Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
File:                     4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json)
Hash identifier:          rbr/rKvRlnc7hJyk2rWq4tz87Iuiy5zD/gVfn7xaQP4=
Subject key identifier:   26:77:67:51:9C:B2:AA:24:D8:31:79:77:89:58:72:7A:70:5E:BF:A5
Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09
Certificate issuer:       /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209
Certificate serial:       0241
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
Manifest number:          0227
Signing time:             Sun 05 Jul 2026 03:20:00 +0000
Manifest this update:     Sun 05 Jul 2026 03:19:59 +0000
Manifest next update:     Sun 12 Jul 2026 03:19:59 +0000
Files and hashes:         1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: tifLRhTTimifrZ5HlVbWLSEtZTUqYvDEthegR+KscOQ=)
                          2: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: +ktnd6zho24yZwUVIDb8JpM0wNDX8OLmDRgr8JefA9c=)
                          3: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: G4c9qIHjh7jRuzT8uRtPVyKbehGwTJD3pzh2RMSA5FQ=)
                          4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: /Ca02zsxpAL8gcjil39VFFafzNLGZS+o8ZdBBpzgYJE=)
                          5: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: kQlooTOYF7DNmDZKuzweY7EEd5/y9UZLGCRSSGQFlGE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl
                          rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 03:19:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 577 (0x241)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C74B5, serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209
        Validity
            Not Before: Jul  5 03:19:59 2026 GMT
            Not After : Jul 12 03:19:59 2026 GMT
        Subject: CN=6a49cd60-ffd8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:9d:44:70:82:37:fa:11:69:ea:93:e2:09:87:
                    5e:c6:6a:2e:82:ff:f8:2c:fd:0a:71:04:86:dd:64:
                    d1:53:cc:7e:48:bd:4c:f3:e7:bb:a6:74:5a:91:0c:
                    b4:95:fe:23:c0:45:03:42:2f:d6:05:aa:86:c2:c7:
                    cb:c7:d0:23:e8:3c:dd:8f:bb:8f:7b:5b:95:7c:26:
                    e3:91:47:43:69:0d:94:79:3d:86:de:ac:70:11:3f:
                    88:cf:c5:20:3f:e4:28:c2:05:d4:69:df:37:9c:96:
                    c8:1b:e0:d5:f6:ab:0c:08:1e:b8:71:75:c6:94:9e:
                    e5:9a:01:7f:8f:b7:61:b3:f8:3a:3b:6c:cc:e3:08:
                    8b:e0:93:23:46:ae:b3:88:1f:1c:0c:28:56:b4:4c:
                    e5:57:7b:3b:21:a0:9e:df:07:ab:48:2a:6d:4d:f3:
                    34:0a:f6:82:b6:06:76:d9:da:75:7b:01:4f:64:84:
                    c6:11:16:6e:c6:93:da:74:99:c9:75:3a:98:5d:d6:
                    69:9f:22:1e:1b:64:09:d4:0c:3d:8f:57:2b:55:a3:
                    56:3f:cb:e8:67:8f:df:8f:e9:e9:26:19:e6:4e:19:
                    87:9d:77:bf:29:8c:0a:8c:d1:2a:5c:b1:32:ed:63:
                    1c:44:85:be:70:ed:52:5e:b7:63:68:89:38:83:7a:
                    39:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:77:67:51:9C:B2:AA:24:D8:31:79:77:89:58:72:7A:70:5E:BF:A5
            X509v3 Authority Key Identifier:
                keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:7a:84:11:91:f2:8c:55:f3:04:2c:20:7a:f0:fe:07:5d:86:
         0f:ec:68:60:49:5e:46:1e:23:85:e4:88:55:17:0d:b5:49:4a:
         2f:7c:32:15:08:43:2d:b1:8c:51:04:68:d7:c9:ea:10:6b:d0:
         08:d8:d2:49:dc:a4:ee:c0:08:f9:50:53:de:f1:c7:03:7e:9e:
         69:c9:33:3a:ea:4d:00:3c:84:62:c5:d1:db:4d:3f:4f:77:b7:
         65:94:a6:4f:df:a1:00:ab:57:9f:24:72:c2:11:18:28:6a:f2:
         80:07:12:43:59:c1:26:14:2b:b2:0e:c0:e8:3f:34:10:9c:e0:
         5d:76:a2:d3:dc:14:7e:78:ad:8b:2e:d7:a3:56:0f:eb:b4:0e:
         32:73:c8:d4:80:8f:f7:99:ff:12:ae:53:16:40:28:29:5c:26:
         d9:7e:c5:09:e0:41:68:81:35:cd:45:e9:c7:f0:d6:e3:de:ff:
         0e:7c:16:fc:2c:03:7a:d1:a8:e9:2d:8b:19:d4:cf:2b:7a:d3:
         6b:11:63:89:06:71:b6:68:b4:e1:6c:22:9e:ff:89:b5:83:32:
         90:8d:a7:63:ed:4c:31:c5:ed:83:03:a7:f0:18:03:d2:f5:87:
         b2:f4:dc:f7:a1:8e:bc:29:32:d5:6a:d3:f4:b4:a0:99:0f:75:
         0f:6c:c5:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:44 2026 by rpki-client