Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
File:                     97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json)
Hash identifier:          ZB/y1KiKEbNm1G5mWxfY6L01yrb+5MjXPsU1kniwdzI=
Subject key identifier:   38:2F:28:A8:D3:68:4E:8B:DA:45:59:25:32:24:2A:DF:B8:F3:6E:86
Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE
Certificate issuer:       /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE
Certificate serial:       02B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
Manifest number:          02A7
Signing time:             Sun 05 Jul 2026 02:05:27 +0000
Manifest this update:     Sun 05 Jul 2026 02:05:27 +0000
Manifest next update:     Sun 12 Jul 2026 02:05:27 +0000
Files and hashes:         1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: QXFNOn6BAHgU+8Pm7vTvOGbY8jZyfEkzx+bQVByu1hU=)
                          2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: PQz0xbKbyiBo1K+6lX1c97d5j/JyzQaM1t6G0/g1HBw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl
                          rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 02:05:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 688 (0x2b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE
        Validity
            Not Before: Jul  5 02:05:27 2026 GMT
            Not After : Jul 12 02:05:27 2026 GMT
        Subject: CN=6a49bbe7-1e1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:8b:44:18:7c:08:ef:d2:15:ae:59:14:7b:57:
                    d7:d4:53:93:57:04:39:55:17:3a:dc:c8:60:c4:03:
                    a6:6e:7d:a7:89:34:77:62:99:05:10:8f:85:7c:17:
                    6e:51:7a:18:fc:c7:e2:41:08:bb:12:00:14:bd:1a:
                    3e:1a:81:57:62:fe:80:8d:b2:89:4d:53:2c:e5:86:
                    d9:02:00:e0:87:45:30:6b:23:a2:d1:66:bd:28:d0:
                    a2:60:b2:64:25:09:08:57:3f:d3:6e:56:58:17:a2:
                    14:a4:3f:59:ae:85:57:91:2f:8e:ef:ee:70:9b:55:
                    eb:28:e4:cd:2b:c4:6f:91:32:69:a7:75:95:6a:55:
                    19:d8:b0:bc:78:8a:39:cb:62:8a:55:d8:f5:cf:47:
                    c5:cc:e2:07:c3:27:7f:f9:26:68:a2:0b:7c:31:60:
                    5b:ae:41:66:eb:fd:dd:45:60:f1:9e:c9:57:07:db:
                    88:88:4c:10:36:7d:4e:89:21:d4:9c:01:56:83:bd:
                    a7:44:f0:65:fe:13:9a:d1:80:2e:d4:c2:02:ff:e2:
                    30:63:02:0e:b4:d1:24:e0:16:12:81:8a:83:05:ae:
                    a4:81:32:7b:61:37:8b:4c:d6:e4:e6:a8:bf:2d:fb:
                    5b:37:b9:ff:91:17:05:94:b9:cd:12:bc:c1:2a:08:
                    72:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:2F:28:A8:D3:68:4E:8B:DA:45:59:25:32:24:2A:DF:B8:F3:6E:86
            X509v3 Authority Key Identifier:
                keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:ad:20:db:fa:48:a1:42:11:a7:72:da:06:ed:c5:98:08:6e:
         cc:6e:d6:a9:dd:05:83:ea:ab:7c:23:73:de:28:d0:ec:68:f1:
         10:b9:ca:be:d9:0f:22:1e:75:00:47:3f:17:ea:76:0f:47:17:
         9b:89:a9:c3:b4:d2:37:11:88:2e:db:4d:a5:23:65:af:d6:d1:
         1b:5d:69:51:3b:1f:09:bc:6e:a5:0b:10:9d:3d:5e:3f:c4:93:
         31:40:0e:6b:c6:ba:b0:b8:13:21:b3:86:9f:18:fd:ac:69:17:
         b4:d2:40:16:8b:d3:97:d6:6c:f9:d9:ab:e9:8d:47:5f:6b:15:
         4e:85:a0:4d:6a:52:7e:23:37:ed:c1:c3:e0:15:59:d9:db:58:
         ff:0d:af:c3:67:96:08:24:85:3a:73:16:30:67:e8:a4:50:d3:
         d5:15:33:0b:9c:ed:4d:16:bf:39:3b:35:f2:8e:34:52:b5:e6:
         94:e7:8d:15:fc:96:58:1b:70:76:87:30:76:7d:6d:fe:02:50:
         8d:1c:a4:70:75:60:43:05:e6:a9:df:d9:e8:be:92:16:16:bf:
         00:67:ac:2d:76:86:10:ad:4f:d0:d0:62:29:6a:f6:30:f9:f1:
         a9:1d:ea:98:8e:29:1b:fe:a8:99:2d:85:10:ff:e2:b6:e3:52:
         55:d1:17:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:38:48 2026 by rpki-client