Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
File:                     tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json)
Hash identifier:          yixZtAiBGwXiGWnYn+C6QyKGmpiWLUQrHV1EQmg4/Kw=
Subject key identifier:   1F:96:BA:0A:A1:E6:07:AB:CA:2F:4F:99:21:A0:5E:CC:3D:32:5E:F1
Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A
Certificate issuer:       /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A
Certificate serial:       029C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
Manifest number:          027F
Signing time:             Fri 17 Jul 2026 02:57:41 +0000
Manifest this update:     Fri 17 Jul 2026 02:57:41 +0000
Manifest next update:     Fri 24 Jul 2026 02:57:41 +0000
Files and hashes:         1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: 177CGwaI4FWmUJ6PqtSQGu0KZ/lghlU9cLotememBYg=)
                          2: B4B581DEDFDB11F0B149F2E3536F56BC.roa (hash: BDN3eWU1QOvpwhp4B8qHZfh25EaapwZh0B/UqPtIRS4=)
                          3: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: WJy0DDE3R4DJLfi+G/eV3lsb3PxP1zjDf/s8mlf+RmM=)
                          4: 42D4386CDFDB11F0A18E0FE3536F56BC.roa (hash: +FOKSn3UMqNBdCkwTnN5e6gZKaXTHMKWX9i32crYuLc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl
                          rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 02:57:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 668 (0x29c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A
        Validity
            Not Before: Jul 17 02:57:41 2026 GMT
            Not After : Jul 24 02:57:41 2026 GMT
        Subject: CN=6a599a25-7977
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:42:e9:e8:fa:62:1b:81:6e:1b:fc:d2:32:ee:
                    3c:dc:61:f6:27:20:fb:49:5c:14:1c:91:e4:a7:2a:
                    7f:51:73:e5:49:b3:19:8c:b8:c1:c2:b2:d8:6f:59:
                    d0:40:ed:b5:8c:c5:b9:83:98:d1:02:26:12:14:4f:
                    fa:d2:cf:39:bf:24:fa:2d:6b:59:33:8c:69:9d:72:
                    8d:71:ae:93:bc:4b:50:01:f3:eb:6e:90:72:de:ac:
                    68:db:7b:13:78:2c:fb:d4:ca:47:20:74:9b:a7:3c:
                    f2:a0:41:eb:d7:3c:8b:f1:42:29:0d:23:f1:80:13:
                    bf:51:31:a3:2d:8e:b5:a6:f4:7a:13:3d:5a:d1:a0:
                    78:6f:27:87:bb:ec:35:03:d1:f6:54:9c:d9:9c:6b:
                    cc:3f:34:74:06:5c:1e:2c:2c:dc:c3:63:e0:f0:44:
                    61:33:9f:d0:02:62:01:e2:f2:ee:10:fe:11:ce:1a:
                    1d:24:bd:2a:29:74:44:dc:c1:3e:7b:8e:ef:2d:6c:
                    3d:df:42:77:22:36:2c:d5:64:73:ef:71:10:ee:35:
                    66:18:7e:bc:43:f4:d5:9e:fb:13:40:b2:ea:8d:c3:
                    66:da:8c:bd:13:42:f4:05:8f:7f:bd:5c:ad:0e:3c:
                    bd:64:f0:62:32:c5:51:4b:48:05:2a:13:eb:d5:9d:
                    5b:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:96:BA:0A:A1:E6:07:AB:CA:2F:4F:99:21:A0:5E:CC:3D:32:5E:F1
            X509v3 Authority Key Identifier:
                keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:1b:ed:77:c4:d8:16:c6:66:21:5d:fa:5a:0b:34:0e:f7:49:
         88:c7:af:72:b2:b5:29:2c:bc:8e:5d:2f:49:ea:63:0b:f1:76:
         30:0b:fc:a8:7b:d9:bb:ca:24:ba:1a:7f:f5:ad:2f:1a:7a:46:
         e5:a7:d5:92:d4:a0:65:90:19:b1:60:cd:5f:2c:00:59:0e:14:
         a9:3e:2a:97:50:12:c9:0b:7d:e7:11:21:ec:42:9e:71:d3:41:
         d8:e5:6e:de:e4:19:bd:a0:70:1b:f7:ca:f1:49:17:fc:45:28:
         e9:8d:33:48:dc:29:c9:c5:36:0b:56:e0:ed:d1:db:a6:51:ce:
         52:54:9b:05:dd:5d:39:5d:d7:d1:35:19:c2:4e:98:c0:ac:38:
         3b:f8:58:ff:d8:25:fb:8d:98:b5:e0:1c:13:a5:33:54:39:7d:
         ad:11:a0:7b:51:4e:8c:60:c6:7d:08:69:9b:4a:96:18:83:6a:
         94:e3:a3:31:df:fe:4a:8a:3f:4a:c2:6e:c8:00:d5:bb:e7:5a:
         67:5e:90:70:0c:26:e3:c4:08:fb:30:92:55:3d:fc:8d:f2:2b:
         63:e1:2a:ff:19:25:52:af:6e:79:72:91:71:a1:c6:96:0e:9d:
         28:9d:31:e2:71:89:91:22:30:37:de:c5:b9:fc:71:59:33:35:
         dc:36:3b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:23:46 2026 by rpki-client