Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
File:                     XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json)
Hash identifier:          6rGJsoVbvrzGCTcMORfQIuRn7yhW2MzCxo0QykWjyYI=
Subject key identifier:   AA:A2:17:7F:BD:97:B9:31:5B:72:BB:1A:46:AB:D6:30:21:83:19:6B
Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E
Certificate issuer:       /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E
Certificate serial:       0BC7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
Manifest number:          0BA3
Signing time:             Thu 16 Jul 2026 19:18:35 +0000
Manifest this update:     Thu 16 Jul 2026 19:18:34 +0000
Manifest next update:     Thu 23 Jul 2026 19:18:34 +0000
Files and hashes:         1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: QkqCz2gs1FCRHz6vxUEbGrx6e7uWHeWVXSXM/vQqHo4=)
                          2: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (hash: fuUoAX7qold+hBso2xjm+AtCXw9QMD6MxM+hCTTXcPw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl
                          rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 19:18:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3015 (0xbc7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E
        Validity
            Not Before: Jul 16 19:18:34 2026 GMT
            Not After : Jul 23 19:18:34 2026 GMT
        Subject: CN=6a592e8b-1939
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:ef:5d:aa:d8:d6:9d:4d:f5:9c:62:00:50:3a:
                    16:95:50:e4:e6:95:a4:82:da:12:2a:72:9d:34:45:
                    3f:04:4e:78:ae:b8:12:95:b2:fb:9b:9a:5e:cd:f8:
                    ee:ab:8f:37:9e:cc:ef:bc:76:6c:cd:6a:3d:71:34:
                    84:03:fb:40:65:7e:14:ac:3e:f0:7e:48:98:1d:23:
                    a9:e9:86:11:83:47:c7:74:be:9c:43:51:6c:88:98:
                    e0:dd:f9:25:7a:e4:f4:e0:4f:5f:1d:48:e9:0b:7d:
                    f6:01:63:fc:82:b3:2f:2d:13:02:42:81:b5:62:ef:
                    30:48:f1:f9:c9:b2:74:a4:ba:4b:31:cd:df:5b:c1:
                    20:99:e8:75:bb:b9:c7:ee:bf:e5:ef:45:e0:a7:bb:
                    e0:11:12:33:49:9b:87:aa:29:a3:83:04:22:c5:f1:
                    07:d9:10:12:02:39:68:43:3a:ea:d0:00:32:09:a5:
                    a4:31:0f:0a:8d:6d:0d:38:25:57:36:44:47:3d:92:
                    16:5c:1a:60:8d:83:9f:2f:e7:f0:2d:42:85:9e:6c:
                    44:bd:96:7c:72:3d:35:ec:6f:f2:09:41:c0:98:09:
                    b2:af:45:5d:14:3f:d9:d5:38:00:79:ce:d8:18:e7:
                    27:11:85:c4:29:5d:83:5e:94:da:56:d3:96:ce:f3:
                    11:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:A2:17:7F:BD:97:B9:31:5B:72:BB:1A:46:AB:D6:30:21:83:19:6B
            X509v3 Authority Key Identifier:
                keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d2:02:a3:56:09:87:80:3c:72:42:97:a8:c5:fa:3e:11:2c:68:
         2d:13:ab:1c:fe:c0:ab:7c:cc:be:59:38:d6:1a:d7:64:6f:e4:
         94:70:54:6a:1c:66:a1:25:c1:78:59:13:f4:af:43:6b:92:f2:
         20:52:5b:04:61:de:7f:73:64:9e:32:b9:da:56:9e:0a:9c:1b:
         24:3b:1e:aa:cf:4b:e1:9e:84:bf:3e:14:d9:47:a1:04:10:9f:
         20:86:be:27:30:36:2c:ff:98:2d:35:98:42:d8:b1:bb:6e:59:
         00:7d:de:16:b2:61:de:3a:95:37:8d:ce:d5:9e:59:54:50:da:
         3f:2e:11:1a:87:3e:74:d6:c1:70:9f:45:e8:ca:03:1d:1f:5a:
         cf:bd:38:62:6a:1d:4d:6b:9d:e2:68:a9:cd:6b:e4:4a:d8:c1:
         bc:b4:57:e8:91:81:c3:3d:cf:52:a2:68:80:0a:e4:71:c2:e4:
         5a:fd:c5:08:a5:2d:44:55:45:35:9c:59:70:be:af:81:20:b1:
         28:b7:e0:f0:51:eb:63:28:8e:d6:b7:c8:c3:69:a3:88:6b:37:
         0d:72:e0:c6:47:c5:9c:36:a2:0f:5c:d9:d2:44:52:3d:b7:53:
         3d:e2:81:80:61:5f:cf:cc:f0:64:c0:74:ed:13:6a:c1:fd:5c:
         64:24:ac:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:08:50 2026 by rpki-client