Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft
File:                     2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json)
Hash identifier:          fJl4zP3LC+NH//RsSr105Iqtrb8W2NnowLEhYE6QdK0=
Subject key identifier:   9E:04:83:84:8D:40:A7:86:C0:5F:DB:8A:18:CE:F2:9D:D4:4A:2F:87
Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10
Certificate issuer:       /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10
Certificate serial:       01BE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft
Manifest number:          01AC
Signing time:             Fri 03 Jul 2026 04:52:27 +0000
Manifest this update:     Fri 03 Jul 2026 04:52:27 +0000
Manifest next update:     Fri 10 Jul 2026 04:52:27 +0000
Files and hashes:         1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: GxtM4Xbr3I/SlhYRB2x0VucDLd8qqcag296Qs5hJaec=)
                          2: 1B7430784BD411F1A6EB1F4394833773.roa (hash: oe2ZCXIQb92ROAH/nNeoR+2JzTpi9XU0AorFDG3Oc4Y=)
                          3: DAF8A746E01B11F097920A16646F56BC.roa (hash: ddW0Ynay18N2vbuqKbzQBFWoQChkJES43ys+thhHWto=)
                          4: BAFD2318E01B11F088B1D0FE636F56BC.roa (hash: nQQCvcP4Ab62KnLuqB+2dhOJymAwNDUrlbhEiMGFBCY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl
                          rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 04:52:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 446 (0x1be)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A822F, serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10
        Validity
            Not Before: Jul  3 04:52:27 2026 GMT
            Not After : Jul 10 04:52:27 2026 GMT
        Subject: CN=6a47400b-c271
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:fd:f2:b0:5b:a5:75:b8:fa:5c:72:f9:3a:c7:
                    ad:95:eb:1f:a8:46:64:c6:6d:73:4d:14:01:69:f1:
                    da:9d:d4:d2:74:25:c2:c5:51:19:47:fd:10:b6:45:
                    4d:a7:c1:ee:a3:cc:d9:d6:41:7b:57:53:e9:8b:99:
                    08:0d:4b:f2:87:c5:c1:e0:d4:48:01:9e:cf:87:a9:
                    fe:4d:40:32:d5:1f:6c:cd:99:01:2a:d0:8d:53:26:
                    a6:37:21:3b:f9:60:7f:b2:9f:f4:85:59:0d:57:2c:
                    a0:d4:d5:57:54:b2:89:52:12:d9:9a:7a:ce:c9:2b:
                    f8:1c:6d:9f:3e:2b:da:47:8e:66:d4:9c:5a:09:02:
                    53:20:60:26:ce:2d:0d:da:26:88:ad:fb:58:06:02:
                    25:e2:74:36:69:13:97:4c:81:93:54:79:a6:d3:ee:
                    94:80:51:71:27:bc:12:b5:69:da:b7:d0:ce:ba:1f:
                    ee:1d:cb:25:04:f2:74:4a:95:96:27:84:06:f8:53:
                    9b:17:d0:37:1d:55:5d:77:64:16:20:5b:a9:f5:32:
                    b1:96:5c:94:04:e2:4b:e7:47:6c:bd:1a:08:3d:e9:
                    41:66:a2:46:ce:64:39:7a:9f:16:67:66:0d:1a:99:
                    7e:dc:ca:1c:d1:f0:ec:b0:0d:3c:d6:f2:27:e1:e2:
                    32:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:04:83:84:8D:40:A7:86:C0:5F:DB:8A:18:CE:F2:9D:D4:4A:2F:87
            X509v3 Authority Key Identifier:
                keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:3e:26:19:0b:63:4b:79:2b:bc:fe:0c:bd:06:e9:94:21:3f:
         93:38:ff:ea:88:32:33:e8:85:28:9e:b8:2a:25:2b:cb:d0:ef:
         81:64:96:9d:05:17:a6:29:ef:10:6a:f3:8b:3c:18:7b:59:a9:
         19:3b:37:62:89:d2:a8:74:b8:d8:fb:15:25:9e:e9:67:f2:8f:
         0b:4e:be:cb:c1:59:08:97:6b:06:c7:55:70:c6:fb:ac:d6:92:
         f2:89:ce:66:41:70:d1:00:f8:00:eb:87:d7:c0:23:f4:e8:fc:
         4f:54:1d:22:ea:e6:42:19:bd:07:10:a7:13:f8:06:7c:96:b9:
         09:4c:b8:1d:d9:5f:6e:1b:c0:c7:b8:64:bc:e6:e7:4b:0f:51:
         87:00:e7:1f:29:75:d6:ff:9b:3f:4e:8d:fd:0e:96:30:73:6b:
         52:56:83:df:45:4a:10:95:23:11:e0:d2:0f:4f:8e:e9:99:01:
         5c:d7:be:52:80:b6:7f:2b:97:18:2f:92:b2:6a:df:44:fa:5c:
         91:f3:c1:a7:c0:16:30:d4:6a:97:ee:00:8d:bd:3f:11:32:70:
         6d:e2:ee:cc:92:36:15:c0:e2:f5:e9:b6:f5:f1:aa:a3:b1:54:
         29:32:51:7a:d5:b7:8a:fe:72:a2:e0:52:52:08:10:fc:56:f5:
         5a:63:78:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 20:54:23 2026 by rpki-client