Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft
File:                     089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json)
Hash identifier:          grD1kxYlcUmDWasdOco3Ok1b027Doa2SjYla9jzgig0=
Subject key identifier:   B0:AD:25:D4:43:F3:87:6E:F8:8B:BA:F6:8E:BF:82:02:1F:8A:BB:05
Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B
Certificate issuer:       /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B
Certificate serial:       BB
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft
Manifest number:          B9
Signing time:             Sun 05 Jul 2026 07:42:09 +0000
Manifest this update:     Sun 05 Jul 2026 07:42:09 +0000
Manifest next update:     Sun 12 Jul 2026 07:42:09 +0000
Files and hashes:         1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: brn8FGaeYuljE/jB07R0VXRD/AfVbl6QRFE3eLE61aY=)
                          2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: Hc8ozT9yDfNYsIpquS99Gm4q+mTiTQ1cphIlHACdz5k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl
                          rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 02:50:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 187 (0xbb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B
        Validity
            Not Before: Jul  5 07:42:09 2026 GMT
            Not After : Jul 12 07:42:09 2026 GMT
        Subject: CN=6a4a0ad1-d1b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:51:99:65:81:37:f3:85:10:97:9b:fa:57:fc:
                    f8:2e:96:66:38:6f:85:a4:72:1d:60:b9:1f:f1:4d:
                    af:1d:7e:ba:52:16:f5:f4:71:e0:70:4c:08:27:53:
                    e2:9f:b3:96:f1:19:57:37:68:98:fb:77:79:35:c4:
                    73:1b:9e:ed:9c:6d:a5:db:ca:10:1e:15:5a:9c:3b:
                    e3:2a:d1:a9:14:c6:eb:0f:1b:67:b7:9d:4b:56:91:
                    39:1e:72:44:a8:03:ff:6b:6d:91:e4:9c:de:8f:8b:
                    fe:80:da:db:94:c8:c9:0a:32:e5:cf:23:7a:13:92:
                    56:27:0a:76:68:56:5b:43:50:40:6d:ff:05:b4:66:
                    0e:dc:b7:84:60:1e:bd:ce:01:b3:0c:f3:10:57:4f:
                    2f:fe:32:80:70:ca:60:f4:55:57:a9:da:1a:35:2d:
                    82:da:90:48:9c:87:26:c6:4d:93:65:3c:86:0b:e2:
                    d2:e0:c8:d0:45:37:7f:56:4c:6c:24:2b:b0:34:cd:
                    96:1b:f6:e0:64:3a:04:f9:9f:bd:70:16:52:d2:21:
                    fc:a4:15:8d:7e:b4:6f:47:09:81:f9:08:4b:a5:03:
                    6c:f0:4c:10:8c:18:55:56:ce:29:b2:3e:28:2e:59:
                    7c:af:1e:7c:60:42:9f:9e:40:1d:31:ab:0d:12:b0:
                    b9:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:AD:25:D4:43:F3:87:6E:F8:8B:BA:F6:8E:BF:82:02:1F:8A:BB:05
            X509v3 Authority Key Identifier:
                keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:5d:20:a9:f7:d2:5b:17:66:27:3d:d6:40:50:4e:42:af:44:
         0a:83:35:de:82:6f:c7:a7:ad:b0:ee:d6:e1:2b:c5:8b:ed:43:
         27:7d:28:a0:b7:ae:36:5d:78:e7:66:fe:92:41:cf:d8:0f:a3:
         38:c2:14:c4:38:d0:5e:2d:ee:8b:2a:d7:21:0a:f3:d9:60:36:
         99:2d:93:a9:e5:75:3b:35:3b:0c:44:a0:5d:07:ed:6f:ac:12:
         f1:4f:08:0e:cc:c6:76:69:ae:d5:fe:90:59:35:63:bf:1e:1c:
         c5:1a:4c:61:63:e3:b1:0b:8d:f7:40:98:99:d1:36:4b:16:96:
         75:74:4a:7f:cb:0c:42:e1:96:99:e8:e9:33:fc:b1:c3:3a:ec:
         1b:d3:61:1b:3f:4b:b8:98:31:6f:f8:76:4c:f3:9b:e4:dd:f2:
         99:67:a3:20:bb:91:1d:dc:5a:d1:4e:07:d1:04:29:7c:09:52:
         20:d8:1a:0b:f9:63:d8:eb:6a:05:65:98:c9:a9:44:d9:33:d2:
         23:ec:2f:87:b3:26:4d:e2:0c:81:96:a3:ac:be:52:23:5d:63:
         5e:a4:5e:72:71:53:0e:df:78:ea:49:62:82:a6:9d:b9:53:60:
         48:42:2b:9d:aa:a4:63:f7:8d:b8:b8:80:9a:8e:f8:bc:58:9f:
         6a:ff:9a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 12:33:53 2026 by rpki-client