Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft
File:                     ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json)
Hash identifier:          UxH4/jqLAujw5gd5b0vrSXsqrxVxrx/5KCyKJ+9fVT0=
Subject key identifier:   D6:F8:33:81:68:40:C9:38:0C:31:7B:44:5C:54:0F:7D:4C:3F:6A:33
Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88
Certificate issuer:       /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688
Certificate serial:       3578
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft
Manifest number:          3569
Signing time:             Sat 04 Jul 2026 14:51:11 +0000
Manifest this update:     Sat 04 Jul 2026 14:51:10 +0000
Manifest next update:     Sat 11 Jul 2026 14:51:10 +0000
Files and hashes:         1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: OeTpAg89jNKC1uCcZz7T+GXfKL0AjbTrkjUSxSqfLrA=)
                          2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: JsmcN/iHNKGrr5+UdOJwBNNsYsjaqRo1Qt07Gdc3xmM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl
                          rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 14:51:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13688 (0x3578)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688
        Validity
            Not Before: Jul  4 14:51:10 2026 GMT
            Not After : Jul 11 14:51:10 2026 GMT
        Subject: CN=6a491dde-b9c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:57:d4:30:e7:fb:0f:f3:2c:62:c1:40:94:24:
                    80:a5:43:21:72:ae:b6:53:2c:c2:1e:46:96:64:79:
                    ef:a3:b9:c7:94:56:d9:d9:b4:ce:9e:90:71:77:24:
                    84:dd:65:46:72:30:dc:26:ac:c5:80:8a:8a:b0:7f:
                    d7:93:9a:60:c7:1b:0a:73:a1:3f:54:12:1b:66:7a:
                    cc:bd:3f:ee:bd:a6:4c:4e:d5:4b:59:b7:a6:ae:39:
                    ff:fc:a3:f9:f0:63:37:33:38:96:27:53:4f:74:f9:
                    73:f6:9c:10:aa:9d:42:e6:ed:34:94:9d:1e:3b:20:
                    50:88:a8:ac:01:3e:46:16:ca:63:3c:e9:95:96:ac:
                    dd:9b:54:2b:4d:29:32:d3:17:17:3b:c2:77:2e:6f:
                    21:55:b9:63:49:eb:60:60:49:22:52:35:c6:24:04:
                    29:67:6e:07:58:2d:ee:79:c6:59:f6:9d:4a:1c:62:
                    9a:f7:00:17:e8:bb:2a:b4:a8:47:96:ed:3f:f0:96:
                    d8:80:33:09:2c:1f:c2:3a:73:3c:b7:00:87:aa:bd:
                    78:d3:73:e9:45:bc:d4:77:4a:30:eb:05:c3:c8:c5:
                    5d:31:87:e7:b7:4c:00:b3:41:34:9b:8b:01:b5:76:
                    9f:9b:ce:d1:ff:cf:59:07:fd:43:2b:70:9c:97:dd:
                    9c:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:F8:33:81:68:40:C9:38:0C:31:7B:44:5C:54:0F:7D:4C:3F:6A:33
            X509v3 Authority Key Identifier:
                keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:7d:26:29:48:f7:2a:0c:63:e2:3e:8d:4a:d7:e8:07:ab:aa:
         25:a6:f0:6c:72:07:0f:11:60:97:08:b3:be:0f:b0:b2:1c:d6:
         38:62:64:90:5f:b9:04:5d:d5:d7:4a:87:06:47:f0:ce:49:31:
         33:20:3d:fc:06:11:4c:a8:03:ff:61:b6:f7:99:06:58:65:9e:
         c8:a2:9f:64:51:a5:4b:58:3d:02:24:fd:41:2b:06:e0:0c:a3:
         25:ba:a9:13:2c:8f:66:2f:da:24:bd:8b:e5:b3:8e:e0:39:3d:
         ab:21:e8:f0:f4:74:9e:24:da:c4:5c:a9:d5:5e:22:17:e0:36:
         a6:d6:c9:c7:5e:ec:e5:ad:da:29:ee:f7:a3:73:7c:b3:4a:29:
         16:c6:16:f2:16:9a:2c:7a:e8:7a:c2:f1:3b:e3:96:2a:2e:b2:
         0e:bb:11:e6:b1:00:52:67:80:2e:e7:c1:40:b3:44:74:c5:59:
         fd:0b:ac:07:ec:fb:51:0b:7c:61:1f:8f:21:54:b7:5f:ac:04:
         10:e8:da:35:bf:45:c5:ce:4a:02:cb:36:d3:43:fd:0f:d7:3e:
         76:fd:22:fd:bc:ae:e6:dd:72:c7:a5:44:23:5b:31:11:cb:a1:
         60:fb:c2:ac:68:b6:d9:8a:eb:98:4f:46:a9:dd:0a:b0:fa:8d:
         37:68:87:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:05 2026 by rpki-client