Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft
File:                     PByHc0fugnKWNq8POjddORCQ-SE.mft (raw, json)
Hash identifier:          8DjV/ZH0vrZhYg0o0DG6UJ6Q4R2/BRoJDjWLr6Rgo2Q=
Subject key identifier:   6C:DF:F7:BA:77:B4:A8:B9:8D:2E:F0:A7:CA:65:86:A4:42:75:87:71
Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21
Certificate issuer:       /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921
Certificate serial:       2DF7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft
Manifest number:          2DA1
Signing time:             Thu 16 Jul 2026 15:33:36 +0000
Manifest this update:     Thu 16 Jul 2026 15:33:36 +0000
Manifest next update:     Thu 23 Jul 2026 15:33:36 +0000
Files and hashes:         1: PByHc0fugnKWNq8POjddORCQ-SE.crl (hash: b14tA7BkHJOH3VTw9Kkm6HA9wdxIaoEMJxuSuB+E49U=)
                          2: 536F917C803E11F1B7FBCFC66CA30FBC.roa (hash: tT5GQoFB2krA7T4CcJebB7l0Jgv12ZCceR2zsXlgAyg=)
                          3: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (hash: aHD9k1CO/91sgZuODhSSCG/52z7yS492WmwyS5uktA4=)
                          4: DB6B2B08803F11F1AB5A5B056DA30FBC.roa (hash: cn4m4b6sIeF0CcUvFFFFcObaHyEFh3BwO2hFRYMDLIc=)
                          5: 14820EDE248611EEB600357DC4F9AE02.roa (hash: ILtVZce+EeOlerO/s4x6aPfHR6PK7/NY4qOIZJx05so=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl
                          rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:33:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11767 (0x2df7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DA2D5, serialNumber=3C1C877347EE82729636AF0F3A375D391090F921
        Validity
            Not Before: Jul 16 15:33:36 2026 GMT
            Not After : Jul 23 15:33:36 2026 GMT
        Subject: CN=6a58f9d0-1d54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:ca:72:93:ec:01:3b:19:7e:3b:b7:6f:b7:ad:
                    47:6d:53:b9:3d:14:d2:24:51:bc:01:7f:a6:97:fc:
                    d2:f6:a7:01:da:ec:00:69:ed:0c:62:ec:25:3b:77:
                    18:d6:f2:21:3c:79:28:8f:09:99:0b:2b:5a:a5:c2:
                    5a:2b:33:56:a3:e0:7c:16:cd:f1:b4:26:b7:26:de:
                    d1:1d:a4:35:ad:a8:01:63:62:09:20:cb:04:ad:80:
                    da:0a:b1:07:3e:93:fe:dd:e7:cd:71:11:83:5c:9e:
                    72:4f:9d:5b:c2:77:63:32:69:f1:4d:18:3f:47:bd:
                    03:40:72:4c:af:25:a4:b8:d4:2d:e3:e6:59:9e:f4:
                    4b:6c:8c:04:c2:4d:a5:24:ea:49:4e:ee:42:2d:75:
                    98:cd:99:6c:92:29:3e:5c:a6:80:e8:8f:ae:cf:63:
                    c3:5d:d9:5f:01:4e:fd:c4:86:5d:f0:f8:de:61:78:
                    d7:2f:a4:81:a8:d4:51:b1:23:1e:1c:41:a8:64:a5:
                    c4:1c:a0:bd:18:3e:17:c0:18:94:4d:aa:07:25:b3:
                    e3:7a:b3:07:77:b4:ec:90:be:42:9c:c3:0b:9e:fe:
                    41:ac:b0:03:b0:ed:2a:5b:24:06:a5:4f:6e:76:93:
                    b8:1c:6f:df:90:50:fa:24:ba:d0:d5:37:67:69:98:
                    10:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:DF:F7:BA:77:B4:A8:B9:8D:2E:F0:A7:CA:65:86:A4:42:75:87:71
            X509v3 Authority Key Identifier:
                keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:ee:87:20:e5:ee:f7:61:cd:cc:d4:6b:43:bc:d1:b6:e6:0e:
         13:e1:dc:eb:0a:4c:f3:96:d8:e5:d5:22:16:46:e6:d6:83:00:
         20:31:5e:0e:b1:19:d6:12:83:3f:e9:e0:ff:89:d9:a7:b3:1a:
         4d:8c:43:a1:f3:e4:f5:7c:a9:2c:99:26:54:35:88:22:13:29:
         1f:52:5d:3a:c0:8d:89:4f:f1:3c:3a:45:64:e8:f7:9f:ae:e7:
         5c:67:72:88:55:94:e7:11:27:93:d8:17:0c:5b:55:56:28:cf:
         bb:b1:49:c9:33:f6:78:44:93:96:1c:bd:9b:58:68:01:17:6e:
         42:75:19:ff:1f:4c:07:91:0d:46:f1:05:a9:33:e4:4c:96:5c:
         ea:50:1e:43:eb:ba:53:cc:a2:ae:f7:98:fb:76:ae:5f:c6:bd:
         72:e9:7e:46:5f:fd:69:17:05:ab:cd:a9:1f:5d:46:6a:52:5f:
         ee:2f:08:7b:19:81:14:18:49:ad:88:fe:c7:19:06:ee:32:60:
         86:38:08:57:58:b1:fe:95:47:dd:33:c6:e0:ec:b1:c5:f5:5d:
         01:e4:20:6f:52:c9:53:b3:3b:eb:46:c7:8b:da:fe:19:bb:7b:
         de:83:26:e6:98:45:9b:1e:0f:bf:bb:70:df:80:35:47:0f:6a:
         f8:9f:75:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:20:43 2026 by rpki-client