Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft
File:                     tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json)
Hash identifier:          9GVj1LNt7v0l+WRySDPvGsZe9fBlAvchtyzfaPFjkxI=
Subject key identifier:   0F:71:0E:CF:84:BF:CC:88:33:53:1D:54:97:77:D4:52:86:C6:01:21
Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C
Certificate issuer:       /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C
Certificate serial:       0D6E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft
Manifest number:          0D3B
Signing time:             Thu 16 Jul 2026 18:18:10 +0000
Manifest this update:     Thu 16 Jul 2026 18:18:09 +0000
Manifest next update:     Thu 23 Jul 2026 18:18:09 +0000
Files and hashes:         1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: 3+TdaD4W4IszyzwLCm7vKZPA8QE3oepsOIYQx/5dG4A=)
                          2: 610856EC638A11F08BC2A840C4F9AE02.roa (hash: hFVkKE+Qi5ASFcR8wJP4hxF2ONROpTw8ANjmt7CoeCQ=)
                          3: 618AD7B6638A11F08BC2A840C4F9AE02.roa (hash: l1iCGSn/PX7oFU8pYAYmto407lNna+dcfVIeQPwpey4=)
                          4: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: 98uYds8I1pxO4Y6dKdHlz74HRamQ9x93aGa9N7uQZao=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl
                          rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:18:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3438 (0xd6e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C
        Validity
            Not Before: Jul 16 18:18:09 2026 GMT
            Not After : Jul 23 18:18:09 2026 GMT
        Subject: CN=6a592061-c033
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:97:5a:26:5f:65:b1:25:fc:31:a4:73:33:92:
                    b1:09:67:cc:09:26:9b:3d:90:76:6d:da:f3:53:49:
                    28:b8:a8:21:36:5c:ef:58:b1:12:0d:10:ac:f1:81:
                    62:3c:35:40:ee:45:62:91:e3:a1:31:84:2c:75:20:
                    91:64:83:a2:75:7e:ae:bf:18:70:d5:93:1f:85:06:
                    a0:17:59:fd:44:73:1d:c9:d0:45:87:10:67:c0:74:
                    1a:80:7d:39:04:bc:3c:6f:9a:b1:a5:ca:7e:4c:01:
                    15:5b:84:66:10:f4:c9:16:b9:39:6f:90:08:e9:98:
                    99:3b:5a:69:cc:02:17:47:d3:e2:21:ef:b9:6c:dd:
                    52:38:e2:e7:3b:af:d2:00:4b:5a:9c:37:00:66:e9:
                    f8:4e:90:39:1a:b1:23:46:b5:15:41:e0:32:7a:26:
                    67:93:4d:0d:8d:d7:1e:13:ea:26:d8:e8:00:02:47:
                    4c:4f:18:ac:5d:0b:88:e1:12:d2:e2:c9:7a:2d:46:
                    89:d6:9e:ac:ae:71:d2:30:4b:68:5a:aa:f0:fb:32:
                    d5:84:c7:12:17:76:4f:4b:80:0f:b5:74:b8:44:b7:
                    11:72:fb:cd:67:4e:d8:cf:cb:3f:d4:16:26:08:d8:
                    a8:c2:77:17:7d:ba:d2:7b:7b:d4:bd:3e:97:04:c1:
                    be:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:71:0E:CF:84:BF:CC:88:33:53:1D:54:97:77:D4:52:86:C6:01:21
            X509v3 Authority Key Identifier:
                keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:84:a8:2b:a4:b2:5c:72:48:16:fa:11:6f:93:9b:1e:ca:00:
         2d:ca:51:11:38:a6:30:bb:bd:12:01:22:9e:c6:fa:d9:04:24:
         e2:35:74:4e:f8:02:26:b4:c4:8a:c8:67:d0:e1:af:5d:c6:75:
         30:d5:71:e6:54:e2:cd:3f:15:f7:5a:28:0d:24:7b:13:da:ff:
         cc:9c:8e:4b:48:2f:99:9c:1b:89:fc:bf:91:0f:87:0f:57:09:
         3f:e7:22:ef:f1:59:fb:2b:76:e1:18:33:62:4e:2c:a2:0f:fc:
         ea:20:39:44:fe:1b:7c:59:a5:cb:2d:22:4e:fb:18:33:e4:f1:
         4a:a5:2f:6c:44:0c:58:77:2a:84:65:01:c5:1d:c6:59:00:e9:
         f4:6a:af:cf:c9:26:09:6f:67:67:f1:38:e7:f5:39:95:a7:20:
         f1:31:41:bc:74:fc:97:0d:44:25:c9:45:1d:52:41:ad:21:98:
         e2:fc:76:c6:f3:a6:2b:64:a6:30:ea:34:88:d0:33:e6:ef:88:
         9f:03:32:65:2a:f9:01:80:6b:56:a9:7a:b1:a5:1b:d4:d2:d3:
         a5:59:15:a1:c0:33:41:42:2e:aa:c6:37:bf:1c:b1:19:5f:76:
         be:ce:71:97:7d:b5:7e:64:7e:20:de:51:25:84:84:98:d6:83:
         b7:74:79:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:11:32 2026 by rpki-client