Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
File:                     b70F9jC-RBCpUSzbaahco3zoxzk.mft (raw, json)
Hash identifier:          2Kv0BPeSZULd8Gb+i1N+2OJTQezzYRNDmv9ueIjj/Kw=
Subject key identifier:   69:01:DE:7E:83:EC:36:17:04:F7:D3:1D:3E:8A:A5:A6:BB:41:B6:1D
Authority key identifier: 6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39
Certificate issuer:       /CN=A91DC897/serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739
Certificate serial:       54
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
Manifest number:          50
Signing time:             Wed 01 Jul 2026 10:09:31 +0000
Manifest this update:     Wed 01 Jul 2026 10:09:31 +0000
Manifest next update:     Wed 08 Jul 2026 10:09:31 +0000
Files and hashes:         1: b70F9jC-RBCpUSzbaahco3zoxzk.crl (hash: 855VRBxwgZCfKE2Uv7UOKoDk+fAzL5yAvx5oavu4rsk=)
                          2: B8EA8ABC033311F1AAD74374203D8C67.roa (hash: VGTwiIqmaXq4MsscshpbxlIvpQ6VN4x9kiDNRx4VLZE=)
                          3: 2764AC08003111F18836FC08486F56BC.roa (hash: yELvoRc3S+vHFcCwKMNPwYPmKbFYr2Z48ucu1l1HAEs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl
                          rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
                          rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 08 Jul 2026 02:50:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 84 (0x54)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DC897, serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739
        Validity
            Not Before: Jul  1 10:09:31 2026 GMT
            Not After : Jul  8 10:09:31 2026 GMT
        Subject: CN=6a44e75b-9f95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:17:55:f1:65:a0:8a:b6:d3:1c:cd:14:39:de:
                    01:4b:8f:26:37:3d:d7:07:a9:0c:b9:6c:05:a4:88:
                    0c:b7:9c:3d:d1:f7:6c:4d:15:b9:99:24:35:a0:32:
                    a9:40:82:af:44:31:b7:84:97:8f:88:4c:bd:59:4c:
                    63:8d:89:39:15:ad:f7:bd:41:69:53:c2:3f:f8:95:
                    37:fd:86:10:f9:31:f6:3b:ff:23:be:81:6b:dd:a1:
                    5b:b1:bf:4b:7d:0e:05:52:a2:93:ba:d0:e6:49:a0:
                    8a:9b:ff:d1:cb:75:39:ff:46:2c:7b:f3:20:a2:4b:
                    ac:eb:95:76:8d:cd:cc:d5:fa:8e:54:fd:40:8f:80:
                    a8:a6:c3:9e:23:c7:e4:56:af:c4:75:bd:d6:26:f6:
                    d0:3c:c9:e4:28:f1:28:8b:bf:33:ec:ed:bb:ef:0a:
                    3a:8b:43:85:9b:c0:71:3b:95:0e:7f:b0:52:f3:a1:
                    26:6e:4b:b1:e1:5a:7c:69:6e:74:59:ad:8b:08:80:
                    30:eb:f8:99:30:ff:58:0f:d4:32:3d:02:cf:6a:1a:
                    3f:64:7a:c3:c9:6a:bb:15:2d:20:da:9a:4a:52:e3:
                    da:bc:2b:be:e6:0f:2b:2c:01:c1:32:d6:77:6e:b7:
                    e4:be:29:32:3b:15:ac:aa:9b:87:e7:02:34:4b:44:
                    2f:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:01:DE:7E:83:EC:36:17:04:F7:D3:1D:3E:8A:A5:A6:BB:41:B6:1D
            X509v3 Authority Key Identifier:
                keyid:6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:79:a5:84:37:d6:33:08:17:4d:27:a1:f5:c5:6a:e4:05:83:
         25:89:21:13:46:0f:0e:64:09:db:a9:e3:f6:8c:27:09:7f:52:
         bb:53:83:85:4d:66:f3:32:94:7e:21:eb:72:0a:55:42:e9:be:
         71:68:2a:e9:54:af:d3:de:e1:ba:7b:fc:9d:b9:f3:7f:6f:6b:
         ea:1d:7a:f0:8d:d1:05:bf:17:e1:23:f9:5e:b2:a0:c5:56:c6:
         9e:e0:60:7b:42:b2:cb:ab:37:93:bd:24:59:1e:c8:eb:ef:bb:
         f6:db:75:a2:21:e3:d3:36:52:5c:c0:25:ec:9c:c1:4f:94:d2:
         d1:d5:be:02:f3:12:eb:16:82:ef:7b:f6:89:07:ce:c3:4d:25:
         37:97:18:3b:d6:c2:7f:ce:73:ca:1f:73:65:3a:60:c5:bd:b3:
         8d:79:bd:5e:29:9f:72:45:18:4f:db:89:5a:38:cf:ed:aa:aa:
         da:3e:08:82:06:c7:f9:69:3d:a7:14:a8:a8:04:4a:7b:d3:59:
         6e:9a:68:77:55:08:ef:a1:c8:ae:4b:c3:b2:a0:4e:9f:20:54:
         f5:fe:fc:d5:b9:66:a4:41:9c:18:6b:17:a5:a8:33:03:f9:4f:
         f6:ce:77:18:6d:a0:18:f1:d8:6a:a1:14:43:0b:1d:23:1b:76:
         62:a8:04:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 14:49:00 2026 by rpki-client