Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft
File:                     iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json)
Hash identifier:          dR2qxpsiDjb16lMwDuPkSco0PpfYMCaiK80tKwXNWh4=
Subject key identifier:   35:F0:92:1A:7F:E2:EC:A6:3A:31:71:D1:C9:BE:83:80:59:CE:FF:F2
Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2
Certificate issuer:       /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
Certificate serial:       103B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft
Manifest number:          0FFE
Signing time:             Thu 16 Jul 2026 17:34:17 +0000
Manifest this update:     Thu 16 Jul 2026 17:34:17 +0000
Manifest next update:     Thu 23 Jul 2026 17:34:17 +0000
Files and hashes:         1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: /6eadCflkyDsdo61p28bVTSrFcG2JWZ6Don/+mRRsYQ=)
                          2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: thWs/wjgTce2OH8uRbqin2U/9yRfT0t37bg0yz1umNk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl
                          rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 17:34:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4155 (0x103b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2
        Validity
            Not Before: Jul 16 17:34:17 2026 GMT
            Not After : Jul 23 17:34:17 2026 GMT
        Subject: CN=6a591619-b7a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:81:b3:bb:3d:53:e2:73:d4:83:1e:f3:77:bf:
                    73:62:e6:81:62:e7:be:b6:72:85:16:a7:70:2b:6f:
                    15:74:c2:8b:15:b6:5c:5a:7a:70:86:83:4b:9c:75:
                    58:3d:06:a1:de:ae:6a:5a:4f:17:f7:4f:0d:09:a8:
                    4d:4b:5e:13:58:29:be:23:22:fe:51:da:99:a9:06:
                    79:af:c4:2e:fb:f2:03:38:23:d3:9e:41:7b:88:95:
                    61:04:33:16:54:9e:9a:0f:18:ef:3d:ce:78:18:93:
                    2e:35:e3:09:fb:56:d8:3a:c5:08:be:58:72:ff:f6:
                    81:b0:9d:b9:79:6a:94:84:30:85:d4:df:4b:14:23:
                    6f:0f:64:51:1d:0e:b5:27:fa:e8:d3:92:da:71:a4:
                    dc:91:71:db:0e:7e:5c:67:86:87:60:35:61:aa:00:
                    db:73:5f:43:15:8f:88:20:b4:73:84:bb:89:89:b6:
                    54:bc:13:f3:81:48:45:9f:27:a4:77:eb:38:f8:ed:
                    63:f8:bd:21:9f:7f:b8:78:e4:e6:1d:60:4a:13:97:
                    66:46:20:23:2f:8b:bc:45:dd:d6:f1:1f:61:5c:47:
                    81:01:3d:af:29:87:17:ce:75:f6:57:c3:c1:09:93:
                    34:80:c3:0d:be:dd:af:92:c5:de:25:41:96:fb:c0:
                    1a:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:F0:92:1A:7F:E2:EC:A6:3A:31:71:D1:C9:BE:83:80:59:CE:FF:F2
            X509v3 Authority Key Identifier:
                keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:f8:ac:3d:7e:5a:42:e9:a9:77:ec:5b:d0:d8:57:53:c1:22:
         75:33:70:74:63:5b:d7:81:1b:20:aa:24:ce:f2:f7:db:2e:90:
         9c:86:30:d3:9e:4e:eb:e2:b5:79:8d:92:15:f4:84:65:8d:e1:
         e2:14:1b:ee:4f:77:9d:00:4b:a4:f6:5d:e2:bb:63:0b:b4:31:
         36:64:29:de:22:63:00:7d:4c:11:3d:81:70:d1:d3:6b:56:e5:
         86:2f:d7:9c:39:a6:6b:38:b1:f6:ea:33:01:04:17:46:fd:2b:
         9f:fa:bf:51:3c:d4:db:bb:54:0c:50:63:2f:48:25:f9:06:0c:
         da:84:72:06:02:8c:84:8a:e5:9c:75:42:b6:1c:ce:d7:c5:8b:
         98:2e:ec:63:c8:9e:bc:84:8f:98:ed:a1:cb:01:5d:db:10:43:
         c8:c3:d9:25:72:48:ba:c2:44:b3:c6:75:36:6a:d8:26:65:da:
         66:4b:a9:10:e9:a7:6d:cb:82:19:80:a9:a4:13:83:cb:ad:a5:
         b5:c9:33:c3:f9:9d:99:41:8e:d9:c3:d2:eb:f6:0d:5b:50:40:
         4b:29:b1:f4:42:f9:8d:27:15:30:6b:66:6c:26:2d:86:17:9f:
         1b:57:7d:b7:64:f7:87:9b:96:67:61:e0:fe:b6:c2:cd:52:a2:
         94:cf:66:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:28:12 2026 by rpki-client