12:50:a5:5d:d5:f8:de:f3:2c:ee:d7:2f:
         68:ad:6d:0d:f6:b2:a9:fc:cb:95:47:54:8d:12:28:cf:bd:c4:
         45:a3:94:d5:05:34:ff:d3:69:df:89:4e:4d:51:ab:33:85:33:
         bf:bf:1f:98:d9:21:31:05:9a:dd:55:99:4d:cb:ef:2b:71:96:
         89:3f:8b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:24 2026 by rpki-client