Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft
File:                     RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft (raw, json)
Hash identifier:          B7UdqbQHMcpqdcZZxY4gnhFI7dPdB1HNaXEHn8Fm5pM=
Subject key identifier:   57:53:38:0D:16:28:A2:84:D1:42:A2:FA:E7:20:AE:1A:BF:E7:97:55
Authority key identifier: 44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78
Certificate issuer:       /CN=A91E5C49/serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078
Certificate serial:       0843
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft
Manifest number:          1070
Signing time:             Mon 06 Jul 2026 21:31:43 +0000
Manifest this update:     Mon 06 Jul 2026 21:31:43 +0000
Manifest next update:     Mon 13 Jul 2026 21:31:43 +0000
Files and hashes:         1: RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl (hash: ILPkA5VFZrHIZWyFkxJQWiH6qHeHi3voM4OmetIuY6I=)
                          2: 84FDF25A396711ED8AF52966C4F9AE02.roa (hash: jUqnFx87IlStP4kkY9M0idgA/Hwc78g7kwMihGngNEc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl
                          rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 20:28:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2115 (0x843)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E5C49, serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078
        Validity
            Not Before: Jul  6 21:31:43 2026 GMT
            Not After : Jul 13 21:31:43 2026 GMT
        Subject: CN=6a4c1ebf-d0e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:46:02:36:04:e8:58:e6:47:2b:ce:6c:79:8a:
                    c3:13:8c:13:d4:b9:04:fc:d6:4a:be:3f:ef:a5:63:
                    8a:6e:12:be:be:09:8b:f4:94:d2:4a:90:e5:34:7c:
                    b7:98:53:99:cc:a0:c0:4d:91:73:90:bc:9b:59:48:
                    0b:62:9a:92:09:eb:52:d7:9b:27:39:7e:85:2a:69:
                    60:23:e7:5b:a9:db:eb:7e:5d:0d:b9:74:35:24:5f:
                    ce:5d:46:15:bd:49:7f:eb:e1:e7:32:f3:3d:ab:19:
                    ea:bc:50:ad:e2:56:e0:34:c6:c9:4c:b4:ea:f3:c7:
                    94:a7:30:a2:61:63:1a:b4:6d:42:9b:bb:0e:9c:7f:
                    7b:3a:db:3b:25:3a:81:14:bc:57:a8:6e:da:38:fb:
                    3c:0b:9b:ff:a2:be:2a:9b:91:fa:76:ef:76:53:14:
                    20:5c:19:2f:16:b3:d0:35:02:dc:02:d6:50:69:3e:
                    c5:3a:6f:6c:1f:3a:66:85:bb:24:f9:e1:7d:18:03:
                    d2:86:93:e8:b9:92:50:e8:a4:d4:cf:3c:6f:26:5d:
                    26:62:8b:78:a4:ba:76:4c:b8:0c:de:94:a2:05:36:
                    45:45:d5:40:f3:e9:a4:cf:f1:e6:17:86:c0:35:fd:
                    26:ad:8c:07:89:49:c7:ed:35:72:ae:b8:9f:0c:22:
                    a2:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:53:38:0D:16:28:A2:84:D1:42:A2:FA:E7:20:AE:1A:BF:E7:97:55
            X509v3 Authority Key Identifier:
                keyid:44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:0a:d9:1a:96:eb:c4:e4:fd:ba:6a:ce:ea:12:bd:12:c6:df:
         1b:0c:f7:ae:f2:98:ea:ba:9c:73:af:6d:35:c5:cf:64:b4:1b:
         64:75:13:fa:53:64:5d:92:bf:51:97:57:11:9b:43:cf:75:cf:
         b1:3b:4a:ff:8c:c9:d2:41:f7:04:6d:02:b7:5f:e4:7e:2a:81:
         bc:4a:91:c1:b0:69:ab:25:ab:0d:cc:8c:ad:cb:b0:8f:09:27:
         6b:5d:9f:f2:00:e8:c4:e3:e4:db:57:c1:47:26:c7:3d:cc:76:
         54:ba:c0:40:55:5b:59:84:d6:92:b4:8e:f7:8a:86:fb:d4:88:
         f7:5d:6f:11:99:75:3d:1d:93:2a:32:0d:d6:72:b6:5f:e3:fa:
         72:42:81:0c:db:3e:47:75:9d:d7:a7:46:91:b7:f3:5f:b3:0a:
         00:4c:c4:17:9c:79:aa:3a:78:f0:a9:82:4c:43:8e:40:e0:40:
         19:34:4c:cf:70:cc:66:44:5e:a0:33:7d:9e:8f:40:c8:cf:e0:
         94:39:81:9f:72:ac:dc:f8:e7:b1:a1:41:a5:63:ee:d4:af:78:
         a6:8b:b8:94:40:ac:19:c4:04:29:61:b7:7e:2c:be:37:88:e0:
         63:fa:51:87:d2:94:5d:e0:88:58:9d:ae:f4:08:13:69:c3:ce:
         f8:9b:b2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 23:19:49 2026 by rpki-client