Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft
File:                     1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json)
Hash identifier:          EWydCrdcoHBbaTgaJBmwSf93wGeef8+xu5rHcMbfWbg=
Subject key identifier:   9C:83:F9:6E:BC:2C:FC:75:CD:92:AF:2B:35:BD:B8:93:E6:1B:14:E8
Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A
Certificate issuer:       /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A
Certificate serial:       0BD9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft
Manifest number:          0D8B
Signing time:             Sat 04 Jul 2026 19:07:52 +0000
Manifest this update:     Sat 04 Jul 2026 19:07:52 +0000
Manifest next update:     Sat 11 Jul 2026 19:07:52 +0000
Files and hashes:         1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: OuA+ivItNKfqAfBzWVxNSIg8NuKWGCx7+q21Phv8G0E=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl
                          rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 19:07:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3033 (0xbd9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A
        Validity
            Not Before: Jul  4 19:07:52 2026 GMT
            Not After : Jul 11 19:07:52 2026 GMT
        Subject: CN=6a495a08-d9d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:ce:28:97:9d:8f:a1:6c:45:9e:7c:45:3e:7b:
                    0a:ae:64:19:4e:0e:96:18:99:12:3a:d1:a9:19:7b:
                    0b:b8:33:ae:b4:f0:dd:b6:5b:43:70:08:24:32:b1:
                    b3:c1:8d:eb:b5:d0:15:2b:1a:ac:f6:6f:a0:19:4f:
                    c2:25:cf:da:45:d1:b6:1b:b8:e7:1b:bb:d6:bd:d9:
                    21:15:4f:18:31:b2:b6:a3:27:8e:d1:4f:10:ab:ce:
                    38:ce:d1:d5:4c:90:79:be:57:0b:9f:bd:27:65:a2:
                    47:24:c9:fe:08:5e:82:91:28:76:93:5e:9f:e9:71:
                    ee:a6:ff:2f:be:03:4f:46:f0:13:06:c8:1e:07:b9:
                    46:03:95:6f:66:db:9d:0b:3a:1e:4a:6b:e5:9a:3a:
                    4c:8b:6d:e4:a2:78:1e:3e:ca:1a:3a:72:11:74:49:
                    6f:6a:5b:33:8b:0c:18:af:39:85:3d:b5:db:9b:b1:
                    95:0a:e7:2c:4b:40:a6:00:20:38:bb:97:9b:ad:08:
                    3a:55:da:f7:61:64:21:96:74:78:82:09:60:01:5a:
                    20:c4:be:ac:26:ad:39:da:3e:f2:18:75:17:20:17:
                    8d:06:97:b0:8e:c6:e1:2e:4f:31:9c:e9:07:32:1c:
                    aa:ae:09:ac:a7:12:90:54:ec:c5:39:35:9d:56:0b:
                    32:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:83:F9:6E:BC:2C:FC:75:CD:92:AF:2B:35:BD:B8:93:E6:1B:14:E8
            X509v3 Authority Key Identifier:
                keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:c2:43:57:90:0f:ef:1d:21:de:4f:18:be:66:56:cd:55:51:
         18:0d:18:c6:ad:2c:f1:95:1d:d8:2f:c5:28:a2:f4:59:5b:86:
         7b:fb:64:85:de:47:51:e1:fe:81:65:a9:f8:9f:8e:a9:e9:0a:
         4d:d3:76:f8:30:c4:3d:a0:25:e5:66:ad:20:a3:9b:22:ff:1c:
         34:17:64:57:16:78:f8:3a:6d:95:65:91:75:8c:bf:df:fe:27:
         c6:63:96:5e:ad:0f:f0:c2:fd:bb:bf:3d:df:6f:b8:89:1d:d6:
         76:bb:23:2b:c4:2c:61:f5:05:37:39:78:e3:bb:fe:b9:0c:19:
         50:0f:c7:15:ba:03:38:30:59:7a:45:9a:d0:b4:91:e5:9c:c4:
         18:5a:69:ed:90:1f:0e:3c:ea:3d:d9:0b:ce:7b:1e:3f:96:c7:
         d4:02:6f:b8:25:e3:b2:e9:93:e3:12:13:18:3c:1f:b2:d5:9c:
         32:80:2e:98:b5:77:3d:13:8a:27:4c:00:72:b9:5a:9f:0e:9a:
         06:3d:a1:1c:fd:33:b2:7d:79:5b:a2:47:90:5a:08:4d:ba:30:
         90:be:89:03:9f:ce:46:f2:0b:02:03:c9:39:4d:42:35:3d:9f:
         cd:2f:f4:73:98:c6:83:e4:f7:5b:f4:04:25:3b:94:22:56:c4:
         c7:42:36:2f
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1
MDYyMjdCMkEwHhcNMjYwNzA0MTkwNzUyWhcNMjYwNzExMTkwNzUyWjAYMRYwFAYD
VQQDEw02YTQ5NWEwOC1kOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6s4ol52PoWxFnnxFPnsKrmQZTg6WGJkSOtGpGXsLuDOutPDdtltDcAgkMrGz
wY3rtdAVKxqs9m+gGU/CJc/aRdG2G7jnG7vWvdkhFU8YMbK2oyeO0U8Qq844ztHV
TJB5vlcLn70nZaJHJMn+CF6CkSh2k16f6XHupv8vvgNPRvATBsgeB7lGA5VvZtud
CzoeSmvlmjpMi23kongePsoaOnIRdElvalsziwwYrzmFPbXbm7GVCucsS0CmACA4
u5ebrQg6Vdr3YWQhlnR4gglgAVogxL6sJq052j7yGHUXIBeNBpewjsbhLk8xnOkH
MhyqrgmspxKQVOzFOTWdVgsy4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJyD+W68
LPx1zZKvKzW9uJPmGxToMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3
MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll
eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN
QUE5V0tUblJPTHBRWWlleW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAj8JDV5AP7x0h3k8YvmZWzVVRGA0Yxq0s8ZUd2C/FKKL0WVuGe/tkhd5HUeH+
gWWp+J+OqekKTdN2+DDEPaAl5WatIKObIv8cNBdkVxZ4+DptlWWRdYy/3/4nxmOW
Xq0P8ML9u78932+4iR3WdrsjK8QsYfUFNzl447v+uQwZUA/HFboDODBZekWa0LSR
5ZzEGFpp7ZAfDjzqPdkLznseP5bH1AJvuCXjsumT4xITGDwfstWcMoAumLV3PROK
J0wAcrlanw6aBj2hHP0zsn15W6JHkFoITbowkL6JA5/ORvILAgPJOU1CNT2fzS/0
c5jGg+T3W/QEJTuUIlbEx0I2Lw==
-----END CERTIFICATE-----
Generated at Sun Jul 5 07:55:22 2026 by rpki-client