Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
File:                     kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json)
Hash identifier:          4ywRatoiYcE/qvou1y1RqGo0EGS0aOsbcHyHxJh07I4=
Subject key identifier:   7E:B5:D0:6F:16:2C:F0:8A:5C:88:93:B1:9B:1E:D2:28:1F:1B:D5:23
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Certificate issuer:       /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial:       053C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
Manifest number:          051A
Signing time:             Sat 11 Jul 2026 00:13:01 +0000
Manifest this update:     Sat 11 Jul 2026 00:13:00 +0000
Manifest next update:     Sat 18 Jul 2026 00:13:00 +0000
Files and hashes:         1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: AeljKFVwzN++uMis+awXdauT8cSV56W5MtOtQ/7wTAI=)
                          2: 693FD0A8127911F18FB8754C353D8C67.roa (hash: 2vsh9mlCd8KP8ShN9kNL1OPBZD5VxMSn/p2bSQnyh44=)
                          3: CF78AD96127811F183C0012F353D8C67.roa (hash: yTs4slfJUp8xAoMRVrm1EmE1KgWXBTMHYKJoI1jT1pE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
                          rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 00:12:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1340 (0x53c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
        Validity
            Not Before: Jul 11 00:13:00 2026 GMT
            Not After : Jul 18 00:13:00 2026 GMT
        Subject: CN=6a518a8d-2b0e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:92:d8:e9:4b:07:cb:b3:ec:ae:45:9d:d8:3b:
                    4d:23:97:c4:ca:9b:2b:a9:ab:5e:e3:f8:0f:3a:29:
                    30:3d:4a:fc:a4:14:ba:ce:51:cc:d7:c1:85:cf:d0:
                    5c:5d:ba:68:7d:7e:39:96:91:0e:eb:47:5b:cf:cf:
                    2a:9e:ab:fc:0d:91:e9:a1:63:7e:11:ef:96:8a:65:
                    ef:97:5c:f5:d7:e3:32:bb:f0:b6:86:ca:c1:5d:fd:
                    03:49:c8:f1:f2:d0:2f:5e:07:63:e4:bf:1b:51:95:
                    01:24:92:71:f9:5b:ed:fd:76:a8:41:ef:b5:92:d9:
                    5f:14:8b:4c:91:bf:2c:e0:94:a7:d6:58:c8:42:68:
                    10:dc:cb:8b:43:d9:71:06:01:6c:71:ee:c5:98:33:
                    8c:2c:2b:b5:55:cb:57:29:0f:54:be:28:e0:26:70:
                    e3:19:07:1b:5e:d4:6c:99:51:8e:5a:b9:77:3f:ef:
                    18:23:44:f0:67:0e:aa:17:cf:e6:14:35:aa:79:8b:
                    86:1f:ea:c6:18:a0:57:ba:27:24:95:9c:7e:18:a8:
                    77:a5:73:0d:bc:76:27:38:7c:e8:ad:91:d7:a9:fd:
                    a9:a2:50:fc:42:c1:e7:0f:87:24:d6:70:cd:6b:b5:
                    3f:ff:96:48:d3:43:11:fc:39:32:30:d6:b0:93:31:
                    0e:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:B5:D0:6F:16:2C:F0:8A:5C:88:93:B1:9B:1E:D2:28:1F:1B:D5:23
            X509v3 Authority Key Identifier:
                keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:fe:6d:29:f4:6f:3c:83:a7:60:9d:b8:60:35:86:4e:a6:d7:
         04:e8:41:72:b5:09:98:8b:0a:24:67:f3:13:82:b9:5e:92:bb:
         2a:53:63:d6:73:3d:36:e9:fd:5b:98:b8:3d:b6:e7:62:d5:fe:
         13:55:03:9c:de:3e:32:c8:30:45:12:85:d7:2b:73:b0:3f:2a:
         a4:d6:e2:73:84:c8:e0:61:c4:13:a2:4c:7d:b5:79:b1:ec:86:
         1f:68:66:0f:69:18:07:b1:9e:be:66:07:13:b3:1f:17:f3:99:
         3f:f7:c1:ed:d9:77:ff:6f:bf:c2:68:74:8d:42:6d:9a:8b:48:
         6f:55:a0:10:23:0a:1b:6d:8d:fd:2c:cb:34:f3:0e:da:a5:ed:
         f4:a3:68:ed:96:ce:a3:15:dd:b4:91:93:72:fd:2d:51:b9:74:
         57:ef:1f:66:f2:e5:8c:e6:7c:ee:d7:e1:46:1e:71:7d:76:02:
         b6:9f:9d:78:35:ba:7a:46:10:34:82:74:6d:19:c1:12:05:47:
         68:6a:37:dd:5d:ee:16:2b:b0:2c:53:21:aa:d8:86:65:ea:b1:
         02:23:42:99:77:cf:f6:88:1a:14:b3:d2:a5:d4:ef:4a:b6:5e:
         6f:8d:63:3e:79:39:27:7d:34:17:a8:89:4a:18:c7:77:39:ee:
         2d:a3:07:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 07:45:42 2026 by rpki-client