Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
File:                     15aZWndnWcQmQxeAAofr7u-0umo.mft (raw, json)
Hash identifier:          W5zVj3TyCICeM9pleDnVWtgX1TCkuw/7Q5VvJeh+H8s=
Subject key identifier:   40:0E:A1:CE:73:14:92:3C:A4:C4:E6:17:BB:F7:60:61:76:43:65:7A
Authority key identifier: D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A
Certificate issuer:       /CN=A91C022C/serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A
Certificate serial:       0127
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
Manifest number:          011D
Signing time:             Tue 07 Jul 2026 07:02:33 +0000
Manifest this update:     Tue 07 Jul 2026 07:02:33 +0000
Manifest next update:     Tue 14 Jul 2026 07:02:33 +0000
Files and hashes:         1: 15aZWndnWcQmQxeAAofr7u-0umo.crl (hash: fNpw7CaITZiLyw9fRpYs2gaN6S86Jl+t9QgMffDyE2U=)
                          2: B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa (hash: 64GI0jvZyfRwaaUyqyoO9+bG/AmsXG/f9aCo9uCRhhE=)
                          3: 90405CE2D5DD11EF99075D78C4F9AE02.roa (hash: JQiJdIpN3R5SOAUVHjnNQhCnZmq0gQJLMPrdXEKGdyA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl
                          rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 07:02:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 295 (0x127)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C022C, serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A
        Validity
            Not Before: Jul  7 07:02:33 2026 GMT
            Not After : Jul 14 07:02:33 2026 GMT
        Subject: CN=6a4ca489-d18e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:63:4b:16:dc:bf:b0:a6:4e:e9:5f:bb:91:59:
                    82:4c:86:33:72:07:98:bd:4f:9b:b2:4f:61:7c:5f:
                    c9:70:5f:61:05:47:34:83:8c:7c:d7:8d:5b:ab:28:
                    21:9a:7f:42:12:f7:c4:ef:7b:77:42:92:c0:fc:70:
                    19:b2:3b:f2:bf:26:b7:7d:dd:c2:9f:7d:65:8e:5b:
                    26:d5:c7:df:1e:ee:3a:87:b2:9f:8a:39:1b:63:71:
                    38:e6:6a:93:d0:2e:6c:d7:b1:4f:d9:ee:a9:57:3a:
                    ea:e8:cc:c3:26:d6:47:a7:7a:14:1f:7b:4f:a0:c3:
                    f9:f6:76:fb:03:61:19:22:d2:bc:52:96:77:5d:23:
                    6e:47:70:8f:b6:f3:f2:54:40:5b:73:f8:dc:48:91:
                    a2:22:0a:7e:03:26:44:09:bc:fa:44:28:80:0d:5d:
                    e0:f4:7d:dd:be:52:e4:ed:69:9c:32:26:37:c4:e8:
                    81:01:98:de:fe:9e:b1:61:ae:35:2c:5c:65:6d:ce:
                    2d:92:96:7e:87:c8:60:6d:0f:95:67:93:7b:df:73:
                    2c:0b:51:3d:0d:5b:f9:fb:be:48:20:37:9f:a6:ec:
                    1c:3c:78:d7:d9:e3:8e:7c:48:ba:d9:d1:37:9f:71:
                    3d:f4:05:c7:ae:c2:d2:a6:81:b2:22:1e:52:72:2d:
                    4b:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:0E:A1:CE:73:14:92:3C:A4:C4:E6:17:BB:F7:60:61:76:43:65:7A
            X509v3 Authority Key Identifier:
                keyid:D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:2c:a2:50:d8:10:7f:b9:a0:17:12:71:9a:a4:f6:f9:13:81:
         ef:3f:30:74:2c:3f:eb:f9:17:3c:f8:b1:d3:1b:fa:13:62:8c:
         ac:b7:3e:15:7d:f6:15:a0:8a:96:6b:5d:ea:da:66:4d:d2:18:
         f6:ee:58:c6:33:67:22:c9:83:08:a4:15:fb:0a:14:b5:88:cc:
         1f:53:b6:6d:31:06:22:d4:84:30:56:6b:45:84:78:4e:4e:64:
         fd:df:32:c3:8d:f7:11:d5:58:9c:00:df:8d:52:78:49:dc:5c:
         05:63:e1:c5:97:ab:37:de:01:fd:c8:27:19:34:d6:48:d5:05:
         40:80:fa:ae:d1:4b:94:28:e0:43:3c:46:68:7e:46:2c:e0:86:
         2b:b2:87:e8:41:80:f6:0d:00:01:e6:71:2a:97:d8:ac:76:4a:
         cf:b4:db:11:61:8e:06:42:c2:2a:5a:65:d7:c4:66:df:90:09:
         e8:56:03:8f:18:55:e6:22:18:c9:0c:46:f5:12:38:b3:77:16:
         8e:dd:e6:3d:b8:44:34:a7:57:45:22:06:33:5d:cf:6d:58:40:
         90:44:a1:a1:91:d9:44:95:d0:f7:0c:95:63:41:d3:44:da:a2:
         5f:0c:01:88:c4:12:85:ca:91:09:bc:9e:42:4a:86:04:3b:76:
         08:8b:4a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 13:19:41 2026 by rpki-client