Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft
File:                     49O0eIJzzkWSmwmYOr9ktdRNHwg.mft (raw, json)
Hash identifier:          QtoMKG9N60MJHBa2ULI30CciXt+yWucuqTggl4P8Kj4=
Subject key identifier:   80:58:2C:D8:0E:25:BD:3F:EC:E2:EA:31:14:53:61:F0:5C:08:2C:26
Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08
Certificate issuer:       /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08
Certificate serial:       1201
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft
Manifest number:          11E7
Signing time:             Sat 04 Jul 2026 17:12:48 +0000
Manifest this update:     Sat 04 Jul 2026 17:12:47 +0000
Manifest next update:     Sat 11 Jul 2026 17:12:47 +0000
Files and hashes:         1: 49O0eIJzzkWSmwmYOr9ktdRNHwg.crl (hash: EgoLehtyaBoChI6Y4DSkbJ74bu6WHifNgYs4IJ1442w=)
                          2: 97F937E440BC11EAA2B89432C4F9AE02.roa (hash: dJ40ZvkvEtXP02NZp3lyJfj9qvrbjW3gvJFMNBqnO1c=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl
                          rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 17:12:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4609 (0x1201)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FF634, serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08
        Validity
            Not Before: Jul  4 17:12:47 2026 GMT
            Not After : Jul 11 17:12:47 2026 GMT
        Subject: CN=6a493f10-5a5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:87:82:92:52:7c:7f:30:e9:f1:ce:55:3d:1b:
                    e9:55:aa:e4:9f:4d:b3:9f:e8:af:9b:29:ea:9c:fb:
                    13:44:26:cb:8b:9f:98:21:a3:b1:a2:fe:41:08:bd:
                    cd:dd:a5:8f:d1:de:63:43:f9:30:28:6d:e4:cf:25:
                    68:94:8e:d8:c3:a7:60:e9:93:b3:27:74:3b:ea:01:
                    8a:af:5e:be:58:00:e9:74:e3:f4:63:61:1e:7c:6b:
                    be:42:a8:46:4f:35:43:38:16:37:dd:d6:bb:c0:1f:
                    83:a6:5b:84:b4:70:56:dd:46:de:9c:69:c4:21:41:
                    6f:58:9b:28:32:ba:23:ba:11:d2:f9:7e:fc:e5:6a:
                    0e:1f:0e:98:d4:6d:9b:cf:93:79:35:62:e5:14:a1:
                    36:86:3c:4f:96:1c:b4:df:f3:a6:1a:b4:3e:fd:08:
                    16:6a:57:09:05:52:21:7b:27:d5:64:36:22:b7:73:
                    ce:7a:15:0f:86:3a:23:eb:b1:05:fd:f9:52:a3:63:
                    2f:93:ed:bf:d3:b6:d1:19:b7:15:c9:8c:50:a8:cd:
                    b1:05:87:5a:15:04:84:a8:cd:70:77:b1:51:38:9c:
                    81:fb:b2:aa:04:3a:24:93:f6:68:1b:63:5d:9a:69:
                    05:c5:21:21:78:2c:b9:06:86:02:3e:00:b6:5f:e6:
                    9f:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:58:2C:D8:0E:25:BD:3F:EC:E2:EA:31:14:53:61:F0:5C:08:2C:26
            X509v3 Authority Key Identifier:
                keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:a4:e6:34:1d:cf:76:d5:84:4f:21:55:91:52:ac:ab:cd:8e:
         ea:47:46:13:6b:d1:40:17:90:24:b2:73:f0:30:a6:78:dc:24:
         d9:f9:ba:0e:5b:f1:a2:67:6d:32:b6:35:04:7f:82:fb:8d:9e:
         58:78:55:b4:f9:05:bb:83:33:46:0f:18:ac:bb:b5:71:ed:8e:
         41:26:9a:89:8d:cd:8b:25:1d:61:15:8f:d2:64:98:53:ea:f8:
         fb:b6:e1:03:5f:b2:91:72:47:06:73:bf:50:47:8c:e0:6e:40:
         9c:5d:37:6f:73:04:93:e3:58:96:67:20:23:45:98:99:a3:25:
         a5:dd:00:82:24:b3:ab:99:3d:34:6a:eb:30:c5:05:93:ed:44:
         2f:dc:5a:8e:eb:fd:2b:d5:ed:6d:02:d8:97:b4:20:e5:39:32:
         6d:b4:0b:55:2f:7b:e7:f8:76:67:b4:18:1e:e4:b9:e4:81:f6:
         ea:bf:27:46:71:82:eb:c7:72:02:51:17:c1:0a:de:9f:32:20:
         ba:c8:53:3d:2e:a3:d5:63:28:75:7e:38:7d:9e:92:98:93:eb:
         4f:ad:06:ee:d1:07:ed:f6:a0:f6:e4:4b:33:f4:46:b8:d8:d0:
         e4:e6:fc:0f:66:e3:ed:a9:bf:31:58:32:dc:71:d3:2f:58:e9:
         48:8e:d2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:41:04 2026 by rpki-client