Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
File:                     2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json)
Hash identifier:          FP1VCxaYSKmXRs+RDPA5Ri9L6X8ILe3/erquxIkH+ro=
Subject key identifier:   03:C0:73:87:E9:C7:48:4E:3F:FC:00:69:02:D8:71:10:57:8E:22:2F
Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73
Certificate issuer:       /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773
Certificate serial:       0730
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
Manifest number:          0726
Signing time:             Thu 16 Jul 2026 22:22:58 +0000
Manifest this update:     Thu 16 Jul 2026 22:22:58 +0000
Manifest next update:     Thu 23 Jul 2026 22:22:58 +0000
Files and hashes:         1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: kiHgctUXk+mfsLycfCWRHw4sbiWSEpVTFUjDma++EXo=)
                          2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: VgbeXAdf455JZk0LmbiShFevJbfj2qjooSF8sLvpt2k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl
                          rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 22:22:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1840 (0x730)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773
        Validity
            Not Before: Jul 16 22:22:58 2026 GMT
            Not After : Jul 23 22:22:58 2026 GMT
        Subject: CN=6a5959c2-6e1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:1b:c5:4d:46:64:08:79:58:00:e1:3b:45:e0:
                    76:70:8d:09:fe:42:06:d0:fa:dd:99:62:e9:08:5b:
                    0a:57:cb:c2:07:7d:da:3b:a2:ad:81:09:17:53:10:
                    ca:ec:c1:68:f7:c2:a4:e9:4c:9a:98:2e:8c:7e:e7:
                    07:17:36:a9:f1:a7:e0:6e:e0:2e:18:3c:33:fd:ee:
                    c4:09:90:b2:65:19:b4:b7:08:da:60:2e:ad:57:a7:
                    ac:ec:16:ac:a8:f7:87:14:91:01:0f:9b:b9:6c:de:
                    fc:94:c0:ad:1c:2a:fd:bb:cb:f9:f8:e6:da:12:18:
                    7d:00:b7:99:3d:48:89:b9:e3:e8:27:78:7d:64:b0:
                    6b:94:84:8a:f9:d0:f0:74:3b:20:6c:b7:80:d7:be:
                    2a:31:d6:0f:7e:21:1c:66:90:47:85:1e:50:d2:b0:
                    9e:59:04:2d:53:ab:e8:36:78:e7:72:1c:af:b8:02:
                    ba:e9:c5:a7:1d:44:9a:c7:f7:70:e5:d8:c9:63:0b:
                    85:e1:52:56:34:92:6d:75:7a:59:2f:cf:60:81:04:
                    aa:e3:e5:c0:09:bb:26:b2:c2:07:ad:1d:8e:69:e2:
                    d0:ce:fc:32:36:8b:21:32:08:31:ac:05:99:81:ec:
                    c2:58:d2:a2:b7:85:82:a0:16:9e:7d:34:2b:5c:ef:
                    ed:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:C0:73:87:E9:C7:48:4E:3F:FC:00:69:02:D8:71:10:57:8E:22:2F
            X509v3 Authority Key Identifier:
                keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:c4:fc:11:ae:2d:c7:b0:aa:7a:24:f1:d9:58:92:0a:e0:83:
         d3:fb:7e:fe:53:01:d9:d1:c3:e9:ef:c1:80:65:d1:55:db:c6:
         fb:a6:0d:38:2a:3d:79:87:36:7c:af:08:0e:8f:e3:d1:8f:93:
         47:73:99:f5:ea:70:c8:62:c5:43:55:aa:44:2e:2b:9d:73:4a:
         5b:1c:e1:1f:aa:69:bc:6d:e8:0c:ad:dc:6a:c8:f9:4c:37:d0:
         b1:bf:21:9f:e5:a2:21:00:24:4c:ce:ca:32:11:1a:26:a9:34:
         34:4e:00:c7:10:e7:08:f0:61:ae:42:ba:24:9f:9b:c3:ef:1a:
         2f:01:bc:4c:0e:80:65:d8:20:a4:10:58:b0:c5:29:a0:a5:22:
         a3:61:66:d4:a0:22:b3:e0:15:b5:ba:1c:60:f2:1e:6c:d6:3f:
         bb:84:64:7b:69:41:31:b7:c5:db:4c:bc:c2:d3:aa:fc:fd:06:
         7f:a3:31:51:5b:e9:29:c3:d0:e7:26:0f:0c:44:00:69:79:49:
         87:c5:3f:98:6f:90:ef:dc:49:dc:2b:85:67:f9:c3:29:73:0a:
         07:95:5b:ac:c8:e8:f1:35:84:d1:b4:c2:c3:4f:a0:ea:a5:c0:
         d1:94:b7:37:53:44:96:1d:9c:4e:13:0a:f9:1f:87:c9:ff:1d:
         cf:43:1b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:29 2026 by rpki-client