Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft
File:                     QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json)
Hash identifier:          EqjwMuIiaPgM/0Fi8bNBoHNmmHJxqgyxajrKSYwBTOI=
Subject key identifier:   CC:80:17:AE:24:D5:8C:D4:64:5A:72:AD:D6:C1:FC:EB:07:35:63:5A
Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9
Certificate issuer:       /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9
Certificate serial:       F0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft
Manifest number:          F0
Signing time:             Fri 03 Jul 2026 07:12:05 +0000
Manifest this update:     Fri 03 Jul 2026 07:12:04 +0000
Manifest next update:     Fri 10 Jul 2026 07:12:04 +0000
Files and hashes:         1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: 4zSvBGn6hN7g7qFvCDTN3XOodrWaqS+8Inz8uDLkXYQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl
                          rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 07:12:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 240 (0xf0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9
        Validity
            Not Before: Jul  3 07:12:04 2026 GMT
            Not After : Jul 10 07:12:04 2026 GMT
        Subject: CN=6a4760c4-0e63
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:4e:1e:ce:5a:45:fe:94:3e:cb:2c:e9:3c:f8:
                    98:6f:25:49:22:a4:6e:b4:42:2c:b0:6a:33:1d:df:
                    cc:67:93:ec:50:9e:3c:53:30:b3:94:73:a9:b3:1f:
                    55:b4:c9:f0:4a:84:2a:ac:d3:1b:34:ab:fd:64:fc:
                    72:14:fa:19:b2:43:c4:06:55:5a:93:18:95:52:88:
                    e9:b7:49:31:fd:24:47:86:76:b9:73:ea:d5:61:b1:
                    ec:a4:4e:8f:ce:d1:1c:4a:46:4d:5f:8c:48:c5:6e:
                    46:91:34:83:4b:e6:ca:b6:0b:cd:25:bc:10:62:93:
                    61:cd:2d:bc:77:fd:fa:3f:2e:c8:89:f2:c3:e0:39:
                    65:67:76:0d:f9:e1:e8:cf:f4:4c:ac:c6:ac:10:b9:
                    eb:a9:be:39:53:83:91:f4:ab:6d:fc:52:af:b9:a9:
                    86:fd:22:a4:c9:2c:b5:67:84:e4:05:80:a0:71:a6:
                    95:a3:09:1d:98:ed:1b:4c:d8:00:e8:26:b8:a4:9d:
                    d0:30:39:38:d6:1c:d9:a8:4e:50:35:38:b4:7a:b0:
                    7f:c5:87:f8:e8:d2:e8:40:6f:c3:c0:37:3f:79:14:
                    72:6e:a0:a4:08:59:c4:e7:0e:9f:44:59:29:c8:fe:
                    17:d7:03:3f:ef:a3:b3:31:f8:56:52:2e:42:d4:51:
                    fe:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:80:17:AE:24:D5:8C:D4:64:5A:72:AD:D6:C1:FC:EB:07:35:63:5A
            X509v3 Authority Key Identifier:
                keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9c:17:a6:1a:e1:9c:4f:9e:08:b2:00:31:46:a3:d9:be:4c:6f:
         6f:ad:55:18:d0:4d:89:c4:86:58:c8:04:de:4d:ca:ed:8f:e3:
         04:b0:80:00:f1:45:3e:52:5c:84:d7:1f:37:4f:47:b7:62:40:
         ae:b2:24:f9:a9:eb:e7:69:a6:06:c1:27:e7:98:c4:ec:60:41:
         89:92:b1:38:53:b4:72:a8:88:ec:b0:7f:5f:60:23:18:d1:8c:
         d3:5f:af:52:bd:88:42:bb:dd:8e:8f:0d:c2:b9:0f:b6:c9:ac:
         3e:e0:52:cb:f0:3f:5c:35:e4:88:4b:3a:b4:42:79:9d:32:5a:
         65:da:71:19:a8:27:24:0d:4f:2f:37:81:6f:78:e8:3c:79:c1:
         5b:bc:f1:fc:71:94:27:4c:9c:eb:73:fe:83:0a:c7:87:a4:53:
         57:ae:2d:69:46:f8:73:b5:1a:13:9a:f4:d4:d3:8c:84:c0:e6:
         6f:f4:d1:8a:69:a5:e0:ad:61:20:75:3b:37:6a:ed:40:64:9f:
         a2:ab:17:fb:c2:23:97:54:3e:f2:4f:82:1d:d8:8b:06:f5:da:
         ba:a6:44:ea:9a:51:59:f6:7f:ed:21:35:b0:8a:ed:9e:d6:8b:
         f8:2b:7f:ec:d8:a9:77:45:b0:8e:5d:df:1b:bd:8c:38:51:0e:
         75:77:b0:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 07:53:51 2026 by rpki-client