Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft
File:                     dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json)
Hash identifier:          Z7xqRE+Y3ya7m5vGJq10HY22n/Bqk8b/5x3Vf8rp3Yw=
Subject key identifier:   62:5D:4B:07:2C:13:81:36:6A:56:52:25:50:B6:54:8A:40:46:95:2A
Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5
Certificate issuer:       /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5
Certificate serial:       023E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft
Manifest number:          0234
Signing time:             Sun 05 Jul 2026 03:07:56 +0000
Manifest this update:     Sun 05 Jul 2026 03:07:55 +0000
Manifest next update:     Sun 12 Jul 2026 03:07:55 +0000
Files and hashes:         1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: TPG5kluZI14O7DCXcQ12yqEPhtRFlqNR1nzhzHxyyx0=)
                          2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: LOVQf/LdRjlXMFrzIgrgv8KlqIFzre3Qe7jhRSJb4JQ=)
                          3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: xb0+uYgRF2Qsu64pqIvTIsaUIoIoJYA9r/GFBorr/Cw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl
                          rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 03:07:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 574 (0x23e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5
        Validity
            Not Before: Jul  5 03:07:55 2026 GMT
            Not After : Jul 12 03:07:55 2026 GMT
        Subject: CN=6a49ca8c-3106
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:2c:84:46:16:1a:1f:29:9b:9e:39:68:06:3d:
                    24:89:aa:cb:ac:86:42:b6:f7:b2:a8:0b:0d:47:2e:
                    c9:42:0e:d7:61:47:43:ab:09:ca:e5:7b:b8:85:80:
                    eb:f1:24:7b:b1:b6:74:04:f5:94:88:99:d3:5d:b3:
                    fe:39:f3:9f:7c:57:22:55:42:d8:ef:fc:c0:6a:0f:
                    60:13:64:4e:ea:a6:b1:e5:f3:9d:fb:7a:ca:a4:ad:
                    74:ee:9b:e6:f4:dd:42:49:87:38:76:eb:c6:4f:5d:
                    ca:82:7c:b9:d5:56:1b:fc:67:80:f6:23:96:3c:91:
                    0b:0b:3e:52:8e:5d:3f:c9:27:61:0b:1d:2d:35:10:
                    bb:2f:bd:b9:b9:5f:8a:04:60:c8:3d:a1:01:a1:92:
                    5e:bc:6a:ac:a1:9f:72:05:99:f8:e7:b4:05:ff:fc:
                    b4:07:6c:36:09:8a:ef:84:29:91:45:72:6e:dd:22:
                    ee:b9:ce:f3:54:f9:f3:a6:91:76:34:75:6a:0c:21:
                    6f:b5:a4:fd:8e:b1:c2:65:f0:46:8c:c2:66:ef:9c:
                    5b:85:e0:45:07:ee:6c:b6:30:05:f4:6e:d9:67:ad:
                    d0:0d:76:d1:4f:ac:95:66:95:c5:8d:fe:a7:83:5f:
                    9c:01:72:19:96:98:17:d3:bc:a0:e3:3c:42:5d:48:
                    74:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:5D:4B:07:2C:13:81:36:6A:56:52:25:50:B6:54:8A:40:46:95:2A
            X509v3 Authority Key Identifier:
                keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:cc:56:7b:5d:d4:cb:bc:5a:69:87:21:0b:ba:39:62:47:d6:
         21:c7:aa:ab:4a:29:ff:86:38:a6:be:c5:66:5e:0c:74:0b:eb:
         5c:86:1e:4e:30:bd:2a:15:1b:76:e5:ce:b4:78:7e:5e:d1:8a:
         6e:f9:fe:65:ea:c3:35:8f:e8:a4:8b:69:b0:69:cc:cb:a7:9f:
         8e:9e:ba:a8:62:3a:d1:7d:7f:74:10:6d:5d:ec:98:2a:7b:76:
         9e:80:9c:e9:85:eb:c9:ab:ac:29:ef:99:9c:24:ef:31:16:ca:
         ab:ba:02:1a:89:f0:1d:84:d9:64:8f:a3:73:29:28:43:a6:d3:
         6f:d0:fd:01:58:f7:75:d5:17:9a:23:7d:a7:ae:40:c5:66:00:
         c1:7c:bb:bc:73:10:36:df:08:e0:fd:9e:27:02:f5:c8:29:85:
         09:e7:cb:ad:12:ad:a1:3b:51:a7:e7:3c:6f:a8:9d:e0:06:c7:
         f0:b5:bd:3e:83:32:6d:aa:36:8b:b0:ef:1d:51:8f:ed:e9:7d:
         21:cf:76:78:ca:20:b4:9a:67:dd:86:df:a7:23:85:52:13:ba:
         bc:eb:b7:a6:dd:d4:fb:80:3b:a8:32:47:a7:ef:b0:1f:86:3d:
         ff:6c:e4:a7:5e:51:a0:da:18:3d:09:d0:46:41:31:2c:2c:77:
         22:da:fc:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 20:09:45 2026 by rpki-client