Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft
File:                     tkP-swMnQhSPOvnDU5M41VSTcig.mft (raw, json)
Hash identifier:          F1PnDN9qzfjQdTL82XC6A+O8ZnZPK1U1ewPFX2v1Ay0=
Subject key identifier:   B7:60:87:BC:59:2F:EF:DC:39:93:32:BC:34:59:B3:93:4D:07:F4:EF
Authority key identifier: B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28
Certificate issuer:       /CN=A91CD0DE/serialNumber=B643FEB3032742148F3AF9C3539338D554937228
Certificate serial:       8F
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft
Manifest number:          8D
Signing time:             Fri 17 Jul 2026 08:41:17 +0000
Manifest this update:     Fri 17 Jul 2026 08:41:16 +0000
Manifest next update:     Fri 24 Jul 2026 08:41:16 +0000
Files and hashes:         1: tkP-swMnQhSPOvnDU5M41VSTcig.crl (hash: 1AiMwVUb0ySXcUeirP9VwHbatSOXN7QQnWNV3GjRZCM=)
                          2: 341BBBECA99411F093BBAA15C4F9AE02.roa (hash: PpvqloufX06LkcG9zYWZ5Pcx+1uUm6NtfRlAU1EzgwM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl
                          rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:41:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 143 (0x8f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CD0DE, serialNumber=B643FEB3032742148F3AF9C3539338D554937228
        Validity
            Not Before: Jul 17 08:41:16 2026 GMT
            Not After : Jul 24 08:41:16 2026 GMT
        Subject: CN=6a59eaad-14ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:00:50:c8:38:ab:30:e6:96:24:51:86:f3:f6:
                    98:4b:74:37:5e:75:e5:40:ff:f2:a0:0a:22:20:91:
                    c4:d8:ae:6e:3e:32:19:89:73:e4:24:03:d4:09:2e:
                    29:88:5a:5d:0a:7c:45:c3:df:5a:af:25:81:e9:6b:
                    be:79:ac:1e:8e:16:d9:be:89:69:85:29:0d:3f:eb:
                    55:6b:da:a8:b5:67:48:ba:e0:ea:31:a8:af:e4:45:
                    68:53:f4:8a:46:41:84:00:7c:9e:9b:b1:6c:d3:ad:
                    c6:02:ad:6b:80:52:b8:d5:03:bd:f6:54:3e:34:e9:
                    8a:f1:93:74:48:4a:74:91:ff:b2:4a:4c:b5:6b:4e:
                    73:4e:2e:1a:de:de:e3:49:38:07:f2:7b:5b:bd:0d:
                    81:49:57:dd:83:94:bd:7c:5b:33:15:a8:df:23:d9:
                    de:8c:e9:a8:47:62:fa:97:ba:a0:d5:8a:e1:0d:6c:
                    9b:6b:a8:24:c9:0b:2a:ef:6c:31:d4:47:08:30:ae:
                    81:ae:cd:76:a8:f4:05:5f:7c:73:af:67:58:81:f9:
                    19:60:b6:06:7e:59:73:5a:4e:a3:e5:a9:3d:4c:92:
                    5e:51:11:12:5a:31:bb:93:e4:25:cb:12:74:5e:16:
                    8e:39:2a:c1:39:7e:a2:f8:10:d9:34:2f:e4:a1:cf:
                    e2:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:60:87:BC:59:2F:EF:DC:39:93:32:BC:34:59:B3:93:4D:07:F4:EF
            X509v3 Authority Key Identifier:
                keyid:B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         38:30:37:2d:db:1c:26:0c:da:03:39:ce:c5:b2:92:5c:b5:3d:
         e5:0b:4c:2c:c9:35:c1:a7:f2:17:05:03:5b:b8:d8:a1:27:98:
         1c:95:2a:ba:ba:14:8a:84:91:ff:ba:58:01:56:c0:24:e9:ea:
         d7:c7:2a:48:54:4f:89:6f:ae:fc:27:1b:81:0b:cc:3b:b4:d3:
         ae:88:46:a4:0e:a2:07:7b:01:b8:2d:d7:cb:47:a0:05:b9:4f:
         8f:51:8f:d5:67:01:ee:38:a9:d4:0a:39:00:16:fb:a7:52:7f:
         2b:a1:06:42:b5:89:75:2e:c6:17:81:2e:e0:78:09:f2:50:28:
         71:e5:f8:c9:87:22:6c:27:33:2a:a2:b3:9f:a1:11:39:6e:be:
         6d:b6:e4:93:b8:2b:43:1e:f2:63:d8:86:51:b3:64:27:c8:8c:
         a4:52:31:d1:1c:9a:a6:b7:50:1a:0d:65:17:d9:e2:2f:78:bb:
         88:56:da:71:a7:9d:1d:30:5f:1a:c6:83:ae:07:c5:ae:a1:1d:
         ab:da:63:a9:d5:dd:13:8e:64:5b:b6:f6:55:1a:c7:a0:c2:ec:
         70:07:e7:ff:e2:e0:ca:f9:80:77:98:db:4c:6c:af:76:07:9c:
         89:d5:59:2c:f8:05:42:10:c4:da:56:b3:38:05:78:6a:07:79:
         01:af:f9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:06 2026 by rpki-client