Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
File:                     zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json)
Hash identifier:          pElSUF+n0yPyUO2DICUQNUq75YsECSSzPjviLXIH2yI=
Subject key identifier:   26:E2:5A:52:26:7B:58:9E:BA:DE:9B:2B:8A:20:CD:74:50:00:A3:B3
Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0
Certificate issuer:       /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0
Certificate serial:       0D71
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
Manifest number:          0D62
Signing time:             Thu 16 Jul 2026 18:19:16 +0000
Manifest this update:     Thu 16 Jul 2026 18:19:15 +0000
Manifest next update:     Thu 23 Jul 2026 18:19:15 +0000
Files and hashes:         1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: MvlOYurPa53riKJsLFH4mZRPtXTGxquKwZIRR3UQxsE=)
                          2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: 9a0DmjZ9WtrPbMbEmNnoQ2iB4wOKOazyVMvcL5JNv20=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl
                          rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 18:19:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3441 (0xd71)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0
        Validity
            Not Before: Jul 16 18:19:15 2026 GMT
            Not After : Jul 23 18:19:15 2026 GMT
        Subject: CN=6a5920a4-8e9e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:29:2f:f8:f2:5f:b2:4d:ff:82:55:6d:39:b9:
                    7b:2b:04:aa:41:b4:ea:0e:86:8c:f0:b2:4d:6f:5d:
                    ad:61:a2:47:91:8f:60:8a:86:5f:d5:9b:91:14:3c:
                    4e:8f:0b:81:24:8b:b1:8b:95:29:41:7d:8b:d4:c7:
                    c2:29:d7:dd:b2:4a:cb:91:48:06:d8:12:b3:bb:d6:
                    16:8a:46:8e:4b:3e:d9:2a:89:08:5c:a6:e6:62:c5:
                    0c:33:08:f6:ba:ed:e0:a3:a3:d7:ce:f2:39:05:1c:
                    61:3d:f7:85:8c:cb:e4:cf:b3:a4:05:bb:be:60:f8:
                    fb:9a:20:01:6a:05:21:ab:1c:e3:97:8d:a9:82:dc:
                    e7:c8:ef:87:3f:5b:c9:7e:ee:92:dd:a5:19:c3:8d:
                    4c:76:e6:b9:ce:4b:92:b0:7f:f9:de:41:8f:bb:8f:
                    66:80:43:36:2b:0a:2b:4e:be:a5:34:38:e8:6b:51:
                    96:30:ba:e1:1a:de:aa:7d:e9:1d:5b:2a:c8:59:3c:
                    88:55:6c:4c:1b:b0:89:f0:5d:92:46:a3:9e:76:62:
                    68:fa:29:55:f7:5d:08:2c:45:0d:68:a1:61:2f:59:
                    54:31:e0:de:62:27:c4:0a:aa:d5:80:8f:17:7d:b7:
                    bb:e8:ba:12:d8:b3:1f:86:b7:52:98:8a:a4:fc:0a:
                    20:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:E2:5A:52:26:7B:58:9E:BA:DE:9B:2B:8A:20:CD:74:50:00:A3:B3
            X509v3 Authority Key Identifier:
                keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:ee:a1:ad:b5:94:47:1c:7b:d7:48:ba:7a:f1:94:fa:16:b2:
         b0:71:bd:b9:db:a2:27:73:72:b4:a7:a9:24:78:75:ed:cc:ad:
         fe:ea:5d:e6:f4:58:6e:c2:84:b4:bb:16:1c:e1:ef:88:6d:64:
         11:91:3f:b7:9a:28:29:67:d7:e4:14:19:2e:61:46:60:00:0e:
         da:90:9e:13:c9:4b:32:51:81:30:64:61:d5:a7:bc:63:cf:96:
         7f:98:ae:c9:cb:f2:ec:6f:8d:2c:b3:0f:56:b9:3f:6c:e4:a6:
         b8:fb:30:e3:ba:11:8b:8b:9f:c6:9e:da:7c:04:22:52:49:b4:
         25:61:32:d1:2f:19:86:dd:23:2d:25:16:7c:37:5b:c6:c9:03:
         35:87:6f:16:eb:6d:ab:39:f7:b6:f9:a2:57:99:2d:d6:40:65:
         d1:a6:c1:2b:79:e4:7b:ed:83:2b:e7:81:ca:44:30:2d:ce:31:
         fa:ae:fb:1b:99:5c:a7:09:94:9c:f7:fb:82:bc:bb:46:1b:b0:
         98:83:57:72:7d:f0:d8:1d:61:90:39:3f:e3:48:24:6b:b3:16:
         9d:4c:86:3b:37:d2:4e:d4:35:03:18:d9:8f:18:43:3b:60:fc:
         1f:f6:16:eb:d1:b3:52:0d:07:6c:f1:e8:00:d6:f5:3c:ef:03:
         2e:68:09:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:19:16 2026 by rpki-client