Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft
File:                     hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json)
Hash identifier:          3RTF5fJDjZ3DD83wD8eyhdMaUT9aY6tF7soCDsLKDtw=
Subject key identifier:   EF:B1:77:7C:44:CA:3B:D3:CA:6B:48:D8:6C:13:48:8A:02:88:F0:9F
Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1
Certificate issuer:       /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1
Certificate serial:       0AD7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft
Manifest number:          0AC2
Signing time:             Sun 12 Jul 2026 19:27:08 +0000
Manifest this update:     Sun 12 Jul 2026 19:27:07 +0000
Manifest next update:     Sun 19 Jul 2026 19:27:07 +0000
Files and hashes:         1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: D7WFKpq+XJfa3Wm5nf3xRhZBDxV9cegdmwN0xIPJW0c=)
                          2: 92A9A67EB40211F09714C855C4F9AE02.roa (hash: MN08xTHQWyAMmrT/Pkdf4mSOvLZ+rB9gXlkcOfJJ9xI=)
                          3: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (hash: K1UTUb7anKdBiS5H6cyi3Qvilb7AAyufcdHnMSB1SCA=)
                          4: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: AAIxMzs/gvYk9K/xu4n64rt4zSe4EjThnQNO0Ai3Jj8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl
                          rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 19 Jul 2026 18:39:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2775 (0xad7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1
        Validity
            Not Before: Jul 12 19:27:07 2026 GMT
            Not After : Jul 19 19:27:07 2026 GMT
        Subject: CN=6a53ea8b-37c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:64:a9:ac:6f:7a:7c:dd:5f:f8:33:31:3d:9c:
                    5f:67:eb:68:1f:e2:af:57:68:63:52:e4:f6:93:45:
                    9a:68:50:88:7a:19:ac:ab:91:3d:c7:f4:69:0c:dc:
                    9d:79:98:b3:74:d1:8d:79:a0:b0:3c:4b:bd:d8:d2:
                    16:fe:38:aa:f6:db:c0:c5:21:dc:28:cc:cd:ad:d6:
                    b5:c1:d7:6a:01:6d:d7:fa:85:b4:e3:82:f0:69:bd:
                    b5:65:33:e6:f9:ba:e5:78:77:38:3a:2c:1f:1d:09:
                    6b:5c:fb:28:ab:a5:43:d3:b2:0e:76:29:d5:91:39:
                    31:fa:73:dd:f9:ca:91:d9:46:ab:85:3f:1c:4f:dd:
                    a1:14:9b:2b:08:83:71:26:d4:60:26:3c:fb:47:7a:
                    af:af:5b:47:79:b9:e2:cf:8b:89:66:39:4e:38:73:
                    cd:e7:af:2f:b4:e2:5d:c1:eb:06:37:1b:df:85:e9:
                    78:fc:3d:70:17:d1:82:d3:58:ae:9d:82:46:71:e5:
                    a6:93:47:c0:22:ca:d9:1d:80:3c:bc:1b:10:1b:dc:
                    ab:46:eb:80:c4:c8:21:70:4d:4d:94:5f:86:ab:2d:
                    2c:e5:84:8a:99:f8:70:66:57:74:96:73:c5:3f:cd:
                    ba:9f:00:b1:cd:a2:fe:2f:9c:32:65:85:41:00:56:
                    09:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:B1:77:7C:44:CA:3B:D3:CA:6B:48:D8:6C:13:48:8A:02:88:F0:9F
            X509v3 Authority Key Identifier:
                keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:36:05:dd:d1:50:02:8c:21:3c:cf:32:87:05:62:82:54:b3:
         1a:a5:7a:ce:96:cf:1d:6b:57:1c:fc:57:79:c4:95:c5:8c:b2:
         d0:63:1c:f7:49:a5:7a:e0:29:ff:83:e9:ca:94:f3:e0:5d:75:
         78:a2:6e:25:7a:de:ee:dc:e9:12:17:35:47:1a:c1:1c:99:2a:
         1d:07:5f:2f:86:4d:a4:4b:ab:ae:6d:52:c4:ba:3a:2d:c9:69:
         92:3c:73:07:6a:d6:13:ad:8d:12:9b:24:5e:1f:52:1a:d1:14:
         d4:47:1e:e7:e9:b3:43:aa:ab:e5:c7:0b:25:b0:f5:43:8d:c6:
         a9:64:23:cd:de:03:3a:01:c3:8b:2e:98:3f:7a:4e:be:ca:75:
         c0:59:49:4c:97:80:32:1f:66:40:6e:c1:ef:d2:d0:ed:94:5b:
         df:6a:ca:7c:bf:85:13:ac:a9:2c:7e:4f:f3:2e:9d:d6:8c:79:
         26:83:d1:26:34:da:6a:e8:77:8e:b6:71:90:82:6a:73:db:fa:
         c7:69:f1:72:06:e9:19:5e:32:21:3b:9d:ca:93:e4:c5:81:2d:
         58:2b:f7:7e:c7:2e:22:01:3d:5f:54:0b:cf:a5:21:fd:cf:fe:
         ab:d3:fd:4b:37:4e:87:86:6a:d0:74:3d:44:86:8c:51:4d:61:
         56:9f:35:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 22:28:58 2026 by rpki-client