Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft
File:                     mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json)
Hash identifier:          MTqXyWKMED95FljOuFhzQaMNg7n65FD2jcnCoRyPPA4=
Subject key identifier:   A6:6E:CE:83:A7:D1:EB:A4:D4:7F:B1:D6:8E:0A:AA:06:EB:5D:50:D6
Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB
Certificate issuer:       /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB
Certificate serial:       02BA
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft
Manifest number:          02AE
Signing time:             Thu 16 Jul 2026 16:04:53 +0000
Manifest this update:     Thu 16 Jul 2026 16:04:52 +0000
Manifest next update:     Thu 23 Jul 2026 16:04:52 +0000
Files and hashes:         1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: 8TDUx/mR8xCTlz3tdF3IB8VHUuw0nKRoF6HV69RzeUE=)
                          2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: cDlDJUGZn7R/T+BNtx5SoPKWRYaEnJYFspu2vfBh0pY=)
                          3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: mZyDlGWu2FdiAPaQ9OzWowqY9YzGB4LKNt3/3VxufRs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl
                          rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:04:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 698 (0x2ba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB
        Validity
            Not Before: Jul 16 16:04:52 2026 GMT
            Not After : Jul 23 16:04:52 2026 GMT
        Subject: CN=6a590125-737e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:ca:50:5f:43:10:fc:5a:29:ad:00:3b:16:4f:
                    58:72:63:ef:5e:81:01:17:d6:7d:46:de:b8:b3:b2:
                    82:5d:88:c8:23:e7:17:a1:42:ca:c8:d4:c7:a5:3d:
                    dc:f3:2a:ea:06:04:56:1e:9c:12:a0:69:a7:f2:e2:
                    83:a6:63:c5:b7:fe:8c:9f:b0:4d:50:0b:31:78:37:
                    c1:5f:93:66:42:e3:77:34:ca:f9:07:3c:2e:f5:10:
                    d8:65:96:5b:33:c0:65:dc:30:2e:97:0a:f4:ab:d7:
                    53:cb:9c:30:e8:6a:77:39:0a:29:3a:4d:f8:d8:55:
                    0e:1a:6a:99:0f:12:51:ea:39:8b:33:23:7b:18:0d:
                    18:f4:18:65:c1:3a:00:aa:49:6b:fe:3e:91:f9:03:
                    c3:5c:e9:e9:42:84:1d:63:84:90:94:8a:1d:41:62:
                    b5:e4:f4:7e:c3:2a:a0:97:c0:ff:52:d0:7c:dc:3f:
                    63:cf:4f:0e:37:5c:e2:2e:e2:31:e8:ac:f6:72:b3:
                    02:8e:b5:09:39:78:6f:e3:81:39:6e:f3:33:1d:4f:
                    11:c4:17:e8:7a:28:2c:02:67:db:c4:87:fd:19:1b:
                    fc:d5:ee:b9:4b:1c:4c:72:22:3b:fc:72:f9:8f:8f:
                    aa:6c:27:4e:e3:7e:c3:9a:d3:11:49:35:40:d5:2b:
                    b7:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:6E:CE:83:A7:D1:EB:A4:D4:7F:B1:D6:8E:0A:AA:06:EB:5D:50:D6
            X509v3 Authority Key Identifier:
                keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:fe:09:e8:1c:75:3d:ca:0a:7d:57:19:f3:66:ed:4b:c0:25:
         29:bc:04:27:d0:e2:06:b4:ab:38:3a:de:32:cf:ba:c3:a2:42:
         99:5b:35:13:b6:28:91:5f:5b:6c:69:31:64:4c:91:1f:08:c4:
         da:68:1c:b2:71:b1:51:be:8d:7c:4e:4b:4b:33:5b:0a:39:61:
         ab:2b:dd:58:f8:9d:da:3e:3c:76:38:fb:40:8c:f6:b7:57:0f:
         f3:37:9d:c3:9e:98:62:b0:80:48:4a:a6:dd:26:06:2e:04:13:
         a0:8d:96:cd:32:a2:56:14:eb:79:d4:19:74:16:3e:1b:10:48:
         d6:59:c1:02:d4:39:0a:3c:3a:78:19:3f:72:c2:78:3e:39:6b:
         a9:7f:4e:94:6a:b0:0b:50:fc:dd:00:a0:a6:a0:07:b3:cb:83:
         b5:b0:75:e7:31:19:26:13:d9:55:e4:46:8c:2a:6f:7d:5f:ec:
         d4:c2:00:74:10:23:9b:b1:1f:4d:48:99:3d:81:e6:ec:67:f7:
         f2:13:3f:09:00:1d:f9:a0:67:ef:37:c6:30:75:ca:b5:f3:ca:
         df:8c:57:0e:dd:11:a2:02:08:9c:21:59:f7:a0:54:d1:02:47:
         82:e0:ba:46:14:0a:cc:34:99:a8:7e:37:c9:61:1f:22:e8:2f:
         d8:8c:e1:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:43 2026 by rpki-client