Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
File:                     BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json)
Hash identifier:          soXt1+kpSjYMpF8dEhkVwaBuLz5jdTI4cXKcwEI1VCg=
Subject key identifier:   3F:21:9B:7C:CA:10:00:85:B7:09:0E:1F:72:7D:81:D7:E6:83:F8:14
Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57
Certificate issuer:       /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57
Certificate serial:       07C1
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
Manifest number:          0797
Signing time:             Thu 16 Jul 2026 21:35:45 +0000
Manifest this update:     Thu 16 Jul 2026 21:35:44 +0000
Manifest next update:     Thu 23 Jul 2026 21:35:44 +0000
Files and hashes:         1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: kfnXO28ZfSmiwX5sE5UC/9TZHgGOc8f4qzC+K0UzatM=)
                          2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: Bnf+utMQMnh8zQjddBOCbwOT7nCJfAIRhLCPTrWZ8Xc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl
                          rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 21:35:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1985 (0x7c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57
        Validity
            Not Before: Jul 16 21:35:44 2026 GMT
            Not After : Jul 23 21:35:44 2026 GMT
        Subject: CN=6a594eb1-3f21
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:29:06:7d:b6:ff:aa:cd:24:e3:95:04:ee:d6:
                    7a:c9:eb:35:1f:0f:b2:b9:c2:19:83:c6:11:32:2d:
                    a1:f9:79:4a:a3:53:d4:1a:30:15:df:32:50:8c:fe:
                    67:a9:15:4f:11:27:54:78:09:bf:55:a5:54:25:ea:
                    65:4e:0e:17:aa:d3:20:97:08:8f:ca:1f:a4:17:66:
                    5b:90:7f:7c:c7:c9:68:2b:89:67:3d:27:68:ca:85:
                    cb:9a:5f:0d:2b:c4:b8:e2:9e:e0:93:89:d9:75:25:
                    2f:b6:3a:a0:14:a3:f9:19:d3:9d:c0:f8:a9:e2:64:
                    ca:d3:df:4b:5b:18:d3:4d:54:0e:16:5f:22:4c:7c:
                    91:7b:5f:c9:91:01:28:58:1a:c9:e1:2a:5f:3c:e5:
                    b3:00:74:25:0b:72:09:c3:1a:c8:bd:59:cd:87:eb:
                    d0:76:ae:de:86:fc:2f:e0:02:4f:16:76:bc:ea:a0:
                    17:b3:4d:aa:62:c3:0e:37:fc:0a:78:a6:c1:35:82:
                    e4:40:9e:9c:39:55:8e:32:33:d5:93:87:ec:09:36:
                    d2:16:c6:99:4e:bf:e3:0e:04:43:ba:6d:0b:35:bb:
                    dd:51:ea:50:bf:df:85:7b:be:af:6a:72:8a:20:5b:
                    11:65:5d:61:98:f4:36:53:d6:4c:10:79:4c:63:93:
                    9f:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:21:9B:7C:CA:10:00:85:B7:09:0E:1F:72:7D:81:D7:E6:83:F8:14
            X509v3 Authority Key Identifier:
                keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:3d:28:da:b0:7d:33:f2:61:45:8e:c0:5f:59:44:4f:e0:2b:
         c7:a8:54:8e:99:fe:1f:0c:3c:10:f2:7c:53:80:1b:f3:23:07:
         be:01:50:b0:65:4b:4f:c6:4e:f0:da:68:9b:ba:48:ef:05:8f:
         1e:a9:2a:8c:e2:7d:9c:bd:3b:b6:d7:3d:e3:af:48:ba:53:4d:
         6b:55:1f:c3:5e:61:1f:dc:5a:9a:ea:03:12:b7:14:c6:57:9c:
         c5:0e:b7:f3:e5:be:64:60:ae:be:9c:26:a2:ed:a9:5e:0f:8c:
         d0:b3:e3:fb:aa:71:d1:f9:82:34:b5:c2:80:b2:c5:4e:46:69:
         69:cf:2b:30:55:1b:09:b4:9d:ee:89:fd:9f:32:86:c3:a9:b4:
         a1:ec:b2:d5:7a:b8:6e:c6:bc:49:df:c0:4e:ab:cc:a7:a2:a0:
         10:47:9d:05:cf:91:dd:35:2e:dc:b5:77:5a:3f:9e:6d:f5:c6:
         bb:82:e5:1e:4a:dc:33:de:b6:86:50:de:ef:f6:4d:ee:0d:86:
         11:8d:89:83:ab:68:ff:26:69:04:8c:2d:77:90:13:26:a1:6b:
         34:26:2d:de:22:54:0f:3d:10:c6:52:27:0a:23:73:10:a0:11:
         7c:ae:37:61:d5:f7:11:38:cf:40:ea:30:9b:ce:b5:0f:ea:8f:
         ef:80:80:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:11 2026 by rpki-client