Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft
File:                     3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft (raw, json)
Hash identifier:          qHyJb7cLbpWojzNyEKLnq5ytPDJdiZvozTRzanN36HA=
Subject key identifier:   63:D9:C5:18:0C:32:2E:B0:D1:4A:FB:B0:C9:F1:5C:57:E4:AF:3F:10
Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51
Certificate issuer:       /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51
Certificate serial:       196C
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft
Manifest number:          1963
Signing time:             Thu 16 Jul 2026 15:49:28 +0000
Manifest this update:     Thu 16 Jul 2026 15:49:28 +0000
Manifest next update:     Thu 23 Jul 2026 15:49:28 +0000
Files and hashes:         1: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl (hash: A0ioASe7YxIkIPoq6gU5p/2njy6e3/SGFOVWdDYpb7g=)
                          2: AEA7C9C0818911EA81577016C4F9AE02.roa (hash: huSx5kpORQn0tkU4TRAPmVkFRxR4g/qvraibL4XJAo8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl
                          rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:49:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6508 (0x196c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D1691, serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51
        Validity
            Not Before: Jul 16 15:49:28 2026 GMT
            Not After : Jul 23 15:49:28 2026 GMT
        Subject: CN=6a58fd88-a43a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:c8:37:09:92:a2:0c:8c:e4:d1:3e:9e:c1:01:
                    c0:3e:51:8d:a9:bd:5c:a5:e9:1c:9e:2b:f5:83:43:
                    fb:d4:03:b9:42:8c:d5:17:59:9f:5c:45:d6:c7:e6:
                    f6:d6:24:6d:db:61:cc:69:af:b8:2e:86:1c:47:e1:
                    a3:c4:a8:6d:da:49:47:18:5c:62:3c:51:8f:da:a6:
                    7d:8e:34:83:fd:3c:fa:eb:e4:9b:6d:67:d9:58:fe:
                    1b:d3:bf:05:7d:30:57:0d:a4:46:29:f7:76:98:89:
                    10:42:28:05:c9:7b:fa:0a:73:08:93:e7:51:1d:a4:
                    83:26:bf:5b:65:8d:3a:13:da:13:ce:f4:82:aa:8c:
                    04:88:d7:dd:88:e0:ac:6f:2a:05:11:6c:e7:9a:be:
                    21:71:6a:eb:b1:4c:a0:de:fb:be:dd:cb:a4:90:96:
                    91:23:5c:bb:b8:4f:4f:b6:be:65:35:f6:eb:9c:42:
                    7a:98:4c:40:4c:c3:15:3e:31:47:9d:0e:ae:10:31:
                    cf:26:70:f7:a2:c8:39:79:0c:27:c4:92:43:c2:9a:
                    3c:00:a1:a2:51:08:9c:1c:d6:ad:76:52:68:e7:72:
                    d5:2d:f2:e8:e3:33:70:e6:fd:03:64:02:a3:fe:a0:
                    68:d7:a8:c1:fe:7e:38:30:23:60:27:f1:25:1c:21:
                    a2:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:D9:C5:18:0C:32:2E:B0:D1:4A:FB:B0:C9:F1:5C:57:E4:AF:3F:10
            X509v3 Authority Key Identifier:
                keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:a1:da:74:05:db:ec:95:76:09:4c:33:cd:f1:fd:75:db:ce:
         8e:fd:73:f2:19:c4:73:de:af:e5:45:80:53:f9:07:72:f4:2d:
         96:29:8d:de:9e:fb:af:15:f5:78:28:58:51:43:fa:f7:31:8a:
         4c:f4:ae:2a:fc:05:77:14:e9:3b:af:11:71:e4:45:f5:15:ee:
         23:56:b8:85:0c:9e:db:44:23:08:28:d2:17:56:e7:06:00:20:
         01:a4:79:cf:a6:33:bc:74:f9:ca:48:91:cf:ca:08:0d:50:98:
         f9:47:72:5d:45:90:26:07:e7:2e:50:b0:b4:ac:09:c8:4e:f2:
         4c:eb:e6:55:ef:0a:e2:f8:f8:c6:18:9e:76:a7:83:02:69:79:
         d7:d3:97:fb:db:57:1a:bf:a7:84:53:eb:0d:13:2a:81:23:30:
         13:3c:66:8c:95:5c:53:a7:78:44:03:69:96:b2:12:47:4d:ab:
         ca:ef:4f:a6:7c:a7:c8:18:cb:5b:d5:a2:5d:8b:bb:e1:14:b0:
         ad:35:60:a0:21:b5:84:57:98:54:ce:e5:26:66:44:70:aa:9d:
         a3:44:6e:f8:4f:e4:1b:e4:05:c5:6d:b7:0b:b5:ee:78:42:ef:
         d6:5b:5d:67:5d:dc:2a:54:0a:26:63:86:21:e3:a7:cc:d5:e3:
         74:06:42:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:30:06 2026 by rpki-client