Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft
File:                     QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json)
Hash identifier:          jFuijO81O3H0LllGqwqWGCVyIKWhwdqrwwiIj4CrTiU=
Subject key identifier:   74:B0:C3:44:77:DC:5B:93:B2:A1:AA:2E:B8:F0:FC:8D:3D:C4:E9:31
Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D
Certificate issuer:       /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D
Certificate serial:       BB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft
Manifest number:          B9
Signing time:             Sun 05 Jul 2026 07:42:06 +0000
Manifest this update:     Sun 05 Jul 2026 07:42:06 +0000
Manifest next update:     Sun 12 Jul 2026 07:42:06 +0000
Files and hashes:         1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: TDOyD8L4nIxXq2DSJsuNxXrlJVIvSSjEdULPH3jhc/k=)
                          2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: vV//1EEbPUz/O65Gy1tJMCCtU1GCZgX+F9nxMGWvmXs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl
                          rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 05:54:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 187 (0xbb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D
        Validity
            Not Before: Jul  5 07:42:06 2026 GMT
            Not After : Jul 12 07:42:06 2026 GMT
        Subject: CN=6a4a0ace-3eff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:4e:6f:ad:6d:7d:20:b1:dc:37:07:9e:05:79:
                    06:49:75:5a:8b:e0:de:94:a4:88:e0:d4:e0:90:88:
                    07:de:0b:6a:36:87:92:b3:9a:37:2a:39:9a:4a:65:
                    a0:93:8e:0b:4a:4c:06:1c:70:e5:da:af:33:c3:6e:
                    a1:51:5d:f7:e4:41:9e:d7:eb:82:8e:be:32:9e:e1:
                    01:6f:92:e8:c9:54:1e:49:b5:30:be:6c:f7:88:39:
                    ad:2a:24:26:04:08:7e:37:b8:5f:89:04:be:5f:46:
                    78:35:d6:ad:ce:5b:73:66:8b:d6:5b:b0:31:f7:89:
                    80:9c:ee:66:60:6e:c7:0e:b4:48:ae:c3:8c:9e:46:
                    69:5b:92:0b:99:75:ef:ff:97:1f:32:46:eb:03:d2:
                    65:23:09:a2:e2:d2:45:75:d6:83:25:7d:c9:97:9e:
                    67:42:e6:c7:51:79:e0:0d:72:6e:08:1c:20:74:5c:
                    5b:2f:99:10:93:d1:ca:80:9b:58:db:38:ce:d0:18:
                    be:ce:dc:47:f7:e6:52:c3:28:c1:fe:f2:02:f3:83:
                    c1:04:d5:29:22:7e:3f:0b:74:0b:67:b6:32:0d:35:
                    13:3c:24:16:63:c5:ef:f4:a8:df:61:d6:6b:40:46:
                    2c:03:bc:f8:91:3e:bd:9e:c5:ba:c6:b0:b3:e9:2c:
                    e2:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:B0:C3:44:77:DC:5B:93:B2:A1:AA:2E:B8:F0:FC:8D:3D:C4:E9:31
            X509v3 Authority Key Identifier:
                keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:23:b0:d0:60:a2:b6:b6:d1:fc:8c:67:5f:e8:58:78:bb:90:
         bb:3f:cc:ea:f1:a1:e6:79:ac:de:3b:96:f1:54:a6:37:e7:40:
         e1:4c:cd:86:69:1f:1f:86:39:70:64:d2:de:c8:6c:46:19:32:
         64:e6:eb:42:b5:08:c4:9b:ee:50:d9:cb:ae:88:6c:cd:c7:2c:
         26:c7:65:6b:0a:d9:b9:0a:4e:88:ff:f2:ce:63:70:6d:3b:e9:
         73:3a:17:6c:79:97:45:e2:8b:a3:cf:9f:f6:66:71:5e:19:ec:
         1c:de:9b:04:3f:08:d1:b4:ca:06:85:69:c0:ec:74:e8:37:d0:
         70:79:3b:91:08:23:f6:10:0c:00:01:ca:0d:81:89:21:37:bb:
         62:09:85:7c:8f:aa:1d:4c:d6:36:34:e7:f3:2b:cb:6c:51:66:
         de:0a:e9:14:1b:d0:9f:c8:19:7c:6b:ed:d7:91:65:ba:43:7f:
         a5:ae:c2:13:31:b8:96:4b:fb:6a:8d:76:e7:a3:ef:7a:ee:ce:
         cc:59:b1:39:fe:60:65:92:54:73:d2:33:b1:9b:ca:27:39:85:
         c6:b8:24:cf:43:d8:7c:f5:46:18:b9:3f:49:a1:d6:ad:83:fc:
         51:f2:3c:81:40:d7:13:1f:3a:e2:54:41:16:3d:19:70:e7:5b:
         50:58:02:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:07 2026 by rpki-client