Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
File:                     l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json)
Hash identifier:          9d41J7rsZUhQCXG29ySKfrShsULCqGZo3AgwnPgMtm8=
Subject key identifier:   E7:45:12:E1:8F:FB:9C:25:B3:77:E8:CC:C3:B9:78:5E:64:D8:4F:D3
Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50
Certificate issuer:       /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050
Certificate serial:       06A3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
Manifest number:          0697
Signing time:             Mon 06 Jul 2026 23:04:08 +0000
Manifest this update:     Mon 06 Jul 2026 23:04:07 +0000
Manifest next update:     Mon 13 Jul 2026 23:04:07 +0000
Files and hashes:         1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: nXw7WZ/a1I0AwSLixKI3tRearUmcVpGo8I6FXqwsnaY=)
                          2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 3hykLcorYgLEfCJWHrkkPwMpO+Se/Lm85HODusfioqM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl
                          rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 23:04:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1699 (0x6a3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050
        Validity
            Not Before: Jul  6 23:04:07 2026 GMT
            Not After : Jul 13 23:04:07 2026 GMT
        Subject: CN=6a4c3467-8059
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:bb:ed:b8:0d:7b:51:70:9e:af:2f:d7:32:e4:
                    4e:89:5b:bd:8f:9a:91:73:33:0f:e3:cf:63:7e:5d:
                    58:30:cc:d5:21:19:ed:58:e4:2e:35:04:1c:67:10:
                    27:14:99:5f:3f:f5:e3:4e:16:02:09:b3:a3:4c:15:
                    ef:92:27:65:2a:ed:6f:dd:7b:9a:f4:96:a3:de:48:
                    93:f7:2b:25:4d:54:60:ee:14:c3:6a:d2:17:32:61:
                    86:f5:7a:63:1c:1b:92:ff:6f:5c:cf:55:67:95:85:
                    eb:77:ae:bb:b7:be:9c:79:3b:eb:0d:c5:f1:b4:cd:
                    bb:5d:1b:80:e9:c1:14:2c:b5:fa:43:70:16:eb:b7:
                    77:7a:1f:f3:76:cb:99:ec:de:98:88:d2:69:af:af:
                    93:74:0c:f1:78:05:3e:16:d9:17:8b:32:ce:eb:31:
                    ef:96:01:88:03:37:b6:c5:89:df:46:74:b2:49:84:
                    e0:49:42:04:5f:c0:c9:e9:0e:da:f6:32:d9:5c:6b:
                    72:64:1b:71:53:60:10:c7:ef:cf:01:0f:32:fb:a1:
                    c5:41:df:b8:91:f9:60:dc:0a:23:5b:3d:05:a9:2f:
                    9e:a0:39:1a:20:12:d3:44:32:7d:0d:f5:6f:21:62:
                    ab:7b:31:da:ed:99:be:51:50:0b:c4:cf:aa:a9:46:
                    b2:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:45:12:E1:8F:FB:9C:25:B3:77:E8:CC:C3:B9:78:5E:64:D8:4F:D3
            X509v3 Authority Key Identifier:
                keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:fa:3d:2d:90:fd:57:62:93:43:59:f2:a0:64:a4:b7:af:96:
         38:7b:cf:03:39:04:43:40:75:e9:b6:51:e2:83:28:00:11:e0:
         a3:84:23:d0:e7:90:6f:51:6b:a7:c4:d9:d4:49:6f:e7:31:38:
         9d:30:a0:a6:14:f6:94:0b:4d:a3:fc:e9:8c:2d:b9:d6:52:b1:
         c2:8c:8a:d3:2e:ae:76:9e:2c:13:a5:f0:4b:77:5b:cc:90:0c:
         a8:b6:c4:db:8d:4c:87:0b:35:0b:79:36:d4:58:aa:c5:47:79:
         dd:06:eb:67:41:d8:bc:86:c8:2b:3a:d8:b9:7c:35:45:45:7e:
         19:27:d7:d4:ec:0c:ae:c8:e8:4b:77:ac:33:7e:23:b8:1c:4a:
         5c:ba:80:25:61:48:4a:ea:ac:b5:fb:9b:f9:60:90:e7:b6:0d:
         bb:67:e3:20:24:01:41:a6:61:a9:c4:dc:ff:d9:09:cf:71:0e:
         cd:40:c6:b7:98:03:d5:99:38:42:a6:61:a7:03:7d:b2:36:47:
         df:7f:3a:b2:09:13:40:dc:a7:78:1b:1e:60:e2:b4:95:24:90:
         93:15:05:db:93:02:cb:aa:3b:77:e0:a0:7d:32:9e:c0:74:4d:
         c2:97:42:af:60:e4:31:49:c2:19:76:63:a1:27:d7:4a:5c:48:
         8f:52:1d:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 10:44:12 2026 by rpki-client