Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
File:                     C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json)
Hash identifier:          nUC8O3MWhexiHZqdeEllNSOjEOBFaEo+27cHL0IacfE=
Subject key identifier:   2F:E0:6E:32:08:E3:85:8F:DF:E1:42:EC:E7:67:B0:ED:3B:8D:13:86
Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40
Certificate issuer:       /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040
Certificate serial:       0264
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
Manifest number:          0257
Signing time:             Thu 09 Jul 2026 03:44:51 +0000
Manifest this update:     Thu 09 Jul 2026 03:44:50 +0000
Manifest next update:     Thu 16 Jul 2026 03:44:50 +0000
Files and hashes:         1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: D54sRSv2HyyXijAvZuJa+t7CqTEM5A4LRzZY9hLezTk=)
                          2: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: IRQ+OR5t+v1uxAMW20q5TYiXjn6EFNEgE2VqHO9rI/w=)
                          3: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: QhSp+pceORKO5TeSj6aanaSrz92dgNngwmylNT95Bc4=)
                          4: 7BD32D1678F211F1985843FB5DA30FBC.roa (hash: y5JcZuVUbyUkHrroNxYLyYNDHkcGqagm4UKRx6C9gY0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl
                          rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 16 Jul 2026 03:44:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 612 (0x264)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040
        Validity
            Not Before: Jul  9 03:44:50 2026 GMT
            Not After : Jul 16 03:44:50 2026 GMT
        Subject: CN=6a4f1933-cf3c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:48:35:66:e2:2b:04:84:9c:82:05:e3:c4:60:
                    12:06:eb:6d:e7:1c:b7:af:46:51:eb:90:32:a7:67:
                    ff:62:ac:ed:84:a8:c8:6f:1e:98:04:1b:0e:b6:a6:
                    ec:b7:86:17:38:be:84:50:64:23:86:95:fe:aa:6e:
                    d0:11:ef:a5:1a:c9:20:f4:96:e3:69:85:39:9d:5d:
                    18:09:98:f9:24:5d:dd:18:c7:0b:bd:aa:87:c7:1d:
                    9a:9c:07:1f:98:f9:2a:08:91:d4:c1:3f:7d:19:40:
                    65:88:58:75:b5:13:c3:9b:23:96:6d:9e:e6:7d:a2:
                    e2:68:7e:13:11:56:29:31:fc:12:a8:f6:98:4c:0b:
                    60:f7:db:2b:39:73:9a:8a:ea:d4:f4:3a:c4:59:1b:
                    12:97:4d:b7:69:8e:15:78:34:99:02:f3:7a:66:88:
                    21:f6:18:08:9c:c0:60:dd:39:14:78:42:1f:46:18:
                    c0:d0:51:38:49:f8:38:fa:47:4e:e3:ef:7a:46:71:
                    db:c2:e3:ef:6d:b1:91:14:ad:c7:9f:52:6e:51:d0:
                    91:51:c1:11:cd:f5:e4:c4:11:8b:7e:09:9f:1f:fa:
                    dc:1c:ac:ad:0c:8d:65:ba:07:c7:7c:32:0e:68:d1:
                    4e:27:bc:2f:08:48:94:07:e6:c3:cc:45:45:05:e7:
                    17:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:E0:6E:32:08:E3:85:8F:DF:E1:42:EC:E7:67:B0:ED:3B:8D:13:86
            X509v3 Authority Key Identifier:
                keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:d2:ad:db:56:ff:20:a7:16:4f:7b:43:aa:41:52:02:4d:d5:
         62:5d:1c:74:36:15:c6:c7:34:0b:14:2b:2c:a7:c7:fe:7f:b9:
         e7:1a:be:92:e7:ea:1a:41:6a:a0:25:37:15:27:33:08:1e:57:
         04:d4:dc:a1:d3:f8:68:54:62:70:be:d2:5b:c4:86:4c:76:d6:
         b8:d0:38:fa:9f:cd:4c:ad:4b:5b:4d:a5:aa:3d:94:80:8d:be:
         a4:53:db:7e:d6:24:47:b8:8c:a8:68:2c:0e:9d:10:dc:a5:b4:
         d4:9d:57:93:73:7d:fd:58:14:4e:f1:14:d6:84:bf:a9:0f:70:
         d0:44:9a:28:45:6d:2b:b9:23:e9:83:67:a6:52:32:f5:6a:24:
         b1:4e:66:bc:c9:69:b8:41:67:7a:5a:a1:56:32:ff:89:d4:18:
         d0:9e:ad:a2:85:94:ff:5f:8c:ee:a1:bc:b9:f8:8f:51:56:62:
         15:bd:01:2f:55:ab:b6:40:66:0a:05:78:27:fa:97:37:87:07:
         b8:33:f2:bf:18:8f:a2:3e:17:5a:28:74:23:c1:43:91:0a:ee:
         dd:54:9c:f3:88:94:e8:4a:7d:97:d7:a8:a2:0f:11:8c:2f:a6:
         7a:18:fd:a4:31:6f:b6:84:23:4d:a5:50:43:36:a6:0a:0d:78:
         f2:b0:3a:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 11:07:29 2026 by rpki-client