Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
File:                     2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json)
Hash identifier:          b/SHIWaIcLpzjk1Xf2eaz1/g+wGmHl1fKvAw3FT39t0=
Subject key identifier:   EE:BF:05:73:EE:C1:C3:5D:29:26:5B:B7:8C:6F:F5:09:1F:0E:02:E3
Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED
Certificate issuer:       /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED
Certificate serial:       14B8
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
Manifest number:          1492
Signing time:             Thu 16 Jul 2026 15:28:34 +0000
Manifest this update:     Thu 16 Jul 2026 15:28:34 +0000
Manifest next update:     Thu 23 Jul 2026 15:28:34 +0000
Files and hashes:         1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: mYfQqS6DkYmo0gX0Th22FWvGTmHnDBHI2/5YjtKkD3o=)
                          2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: Ahq8pAmeUbi/UnTEDIDcD1i65MG+Vf7huahab+3HR9s=)
                          3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0=)
                          4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: w2NWjfabvdQFP3C4IwPEM+fGnRuZMPns4zEDrwbMyxc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl
                          rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 15:28:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5304 (0x14b8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED
        Validity
            Not Before: Jul 16 15:28:34 2026 GMT
            Not After : Jul 23 15:28:34 2026 GMT
        Subject: CN=6a58f8a2-1347
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:94:67:df:2b:43:03:36:65:4f:d6:af:ea:2c:
                    0a:45:73:00:e1:91:02:0d:a0:8a:d3:15:64:e8:a4:
                    9e:44:4b:9f:8a:7f:e4:b5:ef:80:d8:e5:e2:05:f2:
                    ea:90:0a:5e:3b:9b:90:e5:88:3f:3c:31:ed:99:ed:
                    32:75:ac:cf:06:d6:50:1d:cd:db:71:29:d3:07:92:
                    7f:e0:dc:46:ca:30:4d:a9:28:5d:92:20:28:3a:ca:
                    23:a6:25:76:8d:f1:28:b1:b0:37:de:2e:84:3f:24:
                    59:f8:b0:28:49:3c:16:c7:5f:84:11:d1:62:4e:d3:
                    11:8a:6e:b5:5f:46:dc:17:a9:5f:10:d0:c3:22:65:
                    31:0b:43:39:66:c4:ac:c3:6c:c2:32:09:f1:2c:10:
                    15:75:68:8d:31:d7:38:e8:c8:42:88:cf:be:bb:10:
                    a5:6e:da:0a:36:de:76:2b:54:14:34:05:80:b8:06:
                    11:87:36:fc:f4:21:a7:ce:f9:5a:dc:2e:f9:14:3e:
                    80:91:a9:15:89:46:f3:a8:00:29:17:f6:10:68:df:
                    cb:d6:f8:e8:8e:33:89:ad:49:93:c4:fc:7c:18:f5:
                    bc:22:89:46:bc:63:88:32:dd:57:51:06:f9:03:ec:
                    98:bb:64:ce:1c:0f:5f:6d:6e:ae:19:c3:39:6e:65:
                    36:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:BF:05:73:EE:C1:C3:5D:29:26:5B:B7:8C:6F:F5:09:1F:0E:02:E3
            X509v3 Authority Key Identifier:
                keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:58:6a:f6:0a:3f:dd:ea:cc:d9:94:24:95:12:6f:e2:f3:be:
         6a:a4:eb:ab:c0:db:cb:a0:eb:0d:e4:65:85:a2:99:fc:69:4b:
         1e:2b:84:e1:ae:26:07:c1:0a:1b:19:f8:29:2f:59:f0:6d:d7:
         84:a6:48:f7:57:b4:86:65:41:be:fc:80:c8:1c:87:5a:f6:23:
         68:c9:0c:aa:de:86:62:8d:44:7c:ba:cb:d8:01:dd:ae:65:03:
         9b:c0:bc:78:c7:b6:4e:3a:22:32:37:9f:83:c8:6b:a4:6f:16:
         c7:df:2a:29:29:47:8d:e0:b8:18:30:c8:d2:53:3a:5a:64:8f:
         03:93:02:63:ed:0b:ae:d3:6b:06:65:4f:3a:8a:69:37:58:4f:
         ac:81:0a:5c:3b:a7:cc:ea:d3:2b:54:f6:7f:52:8f:8b:b7:de:
         83:43:00:a3:f7:82:48:c7:2d:f8:4e:fb:c7:88:79:b9:74:94:
         07:40:e5:fa:95:6e:07:ac:39:dc:fc:77:91:13:5d:1a:4e:69:
         48:82:d8:6a:32:da:93:4e:c2:dc:eb:9b:f0:37:7b:4c:96:cd:
         6b:53:3a:db:a9:ff:75:23:d2:80:9a:0b:3c:4f:72:ca:25:05:
         c9:7b:65:80:80:9b:c6:f9:4e:0f:7a:06:c1:b6:0b:88:9e:2c:
         3b:00:20:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:15 2026 by rpki-client