Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
File:                     BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json)
Hash identifier:          X6tKeQwIiVzKSCZIruvmeqXJy9IrcJw0Kr7YJLC2ppo=
Subject key identifier:   E0:B9:47:3D:68:31:DA:2B:11:C5:6F:44:FC:FA:D6:84:BD:76:2A:E8
Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC
Certificate issuer:       /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC
Certificate serial:       029A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
Manifest number:          0293
Signing time:             Wed 15 Jul 2026 02:37:55 +0000
Manifest this update:     Wed 15 Jul 2026 02:37:54 +0000
Manifest next update:     Wed 22 Jul 2026 02:37:54 +0000
Files and hashes:         1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: 6zjfuxxSQqq6CQUvzyTnRSjDfLspYWagYbNMO9Oss9Q=)
                          2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: 94M44dsN95Cfdn+68CbMlhuF5n5qBQCEV7YwA9S7Ln8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl
                          rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Jul 2026 02:37:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 666 (0x29a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC
        Validity
            Not Before: Jul 15 02:37:54 2026 GMT
            Not After : Jul 22 02:37:54 2026 GMT
        Subject: CN=6a56f282-d29b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:8e:ae:d4:72:3f:90:06:31:4b:e2:93:ed:c7:
                    54:34:3d:36:aa:03:06:c9:0f:5e:98:7e:1f:7c:9b:
                    27:d6:85:04:99:9f:9e:33:6c:ce:3e:1e:8e:08:c7:
                    03:09:a1:60:95:5d:bc:e7:0d:ac:88:56:8f:41:bf:
                    20:ad:15:07:4b:29:0b:2e:ff:a9:51:aa:6a:63:72:
                    b6:eb:d0:cd:29:f4:f6:af:85:37:18:26:9c:3e:18:
                    88:6a:c5:ec:20:19:99:48:7c:a1:ef:2e:85:bc:9c:
                    eb:6b:67:6f:ba:28:a0:1e:78:f7:91:15:29:a4:f8:
                    3b:2f:26:57:b5:4e:96:a6:92:a6:d0:1f:06:80:6a:
                    b8:89:e6:79:c9:20:69:ce:06:36:d5:9f:68:f5:03:
                    e4:05:ed:6c:ab:bf:3c:3c:60:68:be:09:ca:e2:ac:
                    73:33:4d:99:0a:a0:30:6b:1e:e7:b5:23:6f:c1:1d:
                    e3:b0:c6:84:91:ee:16:9c:80:fc:55:03:95:23:35:
                    dc:12:c9:fb:3e:ac:4a:28:c0:85:91:35:db:e1:17:
                    6d:a7:d1:19:3c:99:cc:ab:2f:7d:88:8e:7a:7e:c9:
                    e9:fa:17:ed:2a:9f:2a:3e:b7:29:af:ae:0e:74:55:
                    90:fb:e4:25:65:3f:db:16:4b:6b:b3:76:d5:0d:5a:
                    d4:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:B9:47:3D:68:31:DA:2B:11:C5:6F:44:FC:FA:D6:84:BD:76:2A:E8
            X509v3 Authority Key Identifier:
                keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:94:89:e7:6a:06:1d:e0:3f:0e:53:0d:70:4d:57:3d:eb:6a:
         39:b2:a4:69:86:cc:92:16:02:b7:26:a2:4e:f7:03:96:a2:96:
         d9:a5:4f:09:69:93:98:0f:bf:ef:12:e8:84:ae:ff:9c:2f:b3:
         db:c2:9a:f5:55:6a:6a:d5:dd:75:81:c7:a8:03:5c:80:78:28:
         1a:06:65:21:c9:9e:c3:e4:e6:41:c6:71:2b:f4:8f:43:8f:12:
         92:d3:51:79:10:60:10:18:49:dd:3d:2d:cd:8e:5c:ca:a4:1d:
         38:00:2f:37:b2:dd:56:0e:f4:0e:38:ad:c8:cf:74:ac:36:ce:
         3b:2e:30:b1:8e:ed:6b:0b:7f:d7:8f:5f:18:61:91:67:27:66:
         8a:05:31:ed:d4:4b:b4:d3:fe:b8:54:e9:d4:22:9d:0e:9d:39:
         d8:e3:04:58:41:21:d8:8a:63:5b:7e:f4:a7:0c:61:00:f2:63:
         69:68:ac:e7:2d:78:32:27:84:5e:a7:09:05:ae:0e:da:c6:84:
         94:a3:6a:59:18:2c:76:00:ac:22:a8:04:64:9a:d5:eb:39:c2:
         92:92:d5:ab:90:22:e2:07:42:1b:9c:9e:d4:88:8f:f6:18:f2:
         ca:a9:58:3e:51:31:fd:43:37:10:3a:61:c6:61:1f:ae:48:08:
         16:67:53:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 19:26:22 2026 by rpki-client