Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
File:                     Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json)
Hash identifier:          XfYkcnQ6c1zGLGt8NtTPNCgISG7/rn9oGo2p9Jt578w=
Subject key identifier:   CF:7A:1A:9F:C9:DD:C6:D4:B0:75:41:58:FB:26:E5:2C:01:39:BB:74
Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73
Certificate issuer:       /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073
Certificate serial:       29F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
Manifest number:          29CB
Signing time:             Thu 16 Jul 2026 15:37:44 +0000
Manifest this update:     Thu 16 Jul 2026 15:37:43 +0000
Manifest next update:     Thu 23 Jul 2026 15:37:43 +0000
Files and hashes:         1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: Oykbp8zBOFdYg2c1VfTFDU8WqhlFx973PwUZ8GuVYzI=)
                          2: F4246CDA561811E98A165872C4F9AE02.roa (hash: 2dvRnm4pfzjCtWstN3B5/ymv7Hda5U6DYqNjAuMZVLY=)
                          3: 58292E96774111F0A079543BC4F9AE02.roa (hash: +OItqlvFi/OJz28aPTkH59gdOncbNOxJz2Bk3pv0y/8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl
                          rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:37:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10736 (0x29f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073
        Validity
            Not Before: Jul 16 15:37:43 2026 GMT
            Not After : Jul 23 15:37:43 2026 GMT
        Subject: CN=6a58fac8-c26d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:67:1f:2c:bf:f7:c3:eb:63:8b:58:37:3a:2c:
                    be:24:06:ea:c0:90:3c:ae:df:dc:77:0f:af:a5:31:
                    c3:d4:d5:78:b8:4e:a7:90:9d:de:f2:be:ef:71:09:
                    df:ed:c2:32:eb:77:97:25:4a:60:14:9f:93:04:49:
                    50:96:1e:87:7d:88:e8:ea:22:b5:9b:c4:32:81:b9:
                    0c:2f:a9:78:ef:5f:ee:fa:28:4d:31:58:82:d3:09:
                    9e:4c:2a:b2:2e:26:d0:40:69:37:ba:c8:23:90:b1:
                    36:2a:99:9b:40:16:9e:7c:69:3b:bf:ef:d5:1d:b5:
                    1f:ae:1a:99:58:31:e8:23:86:ee:10:7c:f9:a9:53:
                    57:1f:e2:fe:6d:1d:a7:a3:88:6b:2a:4c:3e:38:76:
                    8e:92:a7:e3:e4:35:c5:ab:f0:3a:27:f8:05:2c:43:
                    18:95:33:86:79:c4:5f:67:bf:54:9e:5a:b8:e7:07:
                    32:04:b6:e0:d8:61:f2:7d:ca:af:6e:74:8d:f1:59:
                    74:f0:90:61:6d:9b:f1:57:b4:72:4b:bc:a0:30:e5:
                    dd:16:07:a5:2b:34:5d:6f:2e:07:79:02:3c:82:71:
                    04:c5:c9:3c:da:9a:49:dd:ed:c7:b4:ef:59:2d:e5:
                    c7:1f:8c:7c:ee:b4:68:43:a6:a7:91:c2:e8:d3:d1:
                    b8:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:7A:1A:9F:C9:DD:C6:D4:B0:75:41:58:FB:26:E5:2C:01:39:BB:74
            X509v3 Authority Key Identifier:
                keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:09:28:e8:e0:41:84:d2:10:29:c8:e6:1e:0c:98:91:dd:07:
         70:27:63:a3:47:c5:5a:07:0f:40:74:5c:68:34:fc:96:61:63:
         15:73:c5:1a:04:d7:68:37:97:39:05:4f:53:6c:ca:8f:9a:c8:
         d9:7d:c8:b3:12:f2:9c:b1:4b:f5:55:36:bb:26:32:5d:cd:3d:
         3b:40:40:79:e5:ec:b3:e2:2a:36:2e:eb:48:57:73:4d:53:3d:
         1a:cf:5e:78:61:1c:2e:12:b5:58:54:d4:04:38:f7:11:48:09:
         cb:e2:b7:ec:5b:68:21:25:7c:78:d2:4b:16:39:7e:99:c5:7e:
         80:f4:06:35:d4:29:81:e6:1a:50:e2:51:2a:d1:ec:f4:c7:bb:
         72:06:69:8f:15:c3:eb:30:40:1b:a4:99:7d:7c:7f:cb:72:5e:
         3f:39:54:0b:ec:14:c2:88:27:07:70:9e:44:ff:9a:52:70:af:
         8f:69:f4:05:2a:ba:d8:64:f0:b6:d4:06:48:d0:87:10:3e:27:
         45:55:8a:a7:92:99:4e:23:ac:3a:8c:43:a5:cd:ec:20:15:ea:
         f4:15:ee:5d:e5:62:93:45:ea:7c:03:59:aa:c1:7c:83:4b:5a:
         15:24:a8:53:44:4d:83:53:bb:a5:4f:e8:fe:5b:f1:a5:21:cd:
         a6:e6:20:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:23 2026 by rpki-client