Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft
File:                     PdCVvno70d2CniomSfx-gafv40w.mft (raw, json)
Hash identifier:          sQQIWqiBGMFNTmDM+ySJnYavyXmjdxqPhX+p3itXZhs=
Subject key identifier:   28:63:73:A1:42:58:FE:E8:4F:F3:19:B3:A4:59:59:3A:00:BB:40:45
Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C
Certificate issuer:       /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C
Certificate serial:       012D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft
Manifest number:          0129
Signing time:             Fri 17 Jul 2026 06:51:10 +0000
Manifest this update:     Fri 17 Jul 2026 06:51:10 +0000
Manifest next update:     Fri 24 Jul 2026 06:51:10 +0000
Files and hashes:         1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: 8mVOdFDSQsgeo6qGDjHehQt3nLEmKYioOqmI0lcq+sM=)
                          2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: WziZMnogtrt5ODR5BwAGdePYHn5IgubVnNvNashcDd8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl
                          rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:51:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 301 (0x12d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C
        Validity
            Not Before: Jul 17 06:51:10 2026 GMT
            Not After : Jul 24 06:51:10 2026 GMT
        Subject: CN=6a59d0de-7b4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:7b:85:c3:fb:fa:87:d9:b7:d6:8c:67:7d:50:
                    3b:9c:48:ef:e0:51:c5:bd:c2:48:e6:a8:e8:d8:07:
                    35:84:32:b1:96:a0:f5:8c:d9:01:05:d7:2f:5f:fb:
                    58:45:f5:79:dd:b2:71:fc:f0:4b:10:b6:fd:44:5a:
                    c1:db:8e:a1:43:ce:32:6e:89:4b:5b:6e:08:a8:18:
                    48:8d:a8:ba:f9:f1:f4:53:48:e6:97:06:37:44:83:
                    f7:90:a4:6a:07:fd:7d:f1:47:d8:1a:46:4b:9d:5d:
                    1b:0e:0f:73:8c:ed:70:7b:84:1b:03:13:d1:50:ab:
                    28:ca:ad:44:3a:fd:5a:a2:44:39:86:4d:50:b5:67:
                    3b:aa:8d:44:62:20:d2:9c:82:23:b4:1d:82:fa:0e:
                    dd:d2:cb:0e:93:a8:23:dd:7a:2a:59:71:84:02:af:
                    98:7e:28:d1:a4:c2:57:92:2b:54:c3:4e:cc:e1:18:
                    21:88:7b:e1:03:d8:cd:00:d7:9e:87:cd:42:0d:28:
                    c5:15:53:b9:89:80:26:ee:06:cd:94:71:b7:db:d9:
                    ba:04:c0:2f:7f:90:94:4a:83:07:0d:60:32:8f:80:
                    d5:a8:1a:21:c0:01:e4:bb:65:3a:a8:2e:5e:7d:36:
                    0b:b7:3b:8e:09:52:6d:22:8b:61:6c:f4:95:28:21:
                    10:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:63:73:A1:42:58:FE:E8:4F:F3:19:B3:A4:59:59:3A:00:BB:40:45
            X509v3 Authority Key Identifier:
                keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:79:b4:e4:d0:e2:ad:e0:32:c2:29:15:8d:a0:dd:d3:58:8d:
         53:b2:31:48:53:ef:c9:7c:f5:d5:7c:a6:8c:f8:a5:ec:55:d7:
         18:cd:cd:80:75:ca:0c:a1:d0:1d:2f:97:ed:c6:79:ac:9e:fd:
         d3:9c:52:d1:0d:9d:cf:e5:fb:bd:6c:fa:fa:0a:10:b9:75:a9:
         0a:92:79:16:1a:67:15:f5:a1:50:5c:9c:63:b6:42:54:3d:89:
         3b:61:66:f4:63:9e:a9:fd:85:41:7d:2e:97:78:cc:84:78:03:
         a1:d9:41:63:6a:87:f5:8d:2a:ab:de:d4:80:c9:3f:34:36:91:
         7b:bc:60:48:da:12:bb:ef:ff:7d:8b:b2:d4:dc:82:4e:91:3b:
         11:9a:bc:c9:e5:c3:4f:0f:d2:b0:b7:a9:e8:4f:d1:9a:90:6d:
         83:6c:1c:be:60:42:ea:4a:ae:0e:49:4b:18:20:70:76:71:90:
         85:94:45:ae:62:8b:b2:cd:61:20:3f:27:23:af:0f:7f:fb:b8:
         6f:2e:6b:99:b3:cc:94:10:c1:da:fe:16:69:eb:38:59:b7:28:
         e1:0d:43:12:d0:ad:a9:15:2c:aa:d6:0b:ef:44:e6:29:c4:4b:
         2d:62:52:92:c1:f1:5a:f8:af:25:39:93:b6:68:ca:64:e2:d2:
         68:a2:65:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:26:43 2026 by rpki-client