Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft
File:                     09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json)
Hash identifier:          IIKoIz5uAXUlsl4pa8OTMZp28x1zsthm5YS1sCl0CxI=
Subject key identifier:   64:E8:4F:1F:39:ED:66:05:6A:18:AE:CF:A8:E7:D2:4A:65:89:20:29
Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A
Certificate issuer:       /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A
Certificate serial:       0155
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft
Manifest number:          0155
Signing time:             Fri 17 Jul 2026 01:34:34 +0000
Manifest this update:     Fri 17 Jul 2026 01:34:34 +0000
Manifest next update:     Fri 24 Jul 2026 01:34:34 +0000
Files and hashes:         1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: NPE1pfudplma1MvDrsRy142M6VOsZ0hYva1/Ycje7QE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl
                          rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 01:34:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 341 (0x155)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B9A77, serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A
        Validity
            Not Before: Jul 17 01:34:34 2026 GMT
            Not After : Jul 24 01:34:34 2026 GMT
        Subject: CN=6a5986aa-0d45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:a0:4d:56:f7:6f:9f:66:06:f8:3c:8b:da:e3:
                    7b:ee:a4:fc:d5:5d:78:21:3b:14:b1:89:6f:87:e6:
                    8d:25:4f:e8:f4:75:98:18:b8:76:cd:a7:8a:62:8b:
                    6c:37:74:3c:4c:df:cd:0b:12:dd:46:14:64:19:8f:
                    0a:34:69:24:9e:ae:e9:5b:55:49:ea:a1:c2:97:48:
                    58:25:eb:12:52:b9:1f:b0:20:41:3a:78:f6:d8:f1:
                    a8:fd:de:31:4a:41:04:99:05:b5:bd:1d:e9:06:c4:
                    e0:d5:3e:9e:6f:fa:ac:02:a1:20:96:33:cc:12:2f:
                    52:14:00:b3:01:51:74:f2:a0:5e:d0:e9:fd:fb:d6:
                    1a:cf:3c:2d:6e:50:96:a5:73:a1:98:86:af:66:0c:
                    4f:db:b4:a9:47:d4:9a:50:24:a1:01:0a:62:25:20:
                    60:bb:1f:52:dd:37:5e:ab:2c:e8:68:fb:b3:50:59:
                    dc:c0:d5:1c:7b:cf:39:c4:14:7f:50:84:11:15:b8:
                    2d:d5:55:a1:e0:06:4d:e0:30:2c:0b:8d:e0:0f:3a:
                    b6:8e:ff:f4:d3:7c:cd:4d:c8:1f:6f:aa:49:15:bb:
                    e2:46:c9:fc:5f:43:11:a9:a3:2c:bf:ce:84:12:88:
                    b1:93:f7:9b:8e:ae:a1:e2:8f:6a:1e:09:e4:3c:5d:
                    13:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:E8:4F:1F:39:ED:66:05:6A:18:AE:CF:A8:E7:D2:4A:65:89:20:29
            X509v3 Authority Key Identifier:
                keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:ca:ad:ab:7b:be:89:ee:71:f9:8c:c5:b2:e2:51:9b:60:fd:
         18:32:18:49:9a:30:c7:c1:22:4c:e1:e3:80:b2:76:69:3c:9c:
         71:cd:c1:e3:52:56:64:6e:1f:b9:69:5a:80:d3:5d:88:66:9a:
         0c:94:a5:87:61:0e:82:72:85:5a:23:fb:2d:94:c7:a6:c3:58:
         18:83:6c:e9:10:c2:b2:f1:9c:2c:93:5f:58:a2:c2:ba:50:5e:
         36:3e:f3:6e:16:ad:5a:71:2f:06:2d:0e:e7:1f:83:c1:95:4d:
         d2:b0:3d:e6:00:d2:74:df:b9:de:c7:65:95:82:6c:5f:63:00:
         9e:16:f8:fe:57:2d:40:74:9c:a8:8e:3d:6c:ef:b2:02:11:91:
         2b:89:3c:f2:e8:4c:7a:84:23:c6:08:ed:b2:50:c9:8e:7c:08:
         5b:da:8f:b6:fe:02:3c:0c:30:35:94:90:3d:c7:e4:45:5d:5a:
         5c:a9:87:6d:cc:b6:24:ae:8c:dd:88:40:72:64:0b:52:50:24:
         9f:7b:3b:f0:59:ac:35:99:7d:6d:d8:54:33:2f:57:4c:af:73:
         2e:46:c2:ec:f2:40:7f:85:a1:87:d5:b0:35:8f:31:29:32:5f:
         41:50:ea:46:67:69:d1:ab:e9:08:de:b3:b2:d0:c2:ce:3b:49:
         97:bd:e9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:18 2026 by rpki-client