Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft
File:                     TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json)
Hash identifier:          L7r4j/4e0EUWK6oxCHBglMmKjAU2jP5q0R1qM5PtO2c=
Subject key identifier:   F1:B7:CC:25:12:6C:A2:87:57:AA:08:9B:88:94:49:69:EB:52:4D:B5
Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90
Certificate issuer:       /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90
Certificate serial:       0134
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft
Manifest number:          0130
Signing time:             Fri 17 Jul 2026 06:45:58 +0000
Manifest this update:     Fri 17 Jul 2026 06:45:58 +0000
Manifest next update:     Fri 24 Jul 2026 06:45:58 +0000
Files and hashes:         1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: Ypa1HF3ec1IZlz5RHs1CXMjtvsW+TTbwtW+xgTFy8p0=)
                          2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: dVowzphy2uXgtzt1PiwbcwH9pWDhfnknLc0RqbSLyzs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl
                          rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:45:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 308 (0x134)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90
        Validity
            Not Before: Jul 17 06:45:58 2026 GMT
            Not After : Jul 24 06:45:58 2026 GMT
        Subject: CN=6a59cfa6-d3d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:32:87:67:f5:19:1b:1c:7c:69:9c:5b:88:ba:
                    fd:5b:e3:30:ab:df:0c:90:c0:6c:82:85:75:27:e4:
                    97:05:81:e7:b7:6b:93:d2:4e:5a:81:10:c7:ba:91:
                    89:72:37:d4:8a:39:16:db:c7:10:01:0d:82:46:84:
                    b1:77:67:fb:e3:06:2c:1e:34:21:97:c2:7b:d2:17:
                    77:72:82:54:ee:cf:2f:95:0c:ab:db:7f:fa:ae:06:
                    60:53:7e:9b:93:f4:24:3b:ba:bb:90:4d:f3:0b:16:
                    41:af:03:33:a6:3a:78:86:ea:e1:27:af:5c:79:bf:
                    57:0f:59:cd:20:9b:98:c0:8b:55:d4:75:18:04:22:
                    b8:ba:6e:f9:e3:9b:8e:cc:9c:7c:a4:b4:18:93:f2:
                    8f:1f:44:17:3c:ec:6d:6f:bd:0d:91:12:63:8c:9b:
                    04:19:d6:64:8a:98:5a:7d:8d:70:22:1c:9c:39:82:
                    be:57:b7:fb:52:ed:3c:35:18:71:8c:28:03:17:00:
                    9e:a7:29:0f:63:90:26:7b:ba:4e:c5:4e:d7:89:7b:
                    21:c8:21:59:12:f8:d8:1c:6c:a7:f2:28:59:2f:94:
                    00:45:4a:e6:27:ae:36:e5:f3:f0:d2:06:89:75:49:
                    de:e5:b0:27:ec:1b:34:c2:f8:bc:f7:46:13:77:f9:
                    e2:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:B7:CC:25:12:6C:A2:87:57:AA:08:9B:88:94:49:69:EB:52:4D:B5
            X509v3 Authority Key Identifier:
                keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:ed:96:69:1c:da:37:f3:57:0b:f0:4f:9a:1e:f2:c7:fc:d6:
         94:7d:50:c3:56:f8:9a:97:18:5b:30:24:f8:f1:83:3b:34:7c:
         eb:40:27:80:d5:08:60:e8:e4:da:ea:b0:9e:6e:59:7e:5e:e6:
         79:8c:29:19:65:42:a8:ac:29:34:bb:78:77:ab:21:5f:0f:6e:
         f3:a0:7f:92:ba:84:16:94:e3:e8:61:dc:62:95:9b:5d:af:ec:
         3d:53:a1:0a:7a:6e:75:82:39:34:89:38:2f:e5:9a:89:32:27:
         f0:4f:3a:c8:ad:4d:71:e1:ad:c4:b6:41:2a:32:bb:c1:33:f3:
         30:1a:8f:e1:16:7b:f8:fb:56:08:d6:14:68:e0:de:24:c9:40:
         d8:11:d9:02:c3:c9:c7:04:83:f1:6b:0f:ab:51:68:cf:de:67:
         55:bc:00:28:9c:e8:7d:d5:17:32:d8:13:c7:a0:83:2e:dd:47:
         6c:9a:04:15:d9:33:d9:8f:e3:f8:12:cf:63:fc:ae:39:bc:ba:
         c5:2e:0e:44:13:01:8f:c5:c4:a5:de:ba:58:32:44:83:de:91:
         c4:96:c1:4a:29:02:56:d4:85:1d:ac:6e:e5:b8:fd:51:d8:69:
         d6:b0:98:62:af:6a:15:e9:df:29:48:a5:8a:d8:aa:69:08:2a:
         b5:6f:9d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:34 2026 by rpki-client