Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
File:                     ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json)
Hash identifier:          BLruiOo1/TIYhNfrB1W0c2X4AKIiXtzwtIgLbytfMvE=
Subject key identifier:   5C:76:D4:3E:BC:A6:5C:47:AF:11:F4:FB:2E:DA:DF:F1:54:3A:0A:2E
Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7
Certificate issuer:       /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7
Certificate serial:       0274
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
Manifest number:          0261
Signing time:             Tue 07 Jul 2026 03:10:07 +0000
Manifest this update:     Tue 07 Jul 2026 03:10:06 +0000
Manifest next update:     Tue 14 Jul 2026 03:10:06 +0000
Files and hashes:         1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: tO50UX+WP2WVyVXqaQC3cQmcvKJbNEesTrPz9K/3juI=)
                          2: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: vqGdVaaDYf6gNLNH5VIBJ2NRjMzmVVMM9ASsA3cNz2A=)
                          3: 1333404E5A0D11EF8810E217C4F9AE02.roa (hash: 4mVa0DqBaCflYNU9bhCT5eYUo2wiGhZvFPJW9PpsrbY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl
                          rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 14 Jul 2026 03:10:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 628 (0x274)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7
        Validity
            Not Before: Jul  7 03:10:06 2026 GMT
            Not After : Jul 14 03:10:06 2026 GMT
        Subject: CN=6a4c6e0f-2405
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:86:e1:3a:71:92:86:52:95:79:1b:71:ae:53:
                    9d:dd:49:ce:de:79:8f:05:f9:12:b1:92:d0:e3:0b:
                    3f:51:8a:9a:8c:bb:5d:c0:20:8f:b6:47:d3:1a:4a:
                    67:b4:10:3b:b0:8d:da:a4:63:f6:1e:d6:12:cc:43:
                    37:ab:30:6b:4b:c9:11:c6:ec:3c:00:d3:32:8b:bb:
                    31:cf:0c:ee:a5:aa:ec:55:84:6d:32:f2:c0:87:77:
                    af:a3:9f:7d:b9:92:fb:84:6c:7c:0d:90:5a:77:7d:
                    d1:35:21:59:51:99:3c:0b:a2:1c:32:fd:5a:84:48:
                    ff:d8:d2:9d:e6:cb:bc:b2:2f:21:cd:85:6d:a8:f8:
                    08:94:23:e0:63:7a:b7:8f:84:79:3c:bc:c2:58:52:
                    e3:6f:03:e8:33:93:13:1e:0b:9a:59:67:08:a8:62:
                    f0:64:fd:04:21:97:0c:ec:92:3a:74:f6:da:21:e1:
                    e3:fa:61:d9:29:0d:f8:ba:64:cd:fa:e9:89:31:d5:
                    f4:d5:1b:16:f4:eb:c6:8a:c7:aa:7e:75:6c:25:19:
                    7a:8c:24:3d:23:52:ae:11:0b:f2:c7:a5:d6:3a:67:
                    87:55:31:4e:13:6c:9e:ef:5c:74:5b:77:91:8f:94:
                    dd:38:eb:66:c4:dc:cc:7b:92:fd:99:14:f1:85:da:
                    e5:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:76:D4:3E:BC:A6:5C:47:AF:11:F4:FB:2E:DA:DF:F1:54:3A:0A:2E
            X509v3 Authority Key Identifier:
                keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c9:8f:4f:3a:75:fa:a5:3e:fc:cd:b5:3f:20:00:6a:de:19:6a:
         ea:75:06:45:f1:34:35:db:9a:ce:d3:87:bd:7c:9d:a1:bb:00:
         92:ad:81:87:dc:ff:d2:b6:a9:50:b4:b0:83:a9:f8:55:ac:9a:
         d4:b5:2d:2f:47:1c:40:35:4a:30:b3:52:9c:18:13:e4:bf:c7:
         d8:51:dd:3e:68:5f:19:76:63:89:05:06:fc:d3:82:c3:a0:94:
         d0:21:1a:37:b6:da:52:94:e7:39:4c:08:2d:f6:45:3e:c9:05:
         96:6f:ca:29:31:eb:28:d0:d0:af:4c:16:80:35:b6:09:37:16:
         58:06:de:f8:59:d9:f8:1a:cb:cf:75:57:da:f3:e6:01:f1:90:
         a6:da:9b:cf:26:6c:06:7b:12:64:14:c1:f5:38:b4:79:e9:2c:
         d8:a4:c8:9e:29:e0:b5:9c:06:e4:6d:d1:91:3d:cf:a8:4a:a4:
         80:04:30:72:20:83:13:14:81:8e:59:45:1c:c0:6f:d8:93:c5:
         44:3b:c0:9c:bc:fe:89:a2:bd:f7:b8:62:54:f3:b6:3f:53:73:
         7b:00:98:3a:60:c4:48:09:c4:f9:38:87:09:85:b4:2c:39:26:
         bc:d8:d4:0d:a2:bf:55:22:a1:fb:1d:9f:6c:3c:39:a9:b2:0d:
         84:a0:a5:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 21:48:13 2026 by rpki-client