Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft
File:                     g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json)
Hash identifier:          jqVerxa1T0/Of4BXHLR00vJwYyzChadVq8ZG0JSJoO4=
Subject key identifier:   4E:E2:64:E9:81:10:4B:AF:08:60:A3:E0:C8:6C:DF:7B:D8:2D:97:8B
Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB
Certificate issuer:       /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB
Certificate serial:       12B4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft
Manifest number:          1293
Signing time:             Mon 06 Jul 2026 17:18:07 +0000
Manifest this update:     Mon 06 Jul 2026 17:18:07 +0000
Manifest next update:     Mon 13 Jul 2026 17:18:07 +0000
Files and hashes:         1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: i8qEBdBR3LfAmJcSXgamb9ysiykFAdyt056O4VYF7ok=)
                          2: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: zTMcMU85Vfrv28bnOAwruUSVF1/v5V80nulZ37SkFAc=)
                          3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: B4PjSBYjorfWxo1YSpPxhGaOBSD9dJ0o8/kl1/H4JCI=)
                          4: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Q8GHoeHbmqW7M4R7JqdbouyG47lAXEk2l5ZINQlZhUw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl
                          rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 17:18:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4788 (0x12b4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB
        Validity
            Not Before: Jul  6 17:18:07 2026 GMT
            Not After : Jul 13 17:18:07 2026 GMT
        Subject: CN=6a4be34f-8a51
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:dd:e8:ca:49:de:3a:9c:db:ac:11:72:f6:13:
                    11:2c:88:fe:93:9e:e5:92:ee:82:3a:45:8b:95:dd:
                    e1:8c:16:b5:b6:f7:d6:0c:a4:a0:78:5b:34:af:2a:
                    d2:9a:de:e4:54:60:90:b7:9f:3c:13:98:64:da:3c:
                    06:ee:69:eb:b2:62:8c:f1:90:ec:28:47:ca:44:9e:
                    70:88:da:35:be:c5:77:ac:28:6b:61:80:d7:21:78:
                    5a:0a:fe:9b:e3:79:d6:3f:9e:89:07:05:ba:c4:21:
                    c4:72:37:50:11:31:2b:0f:e0:bc:31:ca:43:9b:3f:
                    5e:48:c0:02:6a:07:1f:44:d9:27:5e:73:ba:ef:6d:
                    d2:cf:2a:78:3d:52:c9:c1:d2:a9:86:b5:77:1e:ec:
                    7f:d0:f2:a7:69:57:c4:18:74:4a:27:2d:3c:c7:1f:
                    26:3f:a8:01:7e:4f:5a:65:cd:fe:cd:96:97:e0:54:
                    8b:d7:2a:30:11:98:63:cf:bd:66:37:86:7b:21:92:
                    3b:01:0a:21:01:d2:79:f3:cc:7f:15:18:51:80:51:
                    ab:83:30:3c:66:e6:f6:e6:04:d5:94:57:94:b9:5f:
                    c1:e7:7d:dd:f7:4d:be:b4:00:a2:49:ec:90:a7:ab:
                    0a:8b:96:93:09:c4:1c:eb:0c:ad:08:6f:a7:8b:67:
                    a8:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:E2:64:E9:81:10:4B:AF:08:60:A3:E0:C8:6C:DF:7B:D8:2D:97:8B
            X509v3 Authority Key Identifier:
                keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:d4:f9:17:f7:df:3c:87:dd:56:f7:84:b1:cb:70:b2:61:1b:
         02:dc:fd:be:cb:af:e8:0b:d5:96:21:48:6c:25:f7:1a:13:89:
         e7:46:ec:b2:70:76:d1:db:06:f1:bf:03:c3:7e:94:49:80:21:
         13:d9:0b:02:53:39:4a:12:74:11:7d:0f:35:33:ef:63:3a:da:
         ba:32:de:97:b1:ca:45:9d:ed:00:1a:ad:b8:c9:66:c3:19:13:
         2a:23:69:12:c4:25:3f:ac:4a:b3:23:07:ac:e8:27:de:c5:ed:
         47:a5:32:90:7a:4a:2c:14:13:24:46:5c:1a:a4:61:30:24:98:
         fe:a6:89:3a:ea:b8:53:12:77:bc:cd:19:11:e7:ce:83:33:5b:
         10:76:a7:7b:76:0f:4b:aa:9e:64:ad:f6:94:8f:b6:12:b1:89:
         aa:87:9c:3a:67:59:27:e1:c3:1b:6a:90:0c:b9:11:9d:50:dc:
         fe:69:17:46:92:da:f9:8d:ad:b8:5b:87:7c:69:65:1c:47:8b:
         e1:f6:60:fe:d8:e1:00:27:b3:8b:32:2e:96:31:bd:58:f1:9f:
         e9:74:2e:8a:f8:93:00:ba:21:51:9a:2e:5a:15:50:f3:11:56:
         65:41:21:3b:3f:94:23:80:85:43:2f:8e:76:d2:0f:49:f3:69:
         9f:28:6d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 10:43:51 2026 by rpki-client