Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
File:                     7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json)
Hash identifier:          fK7jlS9mOvFN8IGwMz0ELZ/Dhl9VjyXK896osXxvKxQ=
Subject key identifier:   2B:2D:7A:F2:13:A8:D7:F6:04:62:6E:4B:6D:7F:DA:84:2D:9A:A5:64
Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40
Certificate issuer:       /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
Certificate serial:       02A8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
Manifest number:          029F
Signing time:             Wed 01 Jul 2026 02:51:07 +0000
Manifest this update:     Wed 01 Jul 2026 02:51:06 +0000
Manifest next update:     Wed 08 Jul 2026 02:51:06 +0000
Files and hashes:         1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: v1T35KSHo9xk1Vn6011t3ieWLoZeJt1Ttka083sKfQs=)
                          2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: +r2WtPGJv8MiPhxLT7XXflRVbJqr2/eUE2D9wDQRaQQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl
                          rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 08 Jul 2026 02:51:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 680 (0x2a8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40
        Validity
            Not Before: Jul  1 02:51:06 2026 GMT
            Not After : Jul  8 02:51:06 2026 GMT
        Subject: CN=6a44809a-90b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:71:62:4d:e9:b7:84:f9:a4:3e:81:5b:0c:67:
                    2d:2e:8f:c9:a1:b3:5b:46:a0:73:40:c1:b9:98:32:
                    f8:e6:a9:e5:bc:ad:91:79:49:01:2c:60:8c:ac:12:
                    ed:4f:fb:e6:82:44:dc:54:82:e6:ea:78:3f:17:fc:
                    49:8b:bd:6b:f4:45:5d:44:9e:18:c3:e1:5e:3e:cd:
                    20:12:61:04:6b:06:4f:4a:ec:b7:73:49:49:21:0a:
                    04:93:0b:7c:b0:ad:2f:cb:e1:55:54:17:7f:e7:33:
                    a1:11:51:05:c4:4a:7b:c1:a4:90:0b:fc:20:d2:4d:
                    2c:75:4d:61:4b:45:9f:68:28:0e:ef:2a:c2:48:5d:
                    f7:bc:2c:b3:8e:a7:5d:01:12:bf:cf:4b:19:ad:37:
                    ae:66:fd:f0:4f:85:b1:76:ff:b8:c3:ad:7c:c9:a2:
                    77:d4:b4:fe:ad:0a:25:16:23:87:b4:5c:70:00:c4:
                    cd:c1:b5:bf:1d:39:1b:a7:eb:8f:62:b6:35:c2:6c:
                    8b:65:94:5f:93:0b:b1:ce:ba:36:fb:a9:65:5d:db:
                    e0:01:a4:ed:e8:45:c7:37:a2:2f:64:e5:6c:29:f8:
                    9b:f5:95:c5:4d:65:a4:0c:34:68:db:81:05:1e:ca:
                    13:a8:5d:6c:b8:52:df:b8:3f:0b:51:97:ca:9b:a5:
                    85:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:2D:7A:F2:13:A8:D7:F6:04:62:6E:4B:6D:7F:DA:84:2D:9A:A5:64
            X509v3 Authority Key Identifier:
                keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         27:94:4d:be:b1:6e:41:f1:ac:ce:23:b0:1e:21:6c:07:dc:4c:
         cc:38:5d:4c:17:7d:43:4a:d7:bd:c8:6a:5d:35:59:84:89:17:
         4e:ff:4e:dc:17:64:48:68:1e:8e:31:5a:b3:e3:0a:89:a4:63:
         0f:66:64:fe:fa:68:32:2c:55:6a:c3:4b:3c:c8:61:27:cb:bf:
         2d:11:36:56:6c:c4:10:ec:9b:82:49:ed:21:b4:32:34:cd:c9:
         14:bc:dc:b7:6f:69:73:e4:02:48:94:3f:66:b1:35:6b:f1:e1:
         5a:96:3b:13:3b:2f:85:a1:32:41:64:e9:d8:00:91:34:35:dc:
         75:dc:fc:49:d2:8d:c3:ba:81:a7:85:49:03:15:6a:fa:83:12:
         b3:c8:ba:54:ef:48:96:84:c1:d2:39:82:2c:7a:70:bd:25:ee:
         ab:e7:f3:ca:1f:ba:a1:b4:11:d8:9c:38:38:0a:56:42:54:8f:
         af:c9:c9:1f:6f:1f:56:e1:b6:c2:a5:e8:83:20:07:95:f6:30:
         36:11:f0:79:38:ce:ca:67:e0:14:c8:08:9a:95:59:5e:80:04:
         f9:1a:94:db:76:9d:cc:68:76:1d:32:c0:38:72:0c:f2:41:5d:
         8c:15:cf:ad:60:bc:ea:28:b2:af:54:f7:fb:42:82:b0:5f:67:
         f9:ea:88:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 21:55:55 2026 by rpki-client