Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
File:                     oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json)
Hash identifier:          IiNtgFMR9EWX0SU2O9jIkiTWlFd0gCfnSDswjMZyskA=
Subject key identifier:   A2:47:01:CE:F1:57:B5:8A:F9:FE:FB:13:C4:17:4B:5F:82:BF:9E:80
Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8
Certificate issuer:       /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8
Certificate serial:       092D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
Manifest number:          091D
Signing time:             Thu 02 Jul 2026 20:28:17 +0000
Manifest this update:     Thu 02 Jul 2026 20:28:17 +0000
Manifest next update:     Thu 09 Jul 2026 20:28:17 +0000
Files and hashes:         1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: EZD2aTeqtwun9UJX9hrJCe8YeeRKHr5CGfiG7TWZXR8=)
                          2: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: T90KWb99cEbWcYjxKrcTOKfx/Qq8bgV36JoCAoZr1DA=)
                          3: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: FHR5X9UUHIe+lbh333dtqmnv9RGCApUiICBVfwjLgCs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl
                          rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 20:28:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2349 (0x92d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8
        Validity
            Not Before: Jul  2 20:28:17 2026 GMT
            Not After : Jul  9 20:28:17 2026 GMT
        Subject: CN=6a46c9e1-3c34
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:bd:43:02:e2:6a:81:45:09:89:9c:30:a4:51:
                    34:c4:f0:68:e5:79:00:83:03:32:80:f9:38:00:90:
                    f9:30:3f:20:87:a2:00:a5:c7:ac:99:c1:10:14:30:
                    64:54:45:05:59:ac:63:ef:af:18:db:8a:f4:ff:ff:
                    cc:f6:1e:04:bf:90:5e:49:01:7c:d5:9b:9a:0a:15:
                    b8:e2:72:4f:a8:36:69:0b:e0:36:2e:69:8b:b0:56:
                    b7:e0:2b:21:5c:fb:76:fa:93:b0:73:3c:15:20:63:
                    96:6f:87:b9:81:82:ec:50:dc:dc:90:35:01:ae:e1:
                    47:7f:40:6e:05:ec:20:5d:45:43:3f:0b:20:05:c2:
                    08:21:cb:ae:8f:de:b1:6c:30:c4:d5:2d:d7:cb:fa:
                    f2:92:3a:d6:8e:c8:5b:0a:2c:a3:ca:c1:3a:0a:45:
                    a5:66:2f:ff:e7:c9:93:db:30:a1:51:df:13:dc:1d:
                    24:b3:a7:75:b6:6f:b5:37:b3:21:af:99:92:18:21:
                    e7:d5:95:b1:96:0f:2c:fc:3f:44:8c:15:5f:b5:16:
                    95:bf:c6:5c:a6:ea:c8:4f:40:ef:ca:df:c9:3a:b1:
                    72:14:1d:14:7d:1d:3e:b0:9a:09:fe:e6:77:6f:0a:
                    39:d3:f7:0f:03:a0:8f:bb:5e:4d:f9:46:c6:6a:01:
                    8c:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:47:01:CE:F1:57:B5:8A:F9:FE:FB:13:C4:17:4B:5F:82:BF:9E:80
            X509v3 Authority Key Identifier:
                keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:b1:0d:54:61:ba:b2:02:ec:98:47:74:77:fe:09:56:31:80:
         67:76:10:73:83:82:88:8c:6b:63:0b:b5:3b:e1:90:cb:a5:30:
         69:f5:06:f2:fe:52:7b:17:d0:bf:1a:6b:45:6e:72:0c:36:51:
         f7:ed:41:80:9a:bc:32:d8:bc:e8:2b:81:41:be:06:3b:4c:29:
         09:c1:9a:8e:a6:5f:49:b6:6e:1c:93:f1:8f:23:72:67:ae:c0:
         ad:1c:ed:9d:db:a5:76:ef:bb:00:1a:54:dc:13:e2:3f:31:0e:
         b1:90:bb:b6:01:55:62:00:18:3b:77:08:92:ec:a9:98:82:d3:
         88:72:f1:37:5f:6d:dc:80:73:d3:d4:54:76:2a:08:21:7e:85:
         cb:84:07:9e:b6:82:6e:e2:98:10:ef:68:73:a1:d4:ef:c3:de:
         33:b1:3d:ac:78:e5:1d:b8:70:67:b9:76:8e:3e:d0:41:f0:c8:
         a8:e7:72:fe:3a:49:c6:7e:4f:dd:4b:29:a9:1d:a1:59:be:c6:
         a2:53:04:10:7c:c8:07:ca:5f:2c:73:b0:fe:be:2d:2f:95:1f:
         50:6e:8b:4b:e7:42:64:e3:b9:e7:3e:0e:b6:fb:1e:27:4e:12:
         4f:9a:cd:51:27:e1:c2:ae:fa:7e:ef:44:b8:55:14:d0:b6:07:
         32:b0:60:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:28:07 2026 by rpki-client