Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
File:                     REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json)
Hash identifier:          FOFCDk6P1/lrTdu87nZVdFI5oeAllSV3IpDEfpg5uwg=
Subject key identifier:   10:47:11:EA:08:CF:75:DC:4B:2F:77:57:90:95:E9:D5:91:23:A9:9C
Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6
Certificate issuer:       /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6
Certificate serial:       3554
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
Manifest number:          3554
Signing time:             Sat 04 Jul 2026 15:16:13 +0000
Manifest this update:     Sat 04 Jul 2026 15:16:12 +0000
Manifest next update:     Sat 11 Jul 2026 15:16:12 +0000
Files and hashes:         1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: iazbWpCCqfRY1Z9737t049QNErrb/fw2hfGwt9LJo70=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl
                          rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 15:16:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13652 (0x3554)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6
        Validity
            Not Before: Jul  4 15:16:12 2026 GMT
            Not After : Jul 11 15:16:12 2026 GMT
        Subject: CN=6a4923bc-be17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:58:e8:f6:19:c6:42:97:87:12:57:67:81:fd:
                    7d:d1:ae:a8:5a:0c:62:85:d5:27:8d:48:94:c8:4c:
                    4e:d5:e8:43:5f:a6:2c:4b:ea:d1:ed:e1:2e:45:35:
                    9c:4e:02:22:17:83:2e:f4:30:2a:43:63:97:4e:9f:
                    32:47:86:5e:c0:3b:a9:53:27:7b:8c:95:fe:cc:59:
                    97:12:fe:9b:40:cc:56:16:3a:1f:53:24:9a:74:07:
                    7a:6d:9b:d9:53:10:bc:55:67:98:70:a7:ad:6d:46:
                    c3:4c:da:f3:b8:97:17:df:ec:80:84:68:cd:d2:8d:
                    48:1a:05:99:71:a5:6c:cc:fa:18:d2:01:3f:57:ca:
                    3e:ef:85:c7:ae:6e:c0:1a:22:ac:06:df:cb:71:40:
                    6c:87:34:e3:69:1d:0b:21:1b:1a:d2:8f:bc:54:4d:
                    60:b5:4f:9d:41:3c:38:db:8b:3a:ac:b5:31:b5:d5:
                    3f:61:f7:66:52:4c:33:6c:af:b7:21:b3:07:41:d7:
                    96:d1:99:9c:7b:df:a7:d8:ec:bd:a1:73:a3:a8:99:
                    cb:36:c9:c4:4f:a8:0b:bb:b0:02:10:83:86:9a:75:
                    95:85:30:72:51:7a:0d:d1:99:d7:c1:14:86:de:af:
                    f6:c4:34:ba:a5:66:74:92:90:90:15:af:6a:67:c4:
                    c3:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:47:11:EA:08:CF:75:DC:4B:2F:77:57:90:95:E9:D5:91:23:A9:9C
            X509v3 Authority Key Identifier:
                keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:b1:b2:f6:45:d7:d1:8a:18:14:14:5d:6a:84:ab:3e:f4:b3:
         2b:4e:39:62:41:d0:52:3e:db:ce:f2:7a:31:df:fd:df:54:b4:
         73:cd:76:43:93:3b:a3:64:54:98:43:83:db:a8:d3:7e:49:e9:
         d8:ab:11:01:04:a9:af:5c:2e:e0:89:ae:65:8e:df:78:17:f9:
         31:11:92:39:6e:24:3a:71:ee:d8:e3:4b:23:a4:14:e0:b1:0c:
         96:a0:28:7c:46:de:04:b6:0a:02:77:9f:d7:31:02:16:75:df:
         ed:75:19:61:5f:93:ad:fd:9c:b8:6b:6c:7b:d5:ae:cf:f6:a0:
         29:48:b0:85:80:cb:26:f6:4e:1a:30:6d:98:67:f2:e0:02:f0:
         70:cd:bd:93:46:58:ec:d9:ef:6c:2c:ea:d7:23:72:d2:64:90:
         a1:92:40:c5:05:8b:31:29:34:6b:6e:ba:b7:9f:0a:d1:f1:ca:
         29:87:4b:27:58:1e:8c:b0:df:82:31:40:14:dc:46:6d:5d:22:
         ea:06:1f:db:e9:06:b2:16:af:6b:ce:0b:41:72:f4:05:3b:f8:
         6c:4d:7e:7f:37:b5:b8:04:17:dc:8b:fd:2e:c0:93:68:f3:bc:
         83:5d:c5:78:b8:d1:fd:c6:5d:c6:3a:e4:7a:00:73:9c:a5:be:
         db:da:65:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:40:28 2026 by rpki-client