Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
File:                     0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json)
Hash identifier:          /nQ1w7QvIBSRwbCtp1wpJBBgrGT9clhe9HVQlQuE23Y=
Subject key identifier:   C5:60:85:06:88:A1:C2:EC:8B:46:02:D7:AD:9B:E4:97:71:66:FE:C9
Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30
Certificate issuer:       /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230
Certificate serial:       0BF9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
Manifest number:          0BE2
Signing time:             Sat 04 Jul 2026 19:04:56 +0000
Manifest this update:     Sat 04 Jul 2026 19:04:55 +0000
Manifest next update:     Sat 11 Jul 2026 19:04:55 +0000
Files and hashes:         1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: cpgPM09FXctfCbhaYH0AmQuLeWdnRRWNc/4Zv9sp5Rs=)
                          2: 5F47B232DF0711F0899AA5EF5C6F56BC.roa (hash: RljGAjjwZ/pe6/m6sE6jioJluQgFaLFt64ScvocrVSM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl
                          rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 19:04:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3065 (0xbf9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230
        Validity
            Not Before: Jul  4 19:04:55 2026 GMT
            Not After : Jul 11 19:04:55 2026 GMT
        Subject: CN=6a495958-87d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:ae:cf:d3:f9:ec:ce:5c:17:03:f9:36:12:07:
                    63:7d:c6:fd:61:eb:28:43:6a:41:4f:91:d8:c5:09:
                    d0:40:c4:ff:7c:94:22:27:27:f3:23:df:20:c7:4f:
                    16:04:56:e8:c5:e8:88:7e:02:01:29:99:88:98:23:
                    d3:c2:b5:7d:16:86:36:08:39:aa:a4:ef:14:aa:65:
                    72:bb:0a:92:d6:12:6d:62:5c:93:14:8d:61:ea:45:
                    c7:17:94:0a:af:e9:2f:d4:c2:f6:61:15:61:33:de:
                    d0:9f:0b:6b:66:5b:89:a2:88:28:d7:fe:d0:d3:5b:
                    bb:9c:aa:f5:1a:38:c3:40:af:da:6d:c6:3d:50:95:
                    69:f4:96:1c:2c:af:fd:ba:cf:d7:c1:74:65:fa:47:
                    68:b6:f3:9f:61:50:d9:de:51:d7:26:be:75:e8:27:
                    d3:dd:75:c5:88:21:f0:b2:20:c2:d7:ae:fe:be:86:
                    95:1b:8c:c9:7e:bf:85:11:b1:87:c1:39:3d:5b:30:
                    a4:54:44:28:1a:5c:1e:92:57:a3:78:8f:88:05:74:
                    ac:91:d4:72:33:0d:30:45:e9:7d:61:c7:58:3e:9e:
                    ee:85:ec:85:3d:93:c9:9d:bf:6a:4a:1d:8c:2a:ca:
                    aa:e8:96:3d:8b:f8:60:e1:3d:58:77:e6:87:49:13:
                    c4:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:60:85:06:88:A1:C2:EC:8B:46:02:D7:AD:9B:E4:97:71:66:FE:C9
            X509v3 Authority Key Identifier:
                keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:10:98:bf:8e:c1:f0:9d:76:97:f6:a8:9a:a3:bc:62:15:1a:
         80:77:e3:97:38:39:42:20:72:9a:bf:f5:ae:33:f2:d8:b2:36:
         18:4f:15:d2:ef:b5:13:3f:d7:4f:99:67:84:bb:e6:9b:bc:5e:
         2e:be:29:8a:71:8a:48:fd:82:72:89:85:ef:09:16:93:e9:bb:
         69:ca:a3:f8:56:ea:90:04:fb:a4:a9:a0:74:3a:51:2d:e6:18:
         30:2c:78:65:b2:c8:00:89:bc:20:46:9c:a8:af:9a:3f:2c:ba:
         c5:69:9d:48:47:28:13:68:0d:5f:f0:25:92:15:87:72:a0:36:
         05:93:55:ff:4a:9c:85:a9:25:4e:49:23:cd:a4:76:22:9e:c6:
         63:33:0d:9d:95:87:9d:ed:0a:ba:63:46:91:0c:1a:92:8e:9e:
         aa:39:a6:48:a0:8b:cc:b8:ba:9a:6f:29:7c:a4:8d:46:a3:f5:
         8b:66:ed:50:6b:f7:ba:0c:53:02:2d:49:4f:7b:45:44:7c:f6:
         2c:74:1b:a0:50:6e:5c:ea:54:9b:89:88:3a:58:66:f4:3e:70:
         05:18:22:0c:b2:0d:85:45:d9:0c:62:a2:61:cd:cf:dc:bf:70:
         35:d6:6c:14:82:e3:bf:23:dc:25:27:48:ee:92:17:f9:d8:79:
         2b:fb:7a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:54:05 2026 by rpki-client