Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft
File:                     4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft (raw, json)
Hash identifier:          hEt/UJZHIjs9+9aonoTjHEUwIjOc7FpuhEokF7iAUus=
Subject key identifier:   F8:52:F7:2F:D9:0A:A6:9D:17:FB:28:F7:7E:A9:CA:CB:DE:6C:79:1B
Authority key identifier: E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6
Certificate issuer:       /CN=A91BBA4F/serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6
Certificate serial:       D9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft
Manifest number:          D6
Signing time:             Fri 17 Jul 2026 07:52:26 +0000
Manifest this update:     Fri 17 Jul 2026 07:52:25 +0000
Manifest next update:     Fri 24 Jul 2026 07:52:25 +0000
Files and hashes:         1: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl (hash: q9sj0YvLzCAwr2bDvvtS8NstjwxtowdBLL2QfEcRmjw=)
                          2: 58C16E043B7811F099AF3F55C4F9AE02.roa (hash: ff9Hb3p8NVhNbBeRoRPoSLLnHieGzUbHBlT6U/ikvfQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl
                          rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:52:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 217 (0xd9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BBA4F, serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6
        Validity
            Not Before: Jul 17 07:52:25 2026 GMT
            Not After : Jul 24 07:52:25 2026 GMT
        Subject: CN=6a59df3a-0913
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:54:f1:7d:c3:52:3c:57:7f:f9:22:8f:15:bd:
                    23:f8:32:8c:0d:5b:ec:9a:f2:6c:0e:0e:6c:ed:0b:
                    76:8b:e0:8a:71:6a:0d:9e:1c:5f:48:3b:1d:c4:da:
                    6f:07:3c:0c:d8:d6:33:a3:e6:8d:2f:36:c4:90:79:
                    14:c6:ef:3a:2e:0a:1e:9e:85:bc:c1:f3:d0:75:0b:
                    4a:23:e2:65:45:74:dc:38:62:b4:43:33:92:96:eb:
                    e3:8d:6b:ce:87:d4:fd:5b:e9:56:60:75:50:c6:15:
                    d7:30:b4:23:22:84:33:40:b2:2c:ab:11:b6:18:46:
                    a4:28:3a:69:93:92:a4:8f:36:84:bb:4f:7e:f0:34:
                    78:f4:eb:95:6b:14:d8:db:9e:40:cc:d3:79:cb:43:
                    4e:59:43:6c:7e:63:c8:95:94:5d:b4:82:1e:a6:d1:
                    fc:13:30:9c:59:73:f0:05:53:34:ea:9b:a7:f3:18:
                    ad:13:8b:4e:81:31:b4:cb:c6:ba:14:34:66:7f:cb:
                    07:bc:5d:49:f5:16:ac:e2:e5:bc:dc:40:46:f6:aa:
                    db:08:88:d8:d7:4c:24:56:df:87:67:98:f1:74:b0:
                    27:f2:6b:1f:25:04:77:35:71:48:97:ce:51:1c:72:
                    0d:d6:a9:67:2d:e4:9a:9c:b0:a0:42:e1:94:97:9f:
                    ce:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:52:F7:2F:D9:0A:A6:9D:17:FB:28:F7:7E:A9:CA:CB:DE:6C:79:1B
            X509v3 Authority Key Identifier:
                keyid:E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:76:f1:aa:5d:93:91:b1:9a:9e:95:cc:05:5c:2d:45:6d:e2:
         1b:8c:86:ee:1c:5d:c5:dc:52:1c:7f:bb:e6:ce:ed:60:52:17:
         2f:6d:d2:6e:9c:07:6a:30:1a:92:ec:f4:c9:79:df:0e:53:2d:
         7e:b6:d6:c3:1e:c8:6b:47:f6:08:0a:88:10:a4:de:0b:e2:bb:
         a9:93:41:9d:cb:aa:aa:77:e2:2e:cb:66:a8:7b:8e:22:b5:f4:
         a6:d2:ea:dc:0c:0f:27:84:fa:e7:ee:78:9b:0b:71:a1:37:0e:
         51:0a:04:bd:03:3f:02:d3:d6:8c:7a:1a:0d:34:aa:d3:bc:c4:
         68:34:f3:e2:f0:eb:f3:cc:9b:ab:fc:bc:dd:eb:dd:64:9a:5c:
         3f:c4:ff:c1:2b:ef:12:93:c9:c7:5e:c0:24:0a:7c:f6:b3:cc:
         b4:88:32:75:3c:0a:be:75:60:c2:f9:fa:1c:05:46:fd:e3:7c:
         07:8c:67:9c:ec:b4:47:b3:17:c2:06:8a:50:60:7f:44:1c:44:
         97:2c:d4:f5:06:cc:be:cb:ad:f5:e9:12:5f:80:b8:75:f7:a9:
         e3:56:11:5e:98:b1:d5:89:c0:3c:2e:1a:14:b9:98:7b:07:7c:
         f9:40:f6:2a:c7:b0:00:4c:ed:94:c0:d2:2f:e4:1c:59:fd:d4:
         14:19:19:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:23:29 2026 by rpki-client