Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft
File:                     y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json)
Hash identifier:          guT9eEruIpfazrSLGCHw6do81l0QSMaa/zoY0iRoOmE=
Subject key identifier:   7D:DA:BF:E9:50:51:FD:D1:70:74:83:9D:1E:B9:66:6A:F5:8B:1E:CE
Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A
Certificate issuer:       /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A
Certificate serial:       0CD1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft
Manifest number:          0CC1
Signing time:             Thu 02 Jul 2026 18:38:25 +0000
Manifest this update:     Thu 02 Jul 2026 18:38:25 +0000
Manifest next update:     Thu 09 Jul 2026 18:38:25 +0000
Files and hashes:         1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: FRRXM7K6/TD6+eXKo506PvVSbzmW1MhHvGVe9al3Kqc=)
                          2: 9DA63F546D2811F09647053BC4F9AE02.roa (hash: RqF3cRBG8AaHKTEnB008C+GD7GzGFEY6SVWZ6TQ/56s=)
                          3: 12D352766D2911F0B26CB33BC4F9AE02.roa (hash: +veuE7uroMOvZaLX4YYQUXIUo7kDv0lS8n9ppMEUfBU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl
                          rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 18:38:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3281 (0xcd1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A
        Validity
            Not Before: Jul  2 18:38:25 2026 GMT
            Not After : Jul  9 18:38:25 2026 GMT
        Subject: CN=6a46b021-6125
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:d8:0c:58:02:15:8e:ad:cc:c7:7b:8b:e4:5c:
                    1b:de:eb:be:12:db:03:44:8f:06:a7:d7:78:15:1a:
                    98:cb:dc:ce:ec:ff:2e:5c:69:ed:86:84:2c:7f:ca:
                    77:c4:3f:a1:f8:f4:52:2e:ef:57:5c:0d:3c:41:eb:
                    9b:9c:e5:e8:55:f7:ee:0e:be:47:80:98:09:45:63:
                    56:be:cb:6d:43:55:59:79:48:d5:c1:58:fc:60:6a:
                    b5:f9:d2:72:fd:94:70:fa:a4:1d:18:35:0f:90:d6:
                    e8:d1:3f:88:4a:5a:38:41:c8:6f:2d:d7:40:87:17:
                    4a:50:c6:49:c2:43:37:25:71:c9:d5:3a:f5:de:0d:
                    ab:fe:eb:65:c4:93:0e:56:dc:40:67:92:38:cc:3e:
                    dd:25:92:9c:1a:9b:19:b9:7d:bb:f0:d8:0b:6d:e2:
                    99:9a:aa:7b:0d:c0:db:e2:c1:16:ef:be:51:53:6e:
                    bd:08:a6:be:b6:9c:d5:f3:f3:28:f6:1b:0d:19:fc:
                    ff:dc:69:7d:7d:a3:e0:01:2f:67:56:c4:7f:ec:b1:
                    26:20:91:49:f6:83:9f:a5:2b:d9:64:ff:b5:9b:62:
                    57:87:e4:03:a5:d1:43:71:b2:bd:6d:9e:62:cf:cf:
                    f0:8a:45:92:c5:af:a5:e1:01:e3:94:85:90:4e:d3:
                    30:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:DA:BF:E9:50:51:FD:D1:70:74:83:9D:1E:B9:66:6A:F5:8B:1E:CE
            X509v3 Authority Key Identifier:
                keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:12:9b:e4:61:63:c4:0a:6b:e9:a9:de:cf:bf:16:52:ec:d5:
         93:05:23:e6:98:ac:e5:22:5e:11:30:d3:bb:67:18:65:b8:83:
         95:a1:ae:0f:df:8c:40:34:35:8b:06:1c:1c:ee:89:df:e8:5c:
         cb:ad:d1:46:5a:6a:e2:87:ff:82:52:89:22:98:64:d9:46:59:
         b7:88:11:53:35:ac:08:81:d0:20:9b:d8:12:ca:f2:6d:4c:86:
         ff:0a:c1:a1:85:f7:2b:94:8a:d1:7d:f4:39:34:03:25:44:b5:
         ce:92:47:7e:b8:bf:6b:22:f8:ee:40:57:4e:51:ca:59:7c:d2:
         e5:b6:eb:a9:33:e4:54:1c:b7:fc:1a:8b:d8:c2:87:2a:60:66:
         ae:5f:be:13:29:64:c6:1e:1f:2d:8a:e7:6b:9e:09:03:97:e1:
         dc:2c:59:39:22:5d:74:36:8c:23:da:f1:53:76:af:83:5f:36:
         47:6f:7b:10:f2:da:e7:93:64:aa:00:ca:26:ee:44:3e:b6:9b:
         ae:fd:b3:95:ad:b1:d7:7f:a9:62:10:c7:c9:f6:91:45:21:71:
         8d:44:ba:88:26:78:c5:e3:03:37:b9:84:56:44:a1:34:c7:bc:
         77:cd:2b:57:83:d0:18:1d:99:1a:a6:d5:3b:0d:37:9f:7e:9f:
         5e:00:bb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 01:28:30 2026 by rpki-client