Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
File:                     gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json)
Hash identifier:          umWHzE5K1S53NEx/8NehKNkVz8y+ekTvGBnnQq5EeME=
Subject key identifier:   D8:6E:A2:EC:D5:DC:AA:96:B6:0C:80:E0:B0:D1:AD:13:F8:73:78:AD
Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46
Certificate issuer:       /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46
Certificate serial:       0E69
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
Manifest number:          0E5D
Signing time:             Thu 02 Jul 2026 17:52:50 +0000
Manifest this update:     Thu 02 Jul 2026 17:52:49 +0000
Manifest next update:     Thu 09 Jul 2026 17:52:49 +0000
Files and hashes:         1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: RvX41UIMIkhdPk1slqGk0GPutd0+B9uAXQEsODXBuNs=)
                          2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: DD1ADaREQj4FZ7nnow63JObODw7KCChH9CO7F5RCGA8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl
                          rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 17:52:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3689 (0xe69)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46
        Validity
            Not Before: Jul  2 17:52:49 2026 GMT
            Not After : Jul  9 17:52:49 2026 GMT
        Subject: CN=6a46a572-042e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:47:40:62:bc:9b:a5:19:70:5c:f4:59:ff:84:
                    bd:da:fa:f8:2a:e6:1b:97:87:65:8c:64:8a:27:58:
                    36:f1:81:da:19:39:c4:40:7f:e5:42:57:9f:53:1e:
                    5f:5e:23:09:01:5c:45:16:3c:4b:aa:94:a5:27:b1:
                    61:2a:9f:03:b1:bc:72:ce:89:c0:09:53:8b:9d:28:
                    4f:6a:28:56:b9:2d:7d:ec:36:da:da:a0:5a:24:2a:
                    e6:7d:59:b0:a8:75:dc:79:1c:c7:b8:e2:f2:d5:ab:
                    ac:ce:3f:ff:93:18:4d:03:8c:51:39:d5:97:e3:89:
                    eb:64:b6:c5:a9:d6:f1:87:ec:99:66:ed:17:8d:55:
                    5c:f3:e8:66:c3:da:11:c5:d4:f6:ea:a1:56:c3:5b:
                    00:58:94:92:5f:67:6b:1a:4b:7d:75:40:a9:65:47:
                    e4:e9:da:50:6d:2a:fc:d0:51:f1:75:8f:4b:5e:87:
                    45:bf:18:3a:e7:8f:d6:6a:25:ee:80:89:a2:f8:3b:
                    5f:dc:21:5e:46:1b:fd:da:b8:7f:67:cd:22:56:db:
                    ca:79:d5:ad:ab:b9:65:4f:9b:cc:b6:91:40:2d:09:
                    2f:ee:54:f7:4a:8d:f5:eb:2c:0d:03:23:42:e2:41:
                    3f:42:4d:2e:b2:e7:e7:79:ee:f2:b1:f4:ac:99:28:
                    90:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:6E:A2:EC:D5:DC:AA:96:B6:0C:80:E0:B0:D1:AD:13:F8:73:78:AD
            X509v3 Authority Key Identifier:
                keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:07:28:09:da:f1:ba:9b:a6:2e:8d:54:3b:06:a1:3f:8d:65:
         71:39:07:13:45:4e:a8:61:86:7e:79:d3:51:04:5e:d1:77:0d:
         f2:bc:bc:9c:36:94:76:06:f3:6b:0c:c7:c4:2d:10:40:48:e8:
         55:b8:d5:d3:fb:f0:ca:da:b9:a8:2f:fa:09:49:09:fd:85:ce:
         9d:94:77:86:ec:ea:5c:4c:9b:10:fa:d3:25:d5:ed:8c:22:5f:
         fe:31:63:2c:ea:d6:35:06:77:66:2e:bc:55:13:ff:b3:35:cb:
         25:a2:90:a3:61:4a:77:69:2f:c2:c0:a5:ee:0e:c4:3f:f7:28:
         34:39:2e:f3:93:1e:02:88:d0:4c:a1:12:af:0b:18:49:80:80:
         e7:4f:84:2d:4f:11:60:df:15:87:98:72:0d:c3:bb:15:ac:9d:
         a7:0b:19:a9:7a:a8:b9:01:d6:5b:dc:8f:dc:2e:41:61:a0:54:
         66:1a:72:ad:5e:01:9d:4f:b3:d5:de:46:2f:d3:61:23:54:e9:
         bb:c2:d5:4c:3f:d0:77:7e:ce:66:81:15:e5:14:71:36:1d:a9:
         1b:7b:57:7d:06:92:0f:42:3b:30:0a:20:3b:ed:08:0c:51:88:
         cb:c2:9c:e6:af:eb:de:5e:54:10:7c:20:89:69:1e:c6:eb:00:
         11:79:d2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 05:08:46 2026 by rpki-client