Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
File:                     oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json)
Hash identifier:          AD7u9W+rC05tex3R4VV86PNij75IsuUDJ/7Ff2n5+TU=
Subject key identifier:   B0:56:17:3C:8E:93:69:FD:40:83:3C:D9:4C:D3:11:4C:B3:E0:BD:81
Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43
Certificate issuer:       /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943
Certificate serial:       09CF
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
Manifest number:          09BE
Signing time:             Thu 16 Jul 2026 20:11:09 +0000
Manifest this update:     Thu 16 Jul 2026 20:11:08 +0000
Manifest next update:     Thu 23 Jul 2026 20:11:08 +0000
Files and hashes:         1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: S4urKIWi97DzWQadTMSTq0KHL1zlejR5QZWMEppjRkA=)
                          2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: qdHsepzcAOjuAg1w+GnK6uKVgZktZf14YKTA/qN5ags=)
                          3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: JxvxI6LJ6TE3o05TEr7Y6rv7xRaFRfn8yJoeJorzJAM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl
                          rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 20:11:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2511 (0x9cf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943
        Validity
            Not Before: Jul 16 20:11:08 2026 GMT
            Not After : Jul 23 20:11:08 2026 GMT
        Subject: CN=6a593adc-894c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:76:59:76:4f:0e:68:92:c0:a5:4a:2a:45:55:
                    65:9f:84:54:b6:20:a1:06:d7:87:84:28:aa:d2:be:
                    f3:9c:17:ea:d6:f6:bc:60:de:28:f3:5f:4b:7e:79:
                    e2:ae:f7:e3:e6:0a:2a:ae:3b:b1:5f:e8:f7:2c:08:
                    f6:e2:a3:70:6f:24:3a:8d:24:76:89:f1:a2:14:a2:
                    47:3b:0d:8d:be:77:a4:f1:9a:fc:3b:95:26:a3:1c:
                    51:9f:80:7b:f8:1d:af:bc:bd:05:e8:ec:1d:bc:1b:
                    1e:0c:5e:2d:c6:a3:4c:95:10:f1:a7:9f:25:7a:1c:
                    01:8f:45:bd:22:1f:d8:09:09:87:c0:d7:6f:33:5e:
                    a6:f5:a1:7d:9e:07:ab:b6:56:29:1d:3a:e2:c8:e5:
                    a0:6e:2e:8e:54:85:14:9f:44:16:19:f4:46:10:bc:
                    6c:eb:a2:5e:2a:58:09:bd:61:1a:7e:21:ec:26:bd:
                    33:a9:be:1e:bc:a2:4c:1b:ec:f2:e8:b0:97:62:2f:
                    76:9e:ac:ce:ba:4c:34:56:31:b5:6b:75:a5:d1:de:
                    f0:a4:7d:0e:06:a8:3b:b8:39:ce:b8:33:d0:3d:fb:
                    19:58:21:28:c8:12:8b:5a:d4:95:3f:90:0a:56:29:
                    70:5a:50:02:c4:fb:05:33:75:a7:8b:f6:10:1d:9b:
                    4b:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:56:17:3C:8E:93:69:FD:40:83:3C:D9:4C:D3:11:4C:B3:E0:BD:81
            X509v3 Authority Key Identifier:
                keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:47:81:a0:86:6a:02:4d:9d:bf:f9:39:2d:11:b1:94:04:18:
         84:d7:1f:c7:78:7a:b7:9b:b9:93:7e:85:5d:95:36:9e:72:45:
         62:10:cd:dd:a1:c0:ff:12:93:1c:8c:a7:66:76:18:70:1c:f4:
         3a:3b:89:ec:e3:3a:0e:e9:c2:01:8a:b0:3e:1d:a9:c2:75:ef:
         36:98:60:e0:35:83:a0:25:00:63:33:fe:12:f4:74:cf:25:2f:
         bd:94:eb:8e:e0:15:58:ad:89:e2:79:02:6d:fb:14:57:0f:41:
         a7:0a:68:17:17:89:0f:f0:0e:ce:39:04:1d:bb:9e:ac:49:2c:
         8f:57:da:fc:5a:b0:ed:32:73:d3:92:1b:ef:16:09:90:f2:6e:
         dc:e9:d5:e3:93:55:a5:35:c5:64:ec:76:b3:cc:43:83:11:ac:
         53:52:59:ed:ec:d0:47:b9:96:21:93:be:ff:f3:af:a3:96:0e:
         e0:2f:6a:bc:fe:19:31:a3:96:2f:d9:94:63:9d:ce:c6:a0:51:
         f1:82:98:39:5e:72:0a:1b:e1:98:94:cd:a4:00:dd:cf:00:38:
         12:20:cc:da:de:5f:a4:20:65:4c:d7:86:c9:36:7f:47:47:bb:
         92:d6:25:d0:8b:f4:49:ed:05:60:5f:ea:ec:7f:1c:75:9b:5c:
         78:e8:63:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:13:08 2026 by rpki-client