Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
File:                     OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json)
Hash identifier:          F49cppp86X1U5xa2S4xU0t4qcTGl/q0icRsTe1Ju7P0=
Subject key identifier:   F3:DC:2B:75:0E:51:B0:25:CD:9F:01:6B:28:ED:3D:AE:EA:37:3C:61
Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8
Certificate issuer:       /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8
Certificate serial:       0146
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
Manifest number:          013E
Signing time:             Tue 07 Jul 2026 06:33:19 +0000
Manifest this update:     Tue 07 Jul 2026 06:33:18 +0000
Manifest next update:     Tue 14 Jul 2026 06:33:18 +0000
Files and hashes:         1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: ZSYG4Y2Q0GnPzYgkhEQBuiQOnz4L39amK008exIdsNI=)
                          2: 03FFD61EEF8A11F09F678C04616F56BC.roa (hash: cAWrYOUdSRsxkdYtOQ0K7zXjxO3SOJaVmj7JDmeFh+o=)
                          3: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: B1/WSOOIaUIICIAoWxESuLK0xmGEdJQLFEyBKXVApQY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl
                          rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 06:33:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 326 (0x146)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8
        Validity
            Not Before: Jul  7 06:33:18 2026 GMT
            Not After : Jul 14 06:33:18 2026 GMT
        Subject: CN=6a4c9dae-c92b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:af:6e:6b:e7:f8:bd:07:03:fc:ef:4d:3e:d3:
                    09:88:96:2a:8a:f5:31:10:1e:6e:e8:0e:8f:53:0c:
                    23:f3:ef:5a:da:d5:12:da:b5:a5:21:e6:2b:3c:71:
                    a9:f0:6f:7d:f1:25:0d:4a:df:5f:a5:e3:9b:b2:cd:
                    71:29:d1:e4:83:ba:07:9b:ad:17:92:e4:45:6f:35:
                    dd:07:36:ba:aa:dd:07:09:c3:7c:a6:e2:95:a5:f9:
                    13:75:54:d6:17:f6:8c:81:1d:06:b7:bf:f5:f4:5c:
                    82:3d:54:2c:75:c7:6d:79:35:d6:93:b3:dc:8d:e2:
                    2d:b1:b9:b9:05:34:61:08:15:30:f3:33:2c:29:35:
                    ae:1c:19:a5:b2:9f:81:0e:a5:88:27:e9:a2:fa:4f:
                    90:76:96:84:1d:ef:20:d3:ab:e5:3d:bc:55:b7:ef:
                    a9:27:a6:06:14:24:4a:af:61:42:58:78:e9:d6:38:
                    21:4f:08:5f:38:7c:d3:96:8f:a7:05:0e:aa:ca:1d:
                    bf:c4:0e:c1:e8:3b:b3:7e:35:56:14:9c:21:28:79:
                    d0:88:9b:9b:61:ef:c2:09:a9:ce:e3:7d:6c:0e:2c:
                    ba:a4:09:df:05:a3:f0:1c:b7:9e:62:f6:18:f0:5b:
                    43:c3:66:51:af:4d:80:a4:39:dc:6a:ab:32:7d:2b:
                    33:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:DC:2B:75:0E:51:B0:25:CD:9F:01:6B:28:ED:3D:AE:EA:37:3C:61
            X509v3 Authority Key Identifier:
                keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c1:f5:cc:65:a3:01:7f:38:9a:b5:af:a9:ce:9b:8f:bf:03:1d:
         cb:89:eb:cf:4e:b2:9f:73:16:d8:18:54:24:0a:86:07:62:2b:
         bc:3d:39:68:93:6c:03:15:08:3b:cf:58:4f:f0:ac:f9:99:a2:
         4e:17:df:ef:f1:57:50:92:c0:de:91:3c:0f:60:33:9d:e2:ad:
         3d:2f:af:bf:01:e0:d0:89:b6:b3:44:63:35:a3:0d:16:a5:ae:
         6a:f5:d5:69:73:a0:48:d1:49:f6:c6:32:41:e1:42:86:f4:de:
         1d:84:3f:08:85:8f:9e:69:39:2f:5d:a4:af:27:20:48:0b:61:
         4d:4c:f4:da:0a:ee:df:ac:89:cb:82:1c:2d:ce:c5:3b:f7:3c:
         2e:b0:1d:c6:9c:e2:ae:8d:95:f1:54:1f:03:e4:af:a2:47:7a:
         23:58:83:0e:56:9d:0e:a5:f8:a5:e4:29:c3:10:fa:6e:27:16:
         2b:58:c3:40:c4:85:02:a2:ac:57:d0:dd:e9:7e:47:4c:6a:68:
         76:0a:69:2c:30:3c:a4:fe:4d:f0:bf:f6:49:46:b8:fc:60:22:
         e8:34:5d:36:1a:7e:e2:26:66:33:e6:28:99:ee:b9:b1:2f:8c:
         49:a0:bd:63:87:5a:ab:7e:ec:0c:f5:41:70:ad:20:0a:d0:94:
         07:eb:ee:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:04:36 2026 by rpki-client