Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
File:                     XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json)
Hash identifier:          /5/+rbWU6b2aWVm7yg7jPYA/3d0yiFx7MYzjj4+9+FY=
Subject key identifier:   C8:A8:BF:1F:75:6F:AA:AF:D3:18:B8:38:2C:D1:D2:AE:59:E9:52:05
Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F
Certificate issuer:       /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F
Certificate serial:       03A3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
Manifest number:          039A
Signing time:             Wed 15 Jul 2026 01:24:07 +0000
Manifest this update:     Wed 15 Jul 2026 01:24:06 +0000
Manifest next update:     Wed 22 Jul 2026 01:24:06 +0000
Files and hashes:         1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: UyxWyZ9t+KkM6Pa6MjtvdqYLr50yOPPP+1XlLawLrFk=)
                          2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: 8YdQLsUZCKBzraMiXXqY3e6CtfbysTpmjgszsI0exrg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl
                          rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 22 Jul 2026 01:24:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 931 (0x3a3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F
        Validity
            Not Before: Jul 15 01:24:06 2026 GMT
            Not After : Jul 22 01:24:06 2026 GMT
        Subject: CN=6a56e137-ae93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:95:61:3f:5a:51:85:e5:c7:93:fc:65:11:0c:
                    b2:c0:b9:e2:63:d3:9c:3d:23:f0:e4:7a:74:be:aa:
                    bc:eb:61:58:9e:3a:f0:aa:49:dd:9d:3d:f3:46:bf:
                    b9:3a:bb:33:53:04:b4:cd:8a:fb:7b:ba:98:29:ef:
                    5b:b4:c0:87:2b:d7:99:80:35:e5:45:c1:83:a7:ab:
                    da:cb:c7:ef:b9:3f:9f:f9:cb:fd:e1:34:61:b8:f9:
                    12:a9:bf:41:82:fc:8c:27:36:52:fb:6d:68:8c:70:
                    92:13:0f:20:2b:a0:d7:94:b6:94:bd:9d:96:30:ce:
                    33:6a:ea:53:2a:ca:68:5a:44:fd:3a:ae:57:13:95:
                    c7:53:88:7c:72:b7:dd:9c:b9:fd:3b:56:b0:ec:79:
                    93:39:ae:2d:01:fd:e7:26:22:b3:fb:65:fa:86:75:
                    cf:ec:08:d9:9c:10:5d:e2:d7:d2:3d:08:b9:61:43:
                    f7:fb:08:4b:6f:42:7f:44:6a:84:63:e7:56:da:59:
                    12:c0:a0:0f:07:3d:f3:b6:4f:2b:ac:a0:08:09:da:
                    a3:57:d5:9c:2d:f1:5a:4e:57:9b:95:c2:6f:9f:ee:
                    8b:f3:d9:1c:eb:d7:42:5e:26:ae:a8:77:4f:5e:98:
                    a3:14:d3:67:0c:91:72:97:92:aa:df:63:3c:6d:4e:
                    11:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:A8:BF:1F:75:6F:AA:AF:D3:18:B8:38:2C:D1:D2:AE:59:E9:52:05
            X509v3 Authority Key Identifier:
                keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:09:42:70:f4:d5:45:26:97:85:15:2c:7e:d7:7e:4a:7d:a5:
         40:e2:eb:ce:00:e7:a1:25:1b:86:b6:b3:ce:e1:57:23:c1:57:
         c6:54:25:94:b7:b2:e3:13:0a:ae:7b:d4:38:2d:2e:64:c6:43:
         fa:e4:c8:ee:86:2b:26:e1:d1:5f:8f:8f:e9:fc:2b:2d:df:06:
         72:f1:4f:b9:9d:08:b2:a8:8b:01:c3:03:47:dd:49:8e:4c:5f:
         91:e3:da:17:6c:e4:17:26:47:8c:73:fa:aa:16:06:5c:aa:66:
         f7:5f:36:ca:d4:d7:cc:11:7d:df:81:5a:c0:38:b0:01:c4:85:
         ce:a4:8e:b2:3e:38:02:90:a0:b1:51:ae:72:8c:86:f8:05:29:
         3e:85:c4:ee:3b:21:1d:86:1f:2b:86:fc:71:31:48:4f:ac:2e:
         2a:f6:f5:6c:41:2d:26:d3:40:8d:55:80:0f:e5:c5:72:0a:cd:
         76:95:e2:ca:25:24:b2:90:1e:bc:fe:ee:c6:ff:54:02:a1:36:
         bd:dc:21:ad:84:61:b3:58:9a:e8:ec:a3:6d:d4:a0:41:8e:d1:
         e7:00:b1:5c:d0:17:da:4f:a2:1d:8a:2c:93:46:34:47:39:92:
         5d:97:32:90:66:1d:e5:f9:d2:cd:9a:fd:aa:c1:19:5d:38:42:
         2c:63:91:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 14:33:30 2026 by rpki-client