Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
File:                     IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json)
Hash identifier:          x6U2mvuyqK8bQg629HsPj76zi3LMBfQYP+PrzVsX12o=
Subject key identifier:   3A:9C:EE:6A:C4:0A:A9:D0:F2:E2:AB:E0:07:25:10:ED:3A:08:B0:C9
Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8
Certificate issuer:       /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
Certificate serial:       05AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
Manifest number:          059C
Signing time:             Thu 30 Apr 2026 23:23:12 +0000
Manifest this update:     Thu 30 Apr 2026 23:23:12 +0000
Manifest next update:     Thu 07 May 2026 23:23:12 +0000
Files and hashes:         1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: nZq78CbDu8cH+wWdutL9I+iAqMa+KqqREW3oEMDq364=)
                          2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: 0zuqIS8hbfV5A711MSih3uxG9p+AWNnca2aMV8NXs2I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl
                          rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 07 May 2026 23:23:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1450 (0x5aa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8
        Validity
            Not Before: Apr 30 23:23:12 2026 GMT
            Not After : May  7 23:23:12 2026 GMT
        Subject: CN=69f3e460-61b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:52:e8:37:38:d8:76:5d:93:b7:e2:7b:25:2d:
                    32:b0:7f:67:cd:de:7a:71:e3:87:f6:c0:69:0b:1c:
                    81:7a:8f:58:4e:5a:30:97:19:e8:02:7f:a9:fc:62:
                    8c:80:08:02:f2:ce:2b:55:17:b5:a8:5c:80:1a:09:
                    9f:03:36:65:fe:49:c3:5c:70:87:f8:41:71:82:87:
                    21:4a:a6:e4:83:9a:a6:6f:d6:e4:a0:cb:2d:2f:fb:
                    81:ba:9f:ba:32:2a:53:d3:d0:52:7f:97:7c:18:fc:
                    df:d7:fc:0c:56:e8:da:7e:9f:87:f4:be:74:f6:5c:
                    06:c5:a7:84:09:6b:79:21:bf:3a:54:d8:44:de:c7:
                    a9:01:72:72:84:43:59:58:a8:32:72:ff:47:bd:f3:
                    f5:fd:a3:f0:45:2a:a1:0b:a8:06:b8:d1:69:85:73:
                    a0:f6:08:02:4f:ce:30:82:f3:c7:45:bf:73:61:b0:
                    a8:54:3c:ed:d5:64:b4:18:7c:89:bd:07:4d:2e:90:
                    76:dc:11:85:3f:c2:87:b1:a1:f0:5a:96:e0:53:22:
                    26:32:80:d0:18:1c:db:76:87:1e:bf:31:96:f4:17:
                    fb:fe:b1:01:86:b7:0d:99:e3:6c:b8:9e:9b:d5:68:
                    85:30:cb:cf:85:1d:9c:28:f5:79:4f:0f:1d:04:17:
                    c6:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:9C:EE:6A:C4:0A:A9:D0:F2:E2:AB:E0:07:25:10:ED:3A:08:B0:C9
            X509v3 Authority Key Identifier:
                keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:d6:66:7d:b9:b2:db:ed:57:f1:59:87:67:67:2e:c1:9c:61:
         0a:67:fc:a8:ff:7f:ff:6a:5d:c6:d0:bc:30:3f:69:00:4c:f4:
         66:ed:1b:03:01:be:55:67:78:ee:bb:77:a3:3f:a8:24:1e:95:
         3f:38:be:51:89:43:13:6d:24:3f:96:cc:5f:40:62:67:0b:19:
         a6:46:4f:ea:46:7c:b5:59:ad:9a:dd:70:c2:e6:3a:1e:a4:9c:
         62:18:10:bc:3a:59:4e:a9:29:ba:1f:16:a3:40:ea:90:c7:8c:
         c9:70:66:3e:63:02:39:f4:09:91:9d:db:99:e5:98:d3:f4:c9:
         c2:11:d5:27:d6:23:b0:4e:5e:34:df:ac:b8:9b:a7:74:d5:b0:
         1b:a4:4b:14:8f:b4:9f:04:31:0b:50:86:a8:82:0f:2e:a8:6d:
         54:17:09:87:07:1e:b2:ed:b5:3e:95:06:d8:63:35:db:43:b3:
         3c:b3:11:f9:11:f1:7b:f3:3f:39:ad:ff:f8:02:ee:3b:25:75:
         e1:f0:bd:f9:f0:5e:ca:56:66:64:17:21:13:95:2d:a6:43:fb:
         75:f0:56:a8:43:4a:0b:bb:cd:60:15:5f:73:8d:68:6e:e4:38:
         5f:9a:76:a9:91:e6:a4:e3:ae:aa:5d:02:09:88:95:91:20:7b:
         82:ab:f1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 2 11:11:06 2026 by rpki-client