Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft
File:                     BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json)
Hash identifier:          +4G+GlivJftdJ6ybR5pg9lY8rF/FiYDOygfc4JaDVZ0=
Subject key identifier:   ED:3F:39:CD:C3:13:EE:68:A8:89:76:45:05:AC:EC:04:F2:8A:5E:5A
Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A
Certificate issuer:       /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A
Certificate serial:       0A37
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft
Manifest number:          0A26
Signing time:             Thu 26 Mar 2026 17:11:59 +0000
Manifest this update:     Thu 26 Mar 2026 17:11:59 +0000
Manifest next update:     Thu 02 Apr 2026 17:11:59 +0000
Files and hashes:         1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: 3C0HqqxhxfGBQOIJ1qTdAJeV8nu1B7/U/aF5Sv/Vn2U=)
                          2: 7C4C4384CB6611F09E0E3B40C4F9AE02.roa (hash: jmLTUdjA6fVp52xmmEEVibY5+Y7NyInAVp9PHPY/5uE=)
                          3: 7B01065ECB6611F0911E3B40C4F9AE02.roa (hash: 6Dvm4ulNHKTvy2zEThI5CFxM48R2WkZ0mp2MxrhNEVA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl
                          rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 02 Apr 2026 14:54:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2615 (0xa37)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A
        Validity
            Not Before: Mar 26 17:11:59 2026 GMT
            Not After : Apr  2 17:11:59 2026 GMT
        Subject: CN=69c568df-62b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:cf:e6:2b:53:a1:f4:08:05:0b:fc:fc:f4:96:
                    30:1c:99:23:b4:b6:d4:94:2b:33:9a:45:f7:2e:21:
                    00:8d:cd:8b:5e:94:27:e5:01:b8:b2:a4:d9:b3:25:
                    b4:7c:01:69:da:41:dd:a1:dc:41:de:6c:d3:64:8c:
                    1b:13:27:5e:28:88:77:1c:0f:c6:46:ca:46:35:e7:
                    a7:1b:53:94:9d:85:4c:3b:92:f6:df:a8:90:cf:a2:
                    fc:1a:6c:1e:1b:10:46:41:ec:7d:14:f1:0c:cd:7b:
                    66:48:cc:96:58:ff:5f:79:b1:ca:f3:71:25:ed:88:
                    71:32:de:10:6c:5e:57:09:9a:f6:98:f3:ed:ac:67:
                    4b:7a:2e:a7:fb:2d:5e:8b:bf:d2:24:b0:ef:f6:6f:
                    1a:e2:36:f4:39:d0:0b:75:81:76:89:e4:2a:01:4c:
                    7b:fa:4e:f6:82:a6:0a:74:f0:ba:31:f7:bd:34:d6:
                    f0:f1:9b:24:9b:b5:78:51:f6:4e:05:b0:d7:f2:fe:
                    7e:11:89:3d:27:16:20:90:25:a6:6f:38:58:c3:c5:
                    40:a6:02:51:b0:98:2c:c9:de:30:fc:18:58:59:e3:
                    68:d3:f3:f8:92:5b:c6:28:d0:72:95:81:5d:b7:4c:
                    46:b3:be:83:23:c2:87:f3:58:87:a4:84:a6:a4:e0:
                    c8:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:3F:39:CD:C3:13:EE:68:A8:89:76:45:05:AC:EC:04:F2:8A:5E:5A
            X509v3 Authority Key Identifier:
                keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:f9:eb:bd:02:8e:29:0c:4b:11:65:54:4b:00:0b:38:9a:63:
         95:9f:f6:cb:65:7b:4e:26:32:86:bc:6b:07:8b:95:32:71:d1:
         4b:35:f3:e1:bc:9d:e3:98:84:b9:bb:17:da:5d:2e:3e:32:bb:
         5b:32:d4:e8:00:18:1a:6b:39:95:71:5f:2f:c7:c3:c9:f7:f6:
         97:46:51:e8:a2:ef:03:90:8f:c3:7f:0d:e6:03:bd:b1:51:2b:
         07:ec:c1:7b:2a:ef:35:92:52:cd:c8:c9:af:6f:c6:ac:7c:0c:
         e2:5d:d8:e1:ea:3d:92:6a:d8:20:4a:29:26:a4:42:6f:34:95:
         94:e8:1b:07:da:55:9c:3a:d9:2a:7d:60:9e:57:d5:8e:fc:7c:
         fd:b0:83:56:78:2d:3c:72:2a:41:38:6c:4f:bf:13:3a:3b:37:
         8c:b2:65:bd:8e:d3:79:79:df:96:06:24:27:69:69:5f:14:66:
         4c:05:88:8c:c9:7d:10:b1:65:43:88:67:75:e9:f4:f7:f9:dc:
         97:42:62:4e:ae:f8:bd:32:df:41:23:fd:7e:9b:ef:99:60:47:
         6b:3c:ef:a1:6e:d9:30:7e:3b:d7:8b:8f:f6:e6:2e:18:8e:8c:
         ab:08:2f:b6:0d:f8:f0:be:2b:e4:81:19:aa:d0:82:10:45:93:
         8a:b4:b8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:01:08 2026 by rpki-client