Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
File:                     XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json)
Hash identifier:          aNImzWOVOm3GKReR4s+mf77QBnp/1BgMj3LdBDw4CSo=
Subject key identifier:   E7:34:49:0D:11:7E:21:98:97:B0:B3:B0:B4:5D:57:04:DB:D0:C1:94
Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE
Certificate issuer:       /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE
Certificate serial:       0123
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
Manifest number:          0115
Signing time:             Fri 17 Jul 2026 07:14:52 +0000
Manifest this update:     Fri 17 Jul 2026 07:14:52 +0000
Manifest next update:     Fri 24 Jul 2026 07:14:52 +0000
Files and hashes:         1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: HKc5d+lhumeVnDVuBC/URA5iOzV0o+kmidwXOW4p440=)
                          2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: 72tND6FYfSKJu0sQNqpeEtwTYhVCnqpq4nZnR1IjkYo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl
                          rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:14:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 291 (0x123)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE
        Validity
            Not Before: Jul 17 07:14:52 2026 GMT
            Not After : Jul 24 07:14:52 2026 GMT
        Subject: CN=6a59d66c-85cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:51:5e:06:52:a5:96:a7:57:15:a9:45:e6:e9:
                    8d:d8:04:2a:40:c8:6e:c5:28:bc:ce:35:05:d1:bd:
                    34:06:34:58:5d:c6:09:a9:ca:20:31:81:b2:d5:99:
                    7f:8a:a6:42:de:96:f7:50:e8:57:7d:6d:d0:c5:ff:
                    cb:b4:4f:c0:2f:2b:64:dc:aa:91:23:94:39:a6:83:
                    cf:6d:a4:1d:dd:2f:8c:a1:02:91:24:d0:3a:89:bd:
                    ce:c7:f4:ab:60:9a:23:d7:6b:82:aa:57:6a:51:e5:
                    77:7d:a4:7a:9a:c0:dc:fd:00:b3:46:ee:24:9d:a4:
                    16:19:e6:1e:fd:f4:b4:c8:01:31:5f:a0:28:e7:d5:
                    82:be:9b:c1:dc:32:af:f5:44:b7:ef:45:ec:f7:68:
                    2e:9b:2b:9f:b1:a2:f6:92:6a:fb:8b:5b:f0:de:bf:
                    a4:e7:78:ae:96:cf:e8:de:de:7e:76:cc:cb:58:8f:
                    57:80:71:7a:f0:cf:25:bd:df:0a:de:f5:77:fb:a7:
                    89:8f:39:62:df:78:1f:b6:7f:46:ae:62:7c:4f:40:
                    31:ce:ac:46:22:2a:ac:8d:82:9c:fe:0b:9f:db:78:
                    34:2d:cf:9e:d4:2b:ba:dc:59:fb:b9:0c:72:d9:08:
                    65:8e:99:7a:d2:92:8a:f4:a4:c8:66:23:89:f5:8c:
                    0e:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:34:49:0D:11:7E:21:98:97:B0:B3:B0:B4:5D:57:04:DB:D0:C1:94
            X509v3 Authority Key Identifier:
                keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:83:5d:2a:92:94:06:12:c7:49:4d:72:1b:80:25:b6:37:94:
         c9:79:6d:d9:68:ef:be:27:6b:22:de:fd:68:fc:b9:09:c2:0e:
         c9:84:b9:a4:2e:3e:7a:90:b9:b1:c6:89:b6:4e:19:03:c3:2a:
         d9:af:ee:9f:75:a3:4d:8b:d9:3c:b1:9e:c2:18:51:37:a2:a2:
         73:16:dd:b4:05:c7:f1:d0:e5:7e:c3:1c:9e:57:4f:99:7e:86:
         d6:f5:8b:1d:f5:43:7d:aa:23:38:73:51:26:6f:b7:8f:5f:71:
         c5:bf:ad:66:55:cb:96:13:da:28:fa:3d:43:2f:89:e1:b7:7d:
         f6:2d:3e:0b:46:9d:8a:02:e4:c3:c7:19:01:35:ff:6f:5f:08:
         43:e6:09:dc:c3:31:1e:57:86:ae:10:e0:5d:47:c5:66:9a:95:
         ed:2e:b8:b5:58:8e:b3:a8:ab:9d:a7:e2:42:fe:52:8b:13:ac:
         00:a5:fb:2a:e6:3c:ac:5b:04:e3:d9:41:ad:99:13:64:af:17:
         a0:27:00:d0:c4:82:9f:91:28:37:e2:53:8b:90:c4:51:18:23:
         d1:26:7f:ea:9d:00:8c:48:db:00:cc:5d:3f:f0:e4:21:28:1f:
         12:3a:c7:16:6a:1c:51:03:d0:90:3f:d2:52:5f:9d:81:e6:e9:
         0a:92:bf:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 12:13:23 2026 by rpki-client