Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft
File:                     TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json)
Hash identifier:          QcAtycCY6Lt35eaYxOgjlgOskDyfWxudKhmPc6i5mWA=
Subject key identifier:   45:06:D9:5E:EF:6F:D5:16:95:22:0D:D0:96:99:36:EA:72:C3:14:FE
Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56
Certificate issuer:       /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956
Certificate serial:       059F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft
Manifest number:          0598
Signing time:             Thu 16 Jul 2026 23:42:54 +0000
Manifest this update:     Thu 16 Jul 2026 23:42:53 +0000
Manifest next update:     Thu 23 Jul 2026 23:42:53 +0000
Files and hashes:         1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: pPZ63cmg/nHMVzW9nxf65WrPQcg1r5DoucAXn3BJ3Xc=)
                          2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: nCKVMdvYXIdspAc77iuSnxMdgz1R5Tl8t85tUkNQu3I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl
                          rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 23:42:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1439 (0x59f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956
        Validity
            Not Before: Jul 16 23:42:53 2026 GMT
            Not After : Jul 23 23:42:53 2026 GMT
        Subject: CN=6a596c7e-0756
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:6b:7c:07:39:da:7d:17:03:c4:c4:4d:03:f0:
                    18:16:b5:4f:04:39:35:3c:75:c5:56:65:4e:42:d6:
                    41:95:f2:fe:af:17:f2:e9:26:68:41:93:85:f1:69:
                    b5:52:05:e6:63:c7:94:95:95:d9:4a:bd:07:ca:39:
                    88:e2:73:e4:64:d4:b6:6a:04:63:93:37:a0:bc:fe:
                    ba:23:02:cd:de:5f:98:52:b0:f0:67:d2:1b:8b:b6:
                    dd:92:67:2b:75:52:f9:c2:3d:dc:a3:54:55:89:46:
                    da:d2:ae:a1:a2:60:c7:13:82:4c:29:3e:23:e0:24:
                    dc:11:da:ef:a8:e5:93:a8:07:5a:16:8b:26:55:1c:
                    1a:2c:24:dc:b9:80:6d:9f:e5:11:a0:82:14:4c:d4:
                    90:d0:dc:90:fe:5d:3e:8c:78:ca:ce:a3:23:c7:fc:
                    1d:ec:c8:01:8f:ab:19:01:02:94:ec:1d:0f:ad:47:
                    58:83:f2:4f:bd:6b:a3:e7:5d:cc:c8:8c:dd:fe:cb:
                    5e:fe:23:48:61:e4:19:06:56:f0:d1:f5:04:58:20:
                    2d:e9:00:35:3c:7e:d5:cc:ce:51:f4:8f:11:5d:43:
                    2f:5e:09:9e:49:07:61:0d:21:e0:a4:27:bd:da:9b:
                    9d:04:f3:1c:c6:62:36:d4:aa:5e:6d:10:a8:8a:e7:
                    8a:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:06:D9:5E:EF:6F:D5:16:95:22:0D:D0:96:99:36:EA:72:C3:14:FE
            X509v3 Authority Key Identifier:
                keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:12:ce:4f:e0:0e:99:d8:64:68:56:86:4e:5a:bb:57:80:31:
         36:6c:2e:08:98:36:10:89:af:eb:d4:93:0a:cb:a5:89:43:9a:
         48:40:35:62:30:32:fd:1e:0b:94:5b:24:ea:6e:cc:f3:e3:ea:
         d8:de:99:3d:da:1e:1a:10:e1:48:14:a5:61:07:40:ab:ee:47:
         28:e3:49:ec:97:02:40:c9:2e:bd:e9:2d:42:42:98:7c:a5:9e:
         27:b5:e6:c3:47:fd:42:8e:4f:77:ba:84:29:3a:2f:80:f1:4d:
         cb:c6:cd:1b:5d:53:06:cd:24:ef:b5:42:60:50:08:11:f0:99:
         4e:ea:ee:56:20:cd:5b:52:e8:0b:76:01:6b:98:56:cb:30:23:
         78:e3:aa:94:4d:bf:4b:b0:3b:be:e9:8d:90:ce:f2:0d:eb:19:
         48:e2:f5:4c:ed:39:59:50:cd:75:20:8c:23:22:29:65:79:76:
         93:64:5f:a7:6c:ea:7d:0e:e3:15:19:60:e6:0b:54:e7:c0:93:
         48:cb:12:4b:85:a5:a2:66:09:95:25:b7:a4:0e:69:34:97:70:
         74:ea:a3:39:54:23:92:6e:3c:ff:1b:4e:72:4b:94:00:76:d7:
         84:de:ee:14:e0:45:3f:27:8d:86:da:d7:22:65:e3:92:e7:23:
         2d:7c:66:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:27:45 2026 by rpki-client