Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft
File:                     xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json)
Hash identifier:          coBkPdFaaPnGTGeSFL7eMe3OVFU+5yqVUq8bXFSev30=
Subject key identifier:   42:9E:F2:5F:D6:85:2C:97:FC:EB:4F:04:AC:F1:C6:E7:36:D3:E5:83
Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52
Certificate issuer:       /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52
Certificate serial:       09E8
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft
Manifest number:          09BD
Signing time:             Sat 04 Jul 2026 20:05:33 +0000
Manifest this update:     Sat 04 Jul 2026 20:05:33 +0000
Manifest next update:     Sat 11 Jul 2026 20:05:33 +0000
Files and hashes:         1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: FuR1dU3u83eOQLRKUgnq4rZb0TrhhQKKb2Rev+HvWeU=)
                          2: 2BFE357EF06211F08763644E5C6F56BC.roa (hash: 7NcbnhD/HJ8NBFUu7bu5fda+cHjTW1crabfldM6QJwo=)
                          3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: soe5Moz4gQVVes64vfH27mxJAWxDV9xSP3vrYYcdBj8=)
                          4: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: +RYGeu7uX4uBBcHWusqQhkXqLpcB4R1AKfIKops3PNA=)
                          5: 03706138786411EC8624EB12C4F9AE02.roa (hash: BrG7Q3Tkykmo9xilseoxsNjwLBVZ7ijytYCkK61f/ms=)
                          6: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: 95lSl7vVPRfDQ24xYlePTZRf3aCd1VmR4GdHAdsIHtU=)
                          7: 7B3252CC014911F1B56055C9516F56BC.roa (hash: Q4zhbv5IYafCWF+cKZ+N5EqVvhygYSFdunW/fgxR9Ms=)
                          8: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: rC7/cLhAbtNiKypXkgnC2P4P5so5I+YnfNchz84YMA0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl
                          rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 20:05:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2536 (0x9e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52
        Validity
            Not Before: Jul  4 20:05:33 2026 GMT
            Not After : Jul 11 20:05:33 2026 GMT
        Subject: CN=6a49678d-795b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:de:7a:98:71:30:18:77:b8:0b:ba:f3:82:32:
                    fd:21:93:d4:4e:d7:65:ea:38:e4:2c:14:f7:64:8d:
                    ae:00:8c:4c:e1:49:a7:2f:2f:73:f0:10:37:20:e0:
                    7f:0c:b1:35:77:bc:de:7b:26:4b:95:07:40:94:52:
                    3b:37:4e:df:58:00:fa:25:f2:07:b6:af:4b:ea:09:
                    8e:ed:1d:ea:41:b9:88:53:85:5c:ce:60:6c:2d:4e:
                    b2:ab:69:f9:22:ec:04:4f:03:73:29:49:e1:f3:82:
                    c4:e3:c0:2d:dd:d0:76:7b:89:5b:6f:0d:8a:39:ae:
                    6b:f4:6f:d1:e0:7c:9a:30:aa:8f:84:5c:a2:e0:35:
                    4e:df:45:7c:35:45:a7:a6:ac:59:d0:93:32:14:72:
                    00:c7:77:6a:f3:22:8f:14:36:d1:9f:15:0e:b1:37:
                    16:6d:35:2e:e2:ff:7e:b9:3a:dc:d8:8a:67:6c:b6:
                    2f:e7:90:77:1a:23:46:c4:c6:0c:b2:41:38:96:b6:
                    0c:2e:8a:f1:2b:f1:97:0a:a1:0e:db:93:cc:f8:a9:
                    47:fd:61:40:99:6c:8a:76:7a:a1:83:1b:68:ea:89:
                    80:b1:f4:37:dd:9c:69:d0:59:be:04:c1:83:08:46:
                    48:e8:9d:5d:cc:64:e9:5e:85:7a:49:13:f4:90:7c:
                    72:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:9E:F2:5F:D6:85:2C:97:FC:EB:4F:04:AC:F1:C6:E7:36:D3:E5:83
            X509v3 Authority Key Identifier:
                keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:0c:9f:dd:d0:92:7a:3e:cc:76:14:e6:46:14:3c:91:9a:6f:
         f4:73:d7:09:44:e0:7b:ab:4d:92:b1:a0:b0:ca:88:be:13:f5:
         b4:e3:bb:dd:3e:12:96:e4:18:a9:6d:fd:b8:d4:13:2b:4c:d8:
         c5:fe:35:17:44:fb:d4:5d:e4:8b:e7:ba:19:28:37:42:03:41:
         4a:8f:5b:88:46:77:dd:53:62:88:e4:f0:29:06:c1:15:61:dc:
         37:5d:af:84:3a:fe:69:f7:4e:f4:89:36:91:41:1b:61:39:62:
         0c:3e:7e:5d:ba:ba:a5:19:3d:bb:22:84:72:e6:e1:6a:a5:73:
         36:13:a8:fe:a7:40:c4:77:78:cf:e8:e5:95:b7:15:c4:76:69:
         8a:3a:9a:ea:bb:f9:a3:18:13:c8:e4:b8:af:a0:c2:7f:96:dd:
         f8:11:d4:ce:54:ee:8d:c3:a1:de:0e:e5:e9:97:0f:95:2a:e8:
         50:be:1d:4d:03:da:d1:69:08:c6:6a:c4:2d:07:13:eb:72:bd:
         dc:66:25:40:16:44:ab:24:da:27:68:ba:77:10:f0:9e:c3:04:
         d3:cb:24:eb:71:3a:3c:d8:03:28:69:2d:28:35:ef:ba:8d:98:
         e8:93:1a:c1:a5:76:53:fa:d0:f0:e8:a0:c5:ff:1b:bd:33:5b:
         06:9d:51:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:25:38 2026 by rpki-client