Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
File:                     2zxJsbLapmnoFyU5XfcR6D-K09E.mft (raw, json)
Hash identifier:          IUjmth71Z+Md0vmNnnVsJiM1b1bbMjEH6STWTta49Ww=
Subject key identifier:   BA:80:B4:C7:B6:BA:48:B9:58:43:46:0B:61:D1:52:A0:BE:AB:3F:C0
Authority key identifier: DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1
Certificate issuer:       /CN=A91B1833/serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1
Certificate serial:       049D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
Manifest number:          048D
Signing time:             Sun 05 Jul 2026 00:23:45 +0000
Manifest this update:     Sun 05 Jul 2026 00:23:45 +0000
Manifest next update:     Sun 12 Jul 2026 00:23:45 +0000
Files and hashes:         1: 2zxJsbLapmnoFyU5XfcR6D-K09E.crl (hash: XwvmRTvxSp+PE/ahk9XKQ9nL5U9vlRnPH4fqG9mRyYI=)
                          2: 93CBDF448EE111EC9D298C83C4F9AE02.roa (hash: lRK5hM0+Ajz1Iu+TnpLxwj4NeRvEETgFEYDFPhqxkGM=)
                          3: 48ECA4C48EE411EC9936A210C4F9AE02.roa (hash: SzKheHkyXGhCU9L9E9bj5O9UK/QqaZCVghpUUMIvziw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl
                          rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 00:23:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1181 (0x49d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B1833, serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1
        Validity
            Not Before: Jul  5 00:23:45 2026 GMT
            Not After : Jul 12 00:23:45 2026 GMT
        Subject: CN=6a49a411-4f0a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:6e:b9:68:a2:30:88:df:5b:8e:d8:a3:9e:31:
                    59:8b:59:f7:e4:36:a9:e8:82:4b:3d:1b:55:51:af:
                    ca:c9:26:7b:bd:95:fb:6c:10:8b:fa:02:bf:95:cd:
                    d9:fe:a0:47:57:86:3a:a7:2e:a3:57:75:30:8f:6a:
                    54:fa:a2:b2:f3:d0:7d:07:30:8f:9d:20:18:cb:24:
                    6e:7c:21:6f:93:9c:de:48:09:53:21:84:01:03:16:
                    65:52:56:d1:02:a5:a2:70:e1:6a:f9:32:87:93:18:
                    93:d4:70:95:59:85:a3:49:a4:6b:44:ee:ff:5f:01:
                    a1:d9:b4:aa:11:21:37:68:9e:38:1b:8c:77:68:28:
                    6c:da:7d:bc:5b:56:98:6c:ce:08:c9:e2:d2:09:b0:
                    81:d8:4f:f9:8c:6e:51:4c:e9:7d:80:ce:ee:c6:5e:
                    96:a7:b2:74:54:66:a1:f3:d8:5a:a6:2a:4e:e1:c6:
                    53:b0:d4:cf:bf:19:2b:cd:86:2b:32:3e:52:eb:1d:
                    65:7a:a3:27:35:9c:ec:db:68:aa:d3:1b:ea:ba:95:
                    86:5b:ba:9c:4f:f2:5e:0c:68:91:69:a7:7f:b1:d3:
                    84:57:ad:6d:07:e2:f1:87:2e:49:f4:c6:93:7d:83:
                    61:15:95:96:95:54:71:b2:d2:a6:7a:1e:1c:a5:f8:
                    77:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:80:B4:C7:B6:BA:48:B9:58:43:46:0B:61:D1:52:A0:BE:AB:3F:C0
            X509v3 Authority Key Identifier:
                keyid:DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:10:01:ad:a0:4f:f5:97:c5:42:e7:a0:91:33:d0:13:f7:59:
         d4:99:94:12:9f:ae:ad:50:9e:09:95:df:01:ce:1e:0d:f0:a5:
         31:b6:74:5d:85:dc:42:42:fd:6e:6b:19:38:f6:38:0d:f0:60:
         1e:a0:60:fc:2e:06:2a:e7:a2:d8:c5:24:80:f9:e0:1f:7a:f3:
         bb:fe:31:5a:b9:0e:f8:d6:2b:00:fc:27:19:8a:a6:52:2b:63:
         26:b9:ab:6d:61:ef:c8:b1:2f:b9:c4:b5:02:81:66:42:7d:31:
         39:1b:ab:59:50:dd:19:5a:9f:d8:88:02:b8:52:87:d3:50:e3:
         23:14:a4:43:c9:af:15:a9:8b:ff:04:f7:41:0b:9a:58:f6:80:
         c8:cd:4e:25:63:38:5e:51:4c:0f:ad:26:91:11:7e:fe:fc:8e:
         55:3d:fe:bd:b7:4e:2f:5a:89:6a:cd:95:a1:9e:3f:b2:9c:76:
         b9:ab:3c:1e:62:97:3e:a7:ef:1c:33:eb:1a:0f:12:25:fd:9e:
         05:e9:1a:e6:34:ca:45:39:8e:08:e9:b1:01:be:84:51:5f:0e:
         8c:a9:87:37:f2:98:3f:39:9f:10:b7:66:c3:bf:c5:60:a4:0b:
         20:83:d9:d4:4a:e1:36:26:2b:7b:53:fd:2f:3e:0c:d3:bd:37:
         ba:28:60:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:20:58 2026 by rpki-client