Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
File:                     5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json)
Hash identifier:          KeH5NPmz+fhqhp4g89EoxPjnVPUJjYVRSVhyz9cywSc=
Subject key identifier:   FA:8B:BA:83:58:23:92:74:00:26:48:E7:F1:09:E3:8B:40:B3:88:23
Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3
Certificate issuer:       /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3
Certificate serial:       0364
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
Manifest number:          0348
Signing time:             Fri 17 Jul 2026 01:45:56 +0000
Manifest this update:     Fri 17 Jul 2026 01:45:56 +0000
Manifest next update:     Fri 24 Jul 2026 01:45:56 +0000
Files and hashes:         1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: 5JHM6lUdkB+lNavqVKBHiHPJbZMT1ZrTfVq53zc9An8=)
                          2: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: BV3fAhzYpd4ungoocRUfiG5/5RWB1BiAarK17R/lLO0=)
                          3: F3997FACE21D11EFA5819B7EC4F9AE02.roa (hash: SaiPWLAHUnkyojVdelS2uSfpAinLvbN01a3ry45lnng=)
                          4: 3D331986E17211EFA5959B2FC4F9AE02.roa (hash: GgxFX6325kuN6RICOxtS2gvb+gkFJTzGc8YA7E0IOc0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl
                          rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:45:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 868 (0x364)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3
        Validity
            Not Before: Jul 17 01:45:56 2026 GMT
            Not After : Jul 24 01:45:56 2026 GMT
        Subject: CN=6a598954-98bd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:c1:11:25:b5:00:48:33:1a:e0:00:0a:0e:fd:
                    57:8d:f1:33:fe:da:bc:a5:4e:16:eb:41:92:6f:c1:
                    ed:55:2d:70:84:1b:e7:87:96:c8:ca:4b:fe:68:39:
                    f3:d3:e9:84:00:96:27:0d:52:65:f8:af:23:bd:12:
                    77:d1:52:8a:41:1b:e4:0c:33:93:e3:4c:47:6a:f2:
                    45:e3:7b:05:52:3d:dd:86:ab:e7:c7:fe:80:dd:fc:
                    46:61:cb:46:e3:82:40:b1:e1:94:3b:28:19:01:19:
                    c5:46:a6:a9:6a:95:da:b7:12:d3:ca:60:86:fd:ed:
                    18:47:1c:c2:f3:a3:5a:fe:de:9b:b6:61:01:1b:58:
                    ae:60:42:8a:db:cb:86:d2:d0:99:a0:00:89:c9:c8:
                    18:aa:d2:e6:9b:63:91:e0:48:2c:57:f4:e5:38:57:
                    e7:b6:03:a8:11:c9:9c:6e:85:2b:99:20:f5:f0:b2:
                    b4:d3:1e:42:58:37:f7:48:54:94:68:2e:41:a1:04:
                    5a:e4:1e:e6:3e:de:e9:e0:9a:34:4a:59:00:8a:e2:
                    f8:2f:8a:64:5b:39:74:8c:bf:02:eb:cf:9d:34:07:
                    31:e0:49:4f:8c:8c:8a:2c:3b:2d:19:dd:70:6e:2b:
                    45:25:90:a5:e3:35:bd:ba:3c:cc:fa:20:6f:15:19:
                    06:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:8B:BA:83:58:23:92:74:00:26:48:E7:F1:09:E3:8B:40:B3:88:23
            X509v3 Authority Key Identifier:
                keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:ca:3e:a5:14:02:e7:77:50:71:33:43:d4:c4:98:e5:db:6f:
         bc:1d:20:68:68:fd:8d:c4:43:6c:b1:45:06:c7:4a:f9:ad:c3:
         b6:c4:25:cc:b1:2d:18:ef:1f:1f:cd:90:86:5f:1e:48:78:7f:
         92:c5:ec:a7:ee:bc:ed:fc:20:ea:61:c2:2b:77:48:e8:ea:68:
         af:22:fe:34:ac:3a:39:85:5a:59:16:0a:2d:cc:8c:09:b9:ac:
         61:93:7c:c0:ea:6a:7b:80:8b:50:7a:7a:a4:22:b1:08:15:6e:
         09:4f:71:ef:e4:e8:15:9c:76:8e:c8:52:89:d5:a4:3e:0b:14:
         90:1e:1e:f0:04:00:fb:de:da:3e:9c:03:74:6d:c5:19:7b:74:
         ec:cd:e0:9d:69:9c:a1:cf:54:82:42:4f:4c:20:9e:c3:0e:bc:
         f4:40:ed:cd:f9:20:3d:a1:ec:fb:5f:00:5e:a9:a9:e0:fd:9f:
         9f:04:bf:31:5c:7f:db:bd:1c:c3:5a:00:7c:40:3f:eb:11:9f:
         bd:0f:76:ea:b2:f6:f2:e6:ad:f8:5f:ce:be:51:ad:3b:18:3d:
         5c:d1:d4:95:14:9f:b1:75:2f:c4:e1:12:8f:9b:30:be:89:db:
         ab:0d:99:57:25:dd:f9:e6:7d:16:73:36:57:72:87:ad:81:41:
         d8:a9:b4:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:43 2026 by rpki-client