Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
File:                     RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json)
Hash identifier:          V2G3cRgh8sZ2A9asfcinQ2rkUWUTeyoYuejrVgj6MK8=
Subject key identifier:   A6:E7:AA:D9:D4:83:82:F5:09:07:9A:5C:B4:C2:D7:2D:CE:E7:3D:B5
Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E
Certificate issuer:       /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E
Certificate serial:       01E0
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
Manifest number:          01DB
Signing time:             Thu 16 Jul 2026 14:53:35 +0000
Manifest this update:     Thu 16 Jul 2026 14:53:34 +0000
Manifest next update:     Thu 23 Jul 2026 14:53:34 +0000
Files and hashes:         1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: JzjBGzQX28TYImLzM/HzO/wYiy7xtFh+31X792DRGqE=)
                          2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: QreKN0Rd5UfNyWwEd5SMYjaTfZ6J0wKhOlda79WX3co=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl
                          rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 14:53:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 480 (0x1e0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E
        Validity
            Not Before: Jul 16 14:53:34 2026 GMT
            Not After : Jul 23 14:53:34 2026 GMT
        Subject: CN=6a58f06f-d936
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:0c:c3:96:44:62:b6:67:4e:1b:38:7c:9b:49:
                    b8:13:8c:c7:d7:a0:4a:55:f4:a8:5b:76:95:76:b2:
                    f3:d1:05:ed:cb:fe:85:03:c7:e7:b5:3f:db:81:1a:
                    cb:56:e2:08:72:b4:40:32:51:ca:e0:0f:ce:ec:90:
                    ed:fb:f4:8f:48:71:43:58:21:4b:80:5b:10:ae:6a:
                    95:dc:77:15:a5:5c:3f:5e:f8:70:52:d1:07:2b:af:
                    fc:55:00:e6:b5:fa:23:56:a4:fc:67:98:13:24:78:
                    4b:3b:91:d5:48:29:04:41:0f:2c:b1:81:75:7e:8a:
                    01:6c:b6:64:db:70:05:3c:7d:6b:16:b5:24:e6:41:
                    ed:9c:47:7c:4c:34:29:c6:04:64:77:cd:89:64:5c:
                    b7:d7:72:27:8d:58:b5:26:1e:bd:9e:ed:55:f7:24:
                    d7:8b:a9:e0:7b:11:90:d5:5e:be:a2:9c:89:d2:58:
                    ec:15:47:36:aa:67:43:66:d0:06:d4:a0:0d:66:6c:
                    2e:ed:47:91:1e:07:3a:b4:7d:d6:29:dd:b8:8c:20:
                    06:3c:02:4d:87:50:07:c5:1a:6b:5c:85:3e:50:be:
                    55:9d:b3:39:28:07:73:91:b3:4c:9e:87:59:78:08:
                    e6:a3:86:bb:10:42:eb:02:88:a7:b7:b1:b3:04:bd:
                    0c:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:E7:AA:D9:D4:83:82:F5:09:07:9A:5C:B4:C2:D7:2D:CE:E7:3D:B5
            X509v3 Authority Key Identifier:
                keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:a4:ef:bf:27:29:fe:6c:2d:28:42:33:95:75:a3:a9:41:86:
         05:d4:13:c9:a5:19:ea:34:f8:22:c9:8f:cf:bf:17:cb:1f:96:
         1d:6e:a4:ea:17:fb:f4:c3:48:52:e6:94:ae:ff:42:0d:e2:1b:
         55:75:5c:64:30:0a:1e:a7:b4:e6:bb:c6:3c:53:6c:72:0a:40:
         50:3f:8a:e8:69:ad:c7:ea:f1:57:6d:67:14:20:9d:25:c2:14:
         cd:8a:ea:3e:9c:81:5d:39:a5:4c:df:c6:05:98:2c:30:11:3f:
         be:a0:4a:9a:bc:2c:c6:7a:92:73:fb:36:ba:89:6d:d0:8f:d7:
         57:5c:bf:18:64:57:66:e8:8b:f4:44:d5:97:d1:19:cb:46:da:
         9e:91:cc:d4:57:28:69:20:16:61:64:a0:b1:54:4a:d7:d8:0b:
         ce:84:4a:68:3e:d9:02:32:9d:fd:91:82:a1:a7:86:e3:f8:f4:
         bd:d1:d6:b0:46:0f:a4:fe:cd:b5:5d:de:eb:56:65:ee:c6:fa:
         43:37:cc:f5:89:b2:49:82:af:12:c3:a0:89:4d:a0:47:2f:4e:
         c7:5a:ef:34:d2:4e:4f:fb:1b:27:66:2b:bc:ca:f4:29:de:f4:
         a8:9c:43:5b:b7:8b:dc:a9:5f:9e:fc:db:6c:df:93:fe:aa:d7:
         01:80:2e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:21:03 2026 by rpki-client