Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft
File:                     oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json)
Hash identifier:          zXYFNIHaHEnXQXkyYQBNyw+FUP8jIb0Tzq1vuwfyU6E=
Subject key identifier:   F4:8B:E8:D9:76:50:36:21:34:DB:B7:DE:72:AA:0A:A2:05:E6:CB:5E
Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65
Certificate issuer:       /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65
Certificate serial:       0200
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft
Manifest number:          01EE
Signing time:             Sun 05 Jul 2026 04:07:39 +0000
Manifest this update:     Sun 05 Jul 2026 04:07:38 +0000
Manifest next update:     Sun 12 Jul 2026 04:07:38 +0000
Files and hashes:         1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: hYTQmNjc2Y/5JF/5afn7+ymXu5USZbg52S83Z5/0EzE=)
                          2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: 7HiiQTV5zY5tbTdYcm8BulZ0FRGrmhKFMlzgoK8qTu8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl
                          rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 04:07:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 512 (0x200)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65
        Validity
            Not Before: Jul  5 04:07:38 2026 GMT
            Not After : Jul 12 04:07:38 2026 GMT
        Subject: CN=6a49d88b-f41d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:ec:65:20:a6:5a:01:13:77:b7:2a:09:a7:e4:
                    3f:ed:79:70:67:8c:6f:82:a7:f1:7a:e7:c9:3c:60:
                    75:b6:e3:f7:d5:c2:5c:c3:68:a6:09:64:23:af:6d:
                    2a:fd:34:94:99:81:65:57:e5:e2:82:78:68:3d:fe:
                    47:ad:47:59:69:4e:4f:9d:c3:c4:16:d0:9b:e1:3a:
                    8f:e6:08:79:fe:ea:38:53:92:c4:0a:f2:10:ae:e7:
                    ad:56:4d:10:d0:fc:62:1b:46:0e:c5:2c:e7:35:ef:
                    71:8e:ee:4e:bf:23:eb:de:b4:ec:be:99:66:36:aa:
                    fd:4c:be:77:c3:62:fe:35:18:f9:ee:73:17:41:5e:
                    c1:0e:3d:b1:b3:50:76:29:a7:97:af:06:9f:ad:7d:
                    6c:78:d7:dd:15:5b:db:67:6f:84:e9:55:71:69:d4:
                    92:78:99:2d:07:d5:17:ef:11:5b:05:ba:ae:0b:41:
                    d9:52:52:68:3f:b5:4c:fd:2b:6a:ab:b4:8e:55:bd:
                    ae:8d:d3:94:8b:db:97:e4:be:a1:16:d7:f5:6d:ae:
                    97:e9:d6:93:67:cd:00:9f:92:58:32:cc:8a:d5:95:
                    38:6f:f6:49:f0:52:1c:7a:c2:4d:af:dc:20:c1:e5:
                    5d:38:96:4a:ac:7c:a6:c8:d4:a4:47:6a:bd:7e:4d:
                    68:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:8B:E8:D9:76:50:36:21:34:DB:B7:DE:72:AA:0A:A2:05:E6:CB:5E
            X509v3 Authority Key Identifier:
                keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:5f:ed:50:8c:2c:cc:2c:73:3c:c7:a1:44:be:10:6d:c8:44:
         03:cf:63:6e:78:53:2d:74:50:d6:c7:ed:fd:60:d6:1b:eb:fb:
         30:cc:a7:82:cb:08:12:bc:18:dd:7a:f0:61:34:a4:c5:ee:12:
         1e:43:4b:25:97:c1:93:b7:ca:e4:a9:53:f5:a7:85:f2:66:c1:
         e4:fd:3e:3e:23:18:63:df:aa:71:a0:c6:d2:f7:71:df:ee:67:
         0c:62:0e:70:c9:e3:a7:31:44:02:c4:1b:73:71:1e:d7:a7:53:
         b7:98:d5:ec:f7:55:09:78:fe:e7:fb:bc:ae:b1:08:e1:ed:f1:
         b7:5c:d4:58:40:80:65:9b:a3:1e:cc:0b:b2:d2:f3:8f:70:a4:
         a7:ff:30:bb:2e:00:bf:39:4d:ca:9c:3f:3c:f9:94:c0:72:81:
         a9:fb:5f:ef:0d:ff:e3:2c:14:1f:96:8c:ba:87:cc:50:a3:59:
         8a:75:50:a6:e8:52:8d:87:9e:83:dd:d1:e3:82:0d:10:43:ec:
         43:59:5c:f2:f0:1b:1a:f9:20:51:3d:80:4f:6b:76:44:80:6a:
         e7:1c:61:fd:84:b5:b3:51:5c:3a:55:bc:90:e2:c2:b5:1b:6d:
         35:70:5e:ab:04:89:80:4c:77:f4:9f:83:5f:0f:02:6f:5e:b0:
         7b:4d:73:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:39:54 2026 by rpki-client