Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft
File:                     qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json)
Hash identifier:          T0uxRVqjMYC9BJKT7jf/2wMPTV7ACOUh1fRqJLMnJ+A=
Subject key identifier:   47:E3:2D:AE:4B:F1:5C:6F:C1:E7:C9:71:ED:0A:38:71:AA:59:FA:27
Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79
Certificate issuer:       /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179
Certificate serial:       F9
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft
Manifest number:          F4
Signing time:             Fri 17 Jul 2026 07:32:38 +0000
Manifest this update:     Fri 17 Jul 2026 07:32:38 +0000
Manifest next update:     Fri 24 Jul 2026 07:32:38 +0000
Files and hashes:         1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: tT7cXzaVpYtgfUU9mPhIIRXFHG94K6jmkuQGcGM9KXU=)
                          2: A94836600F7111F08BC42022C4F9AE02.roa (hash: u576PqO+BtNCnO64DUXQ7ItjcmgVyMNM4SJ3quc5Oh0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl
                          rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 07:32:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 249 (0xf9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179
        Validity
            Not Before: Jul 17 07:32:38 2026 GMT
            Not After : Jul 24 07:32:38 2026 GMT
        Subject: CN=6a59da96-39de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:2d:c3:85:c1:04:e5:9e:3b:2c:69:71:e0:0b:
                    ff:06:ae:c3:87:5d:09:51:ce:c6:7b:6e:04:5b:a0:
                    00:87:28:2c:66:4d:bf:60:d1:91:88:91:0d:6c:84:
                    fa:1b:29:74:a6:6c:75:73:e8:e5:da:7d:6c:90:28:
                    b9:05:84:4c:0b:7c:e7:30:c1:59:10:54:f8:10:03:
                    79:68:09:9c:78:62:f9:99:79:2b:6e:b4:ee:f9:75:
                    b1:c8:d5:49:63:aa:6c:fd:52:84:c8:ff:d8:9a:e2:
                    20:a7:08:4c:60:4e:48:e8:7f:58:3b:ae:dc:66:d9:
                    bc:aa:41:cb:64:c8:8f:49:ae:4d:49:a1:f6:28:d6:
                    48:51:84:d0:f2:04:b7:e1:a7:d5:3a:23:de:27:3b:
                    cc:09:09:09:12:0a:18:e6:e2:bb:0d:09:32:64:65:
                    dc:b1:b7:0a:53:b2:42:3d:cc:05:08:0c:df:9c:2d:
                    2d:23:64:b4:4f:ab:db:ab:37:2a:8f:77:ef:1b:13:
                    ab:00:cc:a4:bd:66:33:a6:c0:cc:8e:12:2d:70:fb:
                    74:6e:6b:79:d0:e7:4d:4a:4f:ff:39:82:1b:8c:3a:
                    71:e3:8d:ec:44:bf:38:67:69:a9:b1:8d:e7:ff:96:
                    13:b8:66:ec:6f:81:1d:59:8e:88:f4:c1:aa:3a:5a:
                    52:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:E3:2D:AE:4B:F1:5C:6F:C1:E7:C9:71:ED:0A:38:71:AA:59:FA:27
            X509v3 Authority Key Identifier:
                keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         cb:43:c3:9e:2f:94:ad:45:2e:9c:5d:a8:08:14:5a:02:58:2c:
         ab:9a:85:2a:cd:82:77:e6:bc:d5:fa:52:e7:ea:28:13:22:82:
         fe:3b:9d:7c:68:2d:f5:87:72:ef:31:45:8c:4f:54:ea:d8:a3:
         11:65:65:26:9f:60:4b:81:dc:bf:0e:72:5b:16:30:41:26:c5:
         b5:91:ce:62:1d:f6:3c:4d:08:12:f5:6a:f7:5f:d2:95:02:a2:
         16:9d:5e:60:17:57:61:a4:5f:83:2c:58:e2:9e:d8:8e:1d:f7:
         f8:a6:fa:b2:1d:cc:20:b1:7e:0c:75:8b:f9:90:24:0d:ea:78:
         a9:5a:9e:91:54:13:c9:18:6b:bc:fc:54:4a:e5:14:04:dd:1f:
         90:cf:ad:c6:39:88:98:52:05:71:cb:73:9c:2d:aa:d9:a1:c4:
         33:a9:e4:88:c4:b4:23:b3:1c:6c:8f:1c:ea:90:dc:d9:13:06:
         af:d0:04:6f:27:7b:a5:2b:c7:a5:ac:ab:9f:57:eb:f7:df:9c:
         ca:3b:8b:fb:06:42:97:ba:a8:13:8c:2d:8e:7a:a7:27:b3:a9:
         60:94:82:74:b0:8a:06:77:25:09:da:72:99:6b:68:7a:94:d7:
         e2:98:d0:74:b0:8b:b4:74:78:2c:99:6f:f0:33:20:bb:b2:72:
         72:46:e6:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:20:52 2026 by rpki-client