Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
File:                     km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json)
Hash identifier:          TeooBKWjEwuoIe1zcUVC7HBbTyALb63bZWwd3QqX9a0=
Subject key identifier:   50:0C:BE:B5:39:90:F7:6E:54:E8:97:DA:AA:30:D8:06:DA:CC:06:A5
Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17
Certificate issuer:       /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17
Certificate serial:       0291
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
Manifest number:          0280
Signing time:             Mon 13 Jul 2026 02:10:11 +0000
Manifest this update:     Mon 13 Jul 2026 02:10:10 +0000
Manifest next update:     Mon 20 Jul 2026 02:10:10 +0000
Files and hashes:         1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: Ose3yvOY1FbNABHfsdPzZyLbU/A8bsirVIjlq/jAwgQ=)
                          2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: fY7nCOHqK93oVhC5DmscMwb888TwpZD1ZSvnmNHDxkQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl
                          rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 20 Jul 2026 02:10:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 657 (0x291)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17
        Validity
            Not Before: Jul 13 02:10:10 2026 GMT
            Not After : Jul 20 02:10:10 2026 GMT
        Subject: CN=6a544903-982f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:2e:51:2c:4b:2b:09:81:bd:a9:24:e7:cd:eb:
                    38:a5:57:c3:91:78:d9:a6:35:3f:dd:aa:e4:3d:0c:
                    71:00:2c:fa:7f:f5:2d:0e:11:c4:19:29:06:91:59:
                    33:b9:a3:73:fd:54:7b:b5:b1:50:c3:bb:1b:81:95:
                    98:3e:2f:32:e6:13:f5:f4:2c:de:e9:dd:ac:f2:40:
                    4d:12:83:44:8b:87:89:8e:5b:8c:16:ca:6f:84:ef:
                    53:6a:da:77:b0:2a:f4:9e:e0:f2:45:3f:88:2f:1e:
                    fd:2a:21:dd:21:7d:60:91:e9:c6:ad:74:c8:8b:42:
                    a4:13:82:b2:05:b3:3d:a4:10:8a:6e:26:af:3b:7d:
                    a1:d4:02:96:c0:07:00:3e:ef:b4:34:a2:33:74:d6:
                    6e:e9:c0:16:0c:b0:a0:22:62:04:01:95:90:dd:4a:
                    63:3e:06:23:a7:e6:5a:b3:bc:e0:49:b0:fc:64:8f:
                    a5:d1:5f:17:77:f5:d2:a0:1c:12:05:ee:fd:6c:ec:
                    10:25:63:0f:b4:76:eb:37:91:29:c4:96:51:f8:0a:
                    6d:7e:52:56:78:a5:4c:b2:46:f4:a3:40:48:45:81:
                    c1:7c:a5:2f:65:39:90:ce:a9:f8:d6:1c:d7:e7:9d:
                    96:ae:11:c6:01:84:bb:6f:5e:55:19:e9:d4:a6:71:
                    b1:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:0C:BE:B5:39:90:F7:6E:54:E8:97:DA:AA:30:D8:06:DA:CC:06:A5
            X509v3 Authority Key Identifier:
                keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c7:dd:ce:31:7b:35:4b:51:02:ab:54:86:a5:86:42:73:d3:78:
         91:a8:f8:f4:ee:ed:9f:4c:d2:46:bb:a3:47:59:e8:ba:e9:09:
         92:65:c8:5e:fc:03:62:b5:c4:ad:1a:91:60:3e:82:b1:ad:b7:
         22:33:db:47:cb:7b:da:43:d5:6b:f9:9b:6f:df:e3:f6:41:33:
         55:b8:0b:76:e6:79:db:1f:0e:74:04:06:38:15:97:93:fe:f4:
         91:1f:c1:be:4d:49:73:3c:01:86:b5:2b:94:45:e1:6e:06:22:
         71:95:d4:eb:8d:6f:86:4a:3a:b5:ad:8b:ac:a1:b5:82:2f:10:
         e3:42:b9:1a:56:0e:4a:61:c3:3f:05:ee:52:46:0c:4c:27:26:
         ac:13:aa:3c:66:1d:0e:2a:3e:e0:e9:57:34:e0:a5:56:f2:5b:
         b3:07:80:b6:b5:c8:85:85:ad:6a:05:fb:bf:ea:30:59:b8:7e:
         4d:a2:eb:68:da:40:b4:5b:94:f7:a2:75:1c:81:6b:78:aa:8b:
         2e:fa:fb:20:21:2e:ed:50:10:a8:ff:91:c5:63:42:97:b2:4c:
         7d:a8:34:c1:5f:67:91:89:25:b8:ad:bc:94:06:af:1c:77:9f:
         02:a6:dc:8f:13:73:d9:84:2d:c9:9d:ad:3f:99:d8:83:b2:e9:
         05:e7:ca:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 14 14:53:48 2026 by rpki-client