Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
File:                     GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json)
Hash identifier:          /WQ6QiPAL7Oi/26261G/jdcORJmMPup5zqXgXd3TqkQ=
Subject key identifier:   5E:06:9A:B0:93:7B:B2:16:22:B9:AE:72:67:51:6E:EE:7B:79:7A:39
Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05
Certificate issuer:       /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805
Certificate serial:       027B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
Manifest number:          0276
Signing time:             Sat 04 Jul 2026 17:31:53 +0000
Manifest this update:     Sat 04 Jul 2026 17:31:52 +0000
Manifest next update:     Sat 11 Jul 2026 17:31:52 +0000
Files and hashes:         1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: cZKvJzUM2IRvJTi0j6S6N2jmGQLqmC0OU/TGvr/jheU=)
                          2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: s3pplahrtkEIiqFvq9bDswEXkbohC1ZEoUg/qiNs0L4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl
                          rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 17:31:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 635 (0x27b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805
        Validity
            Not Before: Jul  4 17:31:52 2026 GMT
            Not After : Jul 11 17:31:52 2026 GMT
        Subject: CN=6a494389-c640
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:47:aa:0b:ea:8f:a8:78:33:f6:92:30:b0:07:
                    7a:2b:43:5f:e2:bf:35:bc:2d:4c:4b:64:b0:dc:c5:
                    63:2b:10:e1:51:c8:bf:de:3b:91:42:8e:85:57:e4:
                    68:e4:6e:6a:ce:e0:e2:dc:be:5e:89:9c:fd:b8:3c:
                    44:66:86:16:66:87:13:c6:1b:2d:47:76:d0:a5:bc:
                    3e:bb:ef:24:7c:88:c5:b6:03:4c:92:f8:f2:b3:33:
                    f5:5f:81:fc:0c:4f:44:4f:3e:a0:49:ab:a0:1d:6f:
                    ed:b5:bb:b1:51:56:26:0c:1e:8a:5d:0e:55:da:a5:
                    02:09:49:d3:a1:13:12:b6:6f:1f:f2:b7:a4:28:dc:
                    19:3f:97:d3:5f:8b:65:0f:45:a3:59:0a:9f:b9:ea:
                    da:a2:fa:53:88:5b:9e:3f:4d:99:f0:91:56:d6:94:
                    b4:7c:8d:c9:3d:31:d0:7a:f6:09:62:20:f5:c7:5c:
                    ce:9d:1b:a5:20:8e:24:fb:49:a8:06:2f:94:bc:ae:
                    1e:d2:cd:b0:1e:f3:5a:79:87:de:ed:ec:16:54:56:
                    24:74:14:68:ae:6d:f1:9e:a3:e3:c4:83:45:7d:36:
                    61:3f:86:99:db:9f:e8:be:e2:56:5d:00:1c:db:93:
                    bf:b7:48:22:37:82:43:83:08:52:ae:09:ec:18:67:
                    66:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:06:9A:B0:93:7B:B2:16:22:B9:AE:72:67:51:6E:EE:7B:79:7A:39
            X509v3 Authority Key Identifier:
                keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:55:fe:fa:a8:f8:f9:4e:cd:2d:cd:36:f2:b1:ca:76:ae:0e:
         eb:8e:17:eb:24:d5:0a:fc:2e:19:79:e3:b0:3b:55:1e:26:22:
         12:37:51:46:bc:31:ff:64:a9:f9:c3:e9:12:e9:54:9e:5c:16:
         16:74:a5:9c:3e:cd:0b:b0:c9:77:17:77:c7:f2:4c:53:13:36:
         1f:18:02:e7:fa:7e:34:c1:37:22:e0:18:47:ee:a2:54:12:68:
         53:76:94:23:6a:18:c6:e1:b7:cd:6b:20:d8:fe:99:19:fd:ff:
         da:d2:55:7a:8d:d1:1b:ff:b2:9f:72:05:03:37:a4:11:53:1f:
         e1:8c:eb:7e:3e:26:b1:89:82:e8:5c:02:57:91:23:fd:af:33:
         be:fb:d7:d4:9b:70:84:b9:65:2b:42:3d:45:f6:73:38:bf:d3:
         12:02:48:e6:c7:3f:6c:9e:f0:a5:11:03:b6:6d:b1:ac:69:b2:
         5d:27:94:5b:95:57:66:0e:9f:44:cd:96:fc:1e:38:26:9c:a6:
         75:32:de:8d:8a:aa:4e:b2:88:42:3e:f6:4b:7b:ee:4b:e0:68:
         c1:77:d7:31:b1:b4:5c:5a:b0:d6:a2:92:1e:a7:76:e7:cb:3c:
         14:82:4a:80:08:51:7b:1b:1b:76:ce:9d:93:97:53:3e:54:7c:
         fd:9f:d1:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 12:13:14 2026 by rpki-client