Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft
File:                     Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json)
Hash identifier:          K/VPQlG0aNxvAf0o05kY3AfJu5OFYZn8dntEcfoJ12s=
Subject key identifier:   3A:D3:60:F5:00:EC:CB:7E:9A:A3:ED:6F:03:AA:BD:53:81:6B:A8:A0
Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9
Certificate issuer:       /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9
Certificate serial:       0133
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft
Manifest number:          012D
Signing time:             Fri 17 Jul 2026 06:51:08 +0000
Manifest this update:     Fri 17 Jul 2026 06:51:07 +0000
Manifest next update:     Fri 24 Jul 2026 06:51:07 +0000
Files and hashes:         1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: JGVq0ssQrrt7nxxzC7TjQ2Kti//0VSilKLGN9JEv/8U=)
                          2: E5FC085A843011F0971BDC44C4F9AE02.roa (hash: dm3BcPGPdQuO5Idson2cH8Me4yvZsLSNX+U6zphRieA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl
                          rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:51:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 307 (0x133)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9
        Validity
            Not Before: Jul 17 06:51:07 2026 GMT
            Not After : Jul 24 06:51:07 2026 GMT
        Subject: CN=6a59d0dc-a131
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:d6:1f:f5:8c:6a:c2:b9:0a:7d:75:b2:5b:61:
                    9b:2e:25:1f:7e:d4:9e:ad:ed:e5:5d:4d:ff:01:2a:
                    db:2d:0b:17:1c:11:91:7c:ac:56:a0:c0:85:7c:d2:
                    b1:51:dd:cb:30:0b:54:1b:1d:72:d4:3c:3d:bb:51:
                    6a:8f:d4:dc:45:34:88:9b:ea:d1:89:8f:f1:f6:20:
                    64:c5:f5:26:89:43:0f:c1:88:82:78:74:c5:d5:78:
                    28:75:18:88:2b:29:cc:33:3d:64:d7:f7:81:a4:45:
                    45:b8:34:4f:5d:12:fe:27:2f:c5:37:8c:3b:4b:ac:
                    84:a7:9c:32:5e:5a:1d:61:2b:0d:61:4b:19:a3:71:
                    f8:9a:07:e0:72:f5:cb:c9:b9:ec:44:95:2f:ab:68:
                    dc:e9:15:df:74:e8:14:13:d6:97:42:4e:15:aa:c9:
                    80:e8:f9:d6:64:3e:4e:30:70:98:d6:28:8c:a0:01:
                    1c:9e:4b:ec:2c:19:c1:c9:1e:0f:37:1f:28:f3:3f:
                    c5:84:5f:c4:6c:b9:34:a8:d5:ac:6c:7e:70:b9:f9:
                    7a:1a:e3:56:af:dc:74:86:20:f5:aa:7f:b6:d9:e9:
                    9d:e4:d9:34:bb:29:cb:d2:19:6a:13:41:b3:be:59:
                    ef:3a:dd:7a:39:21:06:11:f8:16:b6:66:bd:88:99:
                    6a:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:D3:60:F5:00:EC:CB:7E:9A:A3:ED:6F:03:AA:BD:53:81:6B:A8:A0
            X509v3 Authority Key Identifier:
                keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:e0:44:a8:b8:b0:c4:ef:37:63:c4:7f:56:e8:34:7a:48:a9:
         3d:f0:e3:d8:dd:ee:7a:95:19:08:bb:fd:d3:1e:ca:e3:1b:5d:
         c4:b8:b7:5d:96:50:ed:22:d6:a7:69:89:56:70:bd:cf:0d:d4:
         b0:7b:5a:cb:3d:b4:be:ce:f0:68:65:aa:80:bb:eb:27:b1:a7:
         89:f5:39:db:e1:99:c2:c0:bd:35:e7:87:3f:6e:82:57:e2:e5:
         99:81:5b:25:ae:40:68:d1:a1:b0:06:5d:0d:c6:0c:75:8e:e7:
         d8:9f:33:c8:48:db:3b:87:04:1b:db:d8:b4:2b:68:11:04:0e:
         a5:e1:27:82:84:79:22:b9:f7:ba:f3:11:e1:93:f3:b3:68:e8:
         44:2a:9c:e5:41:41:9d:20:a8:97:17:c4:51:16:25:0f:e7:6e:
         58:f6:12:0a:97:78:93:cd:eb:ba:6e:68:d1:63:87:77:33:21:
         b5:8b:1c:85:29:32:ba:3d:40:6f:71:b1:af:0a:76:45:e8:a6:
         c1:5d:fc:8d:ee:9a:df:4f:e4:02:39:dd:02:1a:83:1a:eb:ea:
         85:ef:9c:11:f8:c7:78:8c:01:fa:48:d1:6f:22:37:db:0a:20:
         3b:ad:88:d2:8d:f8:b4:91:88:67:67:11:c7:7d:ae:78:09:a6:
         9f:82:ca:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:35 2026 by rpki-client