Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
File:                     VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json)
Hash identifier:          Eheg/ze06C6STYutcuq3owr4Emw0yN4xmWt5VNbxVTI=
Subject key identifier:   2C:7D:6D:61:13:10:4A:17:10:F9:15:54:27:34:8A:0B:9B:87:5C:EA
Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8
Certificate issuer:       /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8
Certificate serial:       0D16
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
Manifest number:          0D02
Signing time:             Thu 16 Jul 2026 18:27:23 +0000
Manifest this update:     Thu 16 Jul 2026 18:27:22 +0000
Manifest next update:     Thu 23 Jul 2026 18:27:22 +0000
Files and hashes:         1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: AnsbjmgaQlRDNoc4X0nuKZ4hvf5s89LiimXuF0gGlwU=)
                          2: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: OtV6b8befwkPsOuYarHGh5SRZOjkzLz1qANk490i9b8=)
                          3: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: PLVzOLnz/S3yAyLEYTQXk6jeemE0Coa5Zb4ZLWaW+pE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl
                          rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:27:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3350 (0xd16)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8
        Validity
            Not Before: Jul 16 18:27:22 2026 GMT
            Not After : Jul 23 18:27:22 2026 GMT
        Subject: CN=6a59228b-6464
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:6b:55:b1:f5:25:f5:11:19:a2:c0:12:3d:64:
                    3d:e2:7f:f4:3f:7e:a7:de:59:03:f1:01:09:fd:78:
                    de:33:fe:0e:1d:1f:39:2b:e3:db:31:20:4b:c6:5a:
                    c1:5f:9a:77:56:bb:ff:6f:c3:b8:a1:03:dd:b2:57:
                    5b:f3:66:ec:67:52:25:e2:23:82:79:d6:74:dd:90:
                    20:8c:28:83:c6:f9:8a:b1:ee:17:0f:87:2a:2d:d7:
                    5c:10:cb:ce:4e:a9:df:60:c6:0b:77:f3:05:4c:c8:
                    eb:a2:d8:92:08:3e:10:ee:17:30:e8:bc:e7:35:7c:
                    1f:d3:69:4f:f3:d6:2b:c7:17:98:49:79:4f:05:75:
                    db:d9:7a:2f:54:47:c8:95:88:71:f8:ae:91:5d:48:
                    91:96:00:5a:f5:0b:f7:f0:05:81:0b:99:5d:ba:d0:
                    47:8f:fa:d0:76:82:3b:2d:e3:84:b8:5e:6b:68:2d:
                    a9:2b:39:d6:78:b2:88:69:7e:c3:c0:cb:ae:f2:2f:
                    3c:eb:33:62:a1:c3:2f:ce:86:d4:79:c6:b0:72:57:
                    80:34:c1:0c:0c:12:10:be:44:ef:ee:b8:19:9d:37:
                    2b:13:c4:ff:e9:81:f0:8b:dd:95:22:20:48:fb:48:
                    8c:5c:2a:93:46:37:55:a5:df:0a:29:3c:2e:c1:88:
                    86:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:7D:6D:61:13:10:4A:17:10:F9:15:54:27:34:8A:0B:9B:87:5C:EA
            X509v3 Authority Key Identifier:
                keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:bb:83:4d:09:fa:69:6b:f6:91:c2:4b:a5:5f:fd:1c:50:a6:
         20:12:a4:85:39:d9:82:a9:68:e7:e9:b7:22:55:43:d6:fa:ac:
         6c:64:5e:1d:6c:bd:b3:95:36:bb:7e:a1:47:83:1c:7b:b4:07:
         40:9e:14:2c:04:e9:7f:27:fc:38:cd:37:4d:d4:63:aa:c0:1e:
         61:63:44:19:d3:9c:b6:5a:42:82:2b:9f:73:99:3c:49:8a:1a:
         1f:56:c7:24:9c:38:6d:4a:d8:61:de:81:7e:21:19:a0:8a:a7:
         0f:db:db:d3:79:43:85:28:3c:e7:02:a2:5b:9e:4f:f3:75:dd:
         a1:20:c6:e6:22:94:b5:17:3e:cf:a0:de:cb:1c:90:10:46:76:
         6d:77:55:f0:74:83:42:8e:06:91:09:7a:6c:ce:16:15:68:d0:
         0d:b4:8f:0f:9b:6f:58:cc:13:47:e0:ae:d1:c5:bb:90:86:4b:
         e4:9e:17:b1:9e:bf:75:72:1a:22:e9:de:60:b8:8b:46:0e:46:
         39:e5:06:c3:06:e5:2d:78:7d:a7:cf:c2:4f:2f:c6:80:43:da:
         13:53:dd:6b:e9:11:7c:c0:b0:9f:86:be:31:70:a9:2e:c0:d6:
         99:35:b3:01:c6:17:e5:e1:f9:36:9e:e0:9f:a9:04:46:30:7c:
         86:42:33:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:16:02 2026 by rpki-client