Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft
File:                     Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json)
Hash identifier:          /4sFqxyLBNsssvB7bF3pTpIulz9v4/Xo9XTFxDdwTsQ=
Subject key identifier:   22:F1:B3:76:EE:8E:75:EA:7C:0E:30:6A:52:2F:31:2F:F2:57:20:DD
Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36
Certificate issuer:       /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236
Certificate serial:       1254
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft
Manifest number:          124B
Signing time:             Sat 04 Jul 2026 17:08:50 +0000
Manifest this update:     Sat 04 Jul 2026 17:08:50 +0000
Manifest next update:     Sat 11 Jul 2026 17:08:50 +0000
Files and hashes:         1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: 9mTkysqYeeuzQSLI2chUxbDOLxzVKinKs01tvHVafic=)
                          2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: VX0mY2WD7ZljHbXizsuob/HBTfQ0LiFuSS4MaL/xmKE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl
                          rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 17:08:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4692 (0x1254)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236
        Validity
            Not Before: Jul  4 17:08:50 2026 GMT
            Not After : Jul 11 17:08:50 2026 GMT
        Subject: CN=6a493e22-3d71
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:f3:69:df:3f:de:94:dc:a1:10:0c:26:6b:98:
                    64:09:08:4b:8e:8b:ed:88:ac:fc:b0:11:1b:da:11:
                    de:e3:48:17:cd:4b:21:4b:8d:e0:cf:58:91:ce:c8:
                    d9:9d:fd:80:de:c7:77:fd:40:48:e9:f0:1d:80:2e:
                    e2:28:fa:20:54:3e:86:cf:96:18:6c:f1:13:61:ba:
                    29:46:16:58:78:04:f0:e3:c0:54:4f:72:a7:50:d3:
                    df:ad:1d:56:d9:30:95:b6:a7:0d:04:29:e6:d8:c1:
                    f7:ad:25:4f:57:a9:ce:95:8e:ca:30:c4:49:ee:6c:
                    42:7e:b8:6d:06:d9:1a:8b:0c:50:f2:42:2b:1d:54:
                    c5:29:52:72:e4:65:05:fd:ca:b1:88:15:1c:9e:28:
                    2b:00:9e:e2:96:2b:10:0d:de:0e:fc:d4:d6:67:8f:
                    2b:43:c2:e6:ed:2c:8b:25:f7:40:39:cc:ba:62:68:
                    01:9d:d5:02:a6:b4:82:30:57:9d:c3:48:04:f8:a7:
                    35:eb:7b:69:a7:32:60:d6:ea:48:e3:9a:98:f4:60:
                    1c:41:66:14:7e:30:3d:c9:4c:7a:b3:88:e4:ad:90:
                    29:4d:1d:ca:ca:e0:5a:ac:58:0d:cc:66:54:11:67:
                    c1:66:ac:ad:1b:20:c5:2f:3a:8a:9f:e7:7b:37:57:
                    c2:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:F1:B3:76:EE:8E:75:EA:7C:0E:30:6A:52:2F:31:2F:F2:57:20:DD
            X509v3 Authority Key Identifier:
                keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:3f:4b:f3:5d:80:8b:61:1a:9e:27:d9:48:79:31:97:bd:36:
         95:6d:73:a5:3d:a2:74:83:ff:8d:e8:3d:b1:b6:cf:5a:f6:82:
         54:ed:ce:b5:8c:3c:3b:06:f7:c3:af:c4:ba:ea:1c:df:44:97:
         30:f0:a9:83:b0:61:cb:1b:cf:50:20:ec:2e:62:ac:7f:b4:af:
         32:b3:e6:80:f8:a2:cf:12:f5:81:a9:62:8c:17:bf:fc:5b:62:
         b5:e6:67:aa:a7:cf:65:6c:92:c3:aa:99:ec:73:54:0d:72:56:
         e6:e2:be:2e:e4:5e:c8:ed:0c:f8:d6:c7:c0:24:e8:f7:cc:1c:
         68:e8:e0:f2:d8:17:63:13:f9:e3:de:6f:f4:d1:d2:47:af:86:
         ff:2b:05:d2:34:db:e9:83:cd:21:b3:22:94:9d:2d:e5:91:5e:
         b3:26:4a:f6:62:40:b3:cb:06:4f:fa:3b:3b:45:48:de:76:78:
         ca:2c:9b:23:2d:8e:1a:ea:90:bb:01:eb:52:dc:9d:fb:d3:2c:
         53:9a:d4:49:f7:43:45:ba:c7:f2:4b:fe:54:07:e1:6f:33:0e:
         10:5d:ce:b9:14:a4:43:b6:88:c7:43:39:50:17:df:ea:f5:4e:
         58:ba:04:a1:68:9e:0a:82:42:18:be:19:b5:de:6d:21:50:8c:
         13:52:98:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:27 2026 by rpki-client