Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft
File:                     BFm798uEwX7tUbaM6tlBlX14X68.mft (raw, json)
Hash identifier:          ctjmgsOregg2eI6hiUgbDa0limyhn6pOAFnMvBhwKO0=
Subject key identifier:   6F:CD:B4:AE:52:45:62:F8:29:8F:AF:B2:45:1C:98:EE:2F:6A:84:01
Authority key identifier: 04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF
Certificate issuer:       /CN=A91CFBA9/serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF
Certificate serial:       95
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft
Manifest number:          92
Signing time:             Fri 17 Jul 2026 08:40:16 +0000
Manifest this update:     Fri 17 Jul 2026 08:40:15 +0000
Manifest next update:     Fri 24 Jul 2026 08:40:15 +0000
Files and hashes:         1: BFm798uEwX7tUbaM6tlBlX14X68.crl (hash: z6vFnjndvW6ZAcIvVSJhiXShV6qtvV84Gc117YjvrLA=)
                          2: 88B9736AA77811F092FD731BC4F9AE02.roa (hash: t9dZnts+IlYuSJrBx0IgU/pwjcYxg43h5hJtdZZSKtM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl
                          rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:40:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 149 (0x95)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91CFBA9, serialNumber=0459BBF7CB84C17EED51B68CEAD941957D785FAF
        Validity
            Not Before: Jul 17 08:40:15 2026 GMT
            Not After : Jul 24 08:40:15 2026 GMT
        Subject: CN=6a59ea70-5539
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:e1:cc:8e:9c:13:69:0d:47:00:82:d0:df:da:
                    79:67:2b:38:e2:57:7c:f2:c9:f0:f2:0c:07:8b:e2:
                    3a:d0:c9:30:70:8e:9c:b8:a4:7a:97:03:08:4d:84:
                    94:f4:c7:2e:7d:b5:ad:34:d1:0f:20:b2:6c:b3:56:
                    92:d8:00:a8:7d:2e:22:79:23:e7:ff:f9:61:f4:32:
                    2b:4b:5f:25:27:4a:ab:85:a4:71:29:16:15:7e:49:
                    0f:15:91:e2:7b:c7:91:ba:b9:89:db:e8:1f:1e:c0:
                    11:d9:19:da:4c:1e:c1:09:7c:8e:85:85:0d:f7:e0:
                    3d:31:28:92:e6:a3:3f:c0:1b:9b:e8:c9:11:89:c4:
                    7b:67:56:8e:75:af:f1:4a:43:be:ad:a2:72:93:25:
                    29:94:d6:f3:ca:49:19:7a:89:b7:ff:49:d7:e6:7c:
                    45:a7:f0:63:24:42:20:de:5f:e8:77:b2:9d:86:6e:
                    95:f3:16:e2:aa:ca:8e:3f:12:6c:d2:19:19:74:be:
                    8c:f8:68:72:40:80:cd:04:e0:06:28:b4:45:36:ef:
                    f8:94:ff:44:13:16:a3:13:f6:56:13:e9:4a:cc:97:
                    56:87:0e:a2:6d:70:03:17:60:ca:d8:ba:fd:8f:ae:
                    4c:af:eb:d6:4a:da:00:0c:a0:a0:d9:0b:33:87:9b:
                    1b:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:CD:B4:AE:52:45:62:F8:29:8F:AF:B2:45:1C:98:EE:2F:6A:84:01
            X509v3 Authority Key Identifier:
                keyid:04:59:BB:F7:CB:84:C1:7E:ED:51:B6:8C:EA:D9:41:95:7D:78:5F:AF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BFm798uEwX7tUbaM6tlBlX14X68.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/5730159AA77511F094DEBF2DC4F9AE02/BFm798uEwX7tUbaM6tlBlX14X68.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:ca:37:49:39:ff:d2:81:08:82:c2:19:13:3f:85:73:79:23:
         8b:f6:ae:90:f9:a5:0a:63:40:9a:87:44:a7:2e:b5:5f:2a:f0:
         be:33:bc:23:eb:2a:d6:b9:8c:bb:56:f0:01:80:fd:7b:2f:b6:
         4d:2f:fc:47:74:df:73:cb:99:cf:d3:d1:cb:eb:5d:8e:1d:2d:
         d9:ef:15:26:d9:40:2b:ba:bf:56:90:e1:f1:17:76:15:ef:14:
         73:86:35:db:6b:46:9e:f3:27:4d:9b:36:0b:9c:0d:36:22:18:
         e7:2a:f2:9b:a9:bc:e0:0a:fa:a6:03:2f:1f:32:e6:bf:3a:f3:
         7f:7c:59:57:38:39:a8:bc:8f:4d:8c:16:49:02:90:e1:c5:7d:
         4f:d8:55:ac:c1:f6:a0:80:3b:84:50:85:82:27:d4:d1:df:d8:
         8b:12:e0:c0:ce:68:81:fd:e9:8a:0d:9c:46:4f:5a:0e:bd:f2:
         9d:46:28:22:a3:a2:04:61:33:04:9b:7c:9a:b6:1c:85:43:b3:
         35:60:d5:3b:18:9e:cc:30:8b:9a:75:97:c4:70:ec:72:2f:42:
         21:52:a8:2b:5f:76:ae:85:41:a9:77:f5:90:09:63:98:1a:c8:
         95:28:09:2a:bb:13:7e:f5:2b:49:a4:a3:8b:5f:f1:11:02:62:
         56:fa:52:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:43 2026 by rpki-client