Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
File:                     2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json)
Hash identifier:          mSs8hZmnUv52UVuFECvbHhRqA/MAbTlI87fq9fxOSS8=
Subject key identifier:   70:63:96:39:B3:D1:FC:E6:6C:B8:57:8A:26:DC:EB:8F:73:24:16:FC
Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84
Certificate issuer:       /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84
Certificate serial:       01D4
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
Manifest number:          01CD
Signing time:             Fri 17 Jul 2026 04:43:59 +0000
Manifest this update:     Fri 17 Jul 2026 04:43:58 +0000
Manifest next update:     Fri 24 Jul 2026 04:43:58 +0000
Files and hashes:         1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: FhPgwFJ7EUUr2Nwxubfy/GjHQGZDy90g7wlfOPhwWrw=)
                          2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: Nm/9k1bK/nJvJq+EeJ6k6OoJJzoZhznxyzIVifoqxa8=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl
                          rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:43:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 468 (0x1d4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84
        Validity
            Not Before: Jul 17 04:43:58 2026 GMT
            Not After : Jul 24 04:43:58 2026 GMT
        Subject: CN=6a59b30f-46fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:f4:c3:a3:06:a0:89:e8:2f:df:2f:37:06:42:
                    91:02:bb:f0:7a:12:74:c2:a9:d4:2e:50:3a:79:d1:
                    14:cf:57:d7:7a:3e:ce:0a:0f:aa:0a:21:a7:58:93:
                    26:bf:38:4e:d7:17:49:16:a2:eb:d8:d3:60:da:f7:
                    fd:ec:9e:68:de:cb:f0:12:65:7c:dc:5b:a2:80:62:
                    e1:a3:84:5f:d0:48:79:46:28:df:01:e3:4f:5a:6d:
                    75:a3:36:59:4d:f8:4e:6a:d8:a8:be:4e:67:97:b7:
                    aa:e0:2c:b4:9a:5b:63:fb:da:ed:57:b1:14:b9:b3:
                    3a:5e:cd:db:65:7f:6b:be:dc:a5:80:76:60:45:94:
                    fe:80:5f:8d:c4:40:62:f5:f4:aa:84:9e:f5:35:4a:
                    fe:ba:c8:6c:08:83:b6:5d:00:04:64:94:0c:54:67:
                    3e:90:f0:d9:17:34:5c:9a:75:e4:e7:c5:5b:9b:62:
                    12:34:dd:ef:ac:0d:4c:31:95:05:ff:c4:a4:ce:dc:
                    00:8d:68:de:57:3b:2c:1b:eb:e5:74:80:0b:e0:0d:
                    2d:9a:74:4b:89:2b:11:68:25:a3:5b:91:89:13:02:
                    c8:2a:c4:54:c9:bd:f0:79:81:74:82:69:35:35:55:
                    eb:69:56:74:81:d4:d9:fb:29:51:2f:bc:ec:bd:6c:
                    57:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:63:96:39:B3:D1:FC:E6:6C:B8:57:8A:26:DC:EB:8F:73:24:16:FC
            X509v3 Authority Key Identifier:
                keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:37:6e:33:e6:01:04:1b:c4:84:e7:13:0c:05:31:e4:c3:60:
         44:cb:ef:d2:a4:88:fe:31:e8:97:1a:a5:12:d3:84:55:91:c9:
         4a:cb:c9:00:40:f9:d0:af:ea:b2:61:c0:c7:88:20:5f:e6:c6:
         13:d2:b4:23:31:f7:57:10:16:0f:bc:7e:0a:ee:e9:15:0c:d6:
         7d:40:12:0a:e2:2f:6a:8d:51:d6:6d:20:91:ec:6e:e7:62:9c:
         2f:79:82:0d:7d:47:92:56:46:ec:57:78:6c:28:3c:da:17:6f:
         8d:bd:55:5f:d4:25:72:73:fa:47:1b:aa:76:ae:9d:6f:db:47:
         8d:3b:df:b4:e1:ad:36:bb:b3:31:aa:f3:ed:0c:f8:22:f1:08:
         e3:5d:f4:21:e9:59:da:53:55:70:9b:6a:2a:0b:6a:6c:2b:60:
         f5:88:1f:a2:38:a8:f6:8a:04:21:5c:1d:e8:20:2d:42:b4:6d:
         2c:4b:aa:d8:15:31:0c:a9:3c:ec:87:05:4f:a0:a5:26:8c:38:
         87:51:f9:03:ef:ec:7d:90:0f:df:0a:87:f6:41:6e:9d:35:60:
         97:bb:86:0c:76:6f:5b:f7:26:ad:c0:41:15:f9:16:fc:c7:1e:
         01:de:81:66:eb:97:33:93:18:2a:1b:e3:0c:17:b1:68:a0:34:
         17:e8:cb:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:30 2026 by rpki-client