Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft
File:                     28EoRfH6o1sy_s32oO1NFEKSyMw.mft (raw, json)
Hash identifier:          xRTq+lTQ57Giq+Gff4HuqKvyT6HqRm0W6rJBTUVD8Wo=
Subject key identifier:   CD:E1:1F:11:01:C6:45:FF:69:01:96:EF:BE:0C:32:3B:E8:4D:CB:FC
Authority key identifier: DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC
Certificate issuer:       /CN=A9134790/serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC
Certificate serial:       C2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft
Manifest number:          BF
Signing time:             Sat 13 Jun 2026 07:01:48 +0000
Manifest this update:     Sat 13 Jun 2026 07:01:48 +0000
Manifest next update:     Sat 20 Jun 2026 07:01:48 +0000
Files and hashes:         1: 28EoRfH6o1sy_s32oO1NFEKSyMw.crl (hash: pxXd3NSwRarSdi6aQKJtP46g667vb7YCK6pmclc5XyI=)
                          2: 078FA91C44EA11F09EB11858C4F9AE02.roa (hash: C/ZGqWc8u20kL8eL26pbZWd67Dk6EABUUd6GG9DsIEU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl
                          rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 20 Jun 2026 07:01:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 194 (0xc2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9134790, serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC
        Validity
            Not Before: Jun 13 07:01:48 2026 GMT
            Not After : Jun 20 07:01:48 2026 GMT
        Subject: CN=6a2d005c-2813
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:63:26:1d:d6:45:3b:92:26:d5:61:9f:ed:91:
                    60:ff:7f:72:83:c3:83:f3:a0:1c:fa:f3:63:6a:01:
                    d2:cd:f3:36:6b:47:18:d8:5a:06:70:de:bc:b4:95:
                    59:95:7d:6e:2e:70:16:ef:26:02:21:2f:49:6a:04:
                    84:00:18:f8:f4:dd:70:95:9b:a0:f2:70:c3:13:2f:
                    31:60:e9:d3:d7:0a:8b:1a:5b:d5:dd:6e:7c:eb:67:
                    43:2e:94:d2:30:78:c7:7f:f8:45:14:64:27:db:97:
                    b3:1b:05:d0:65:6c:c6:f3:0b:38:c1:f2:26:dd:b4:
                    f9:fe:7f:3c:e7:78:93:1e:60:8d:9f:0d:0d:9d:34:
                    71:64:f4:57:d5:1c:bc:6d:b0:e6:96:de:f2:91:4e:
                    b9:0e:b0:2e:18:15:1b:44:d5:ec:ed:f0:22:b0:4c:
                    4a:be:f3:49:12:36:93:cb:44:69:a1:83:33:ed:b9:
                    7f:2b:77:b5:d0:c2:66:58:5f:6b:e0:5b:1d:06:45:
                    0c:e7:24:e4:57:dc:e6:2b:b1:da:04:b8:46:48:7e:
                    40:e6:03:3b:5c:4e:5d:45:62:ec:73:cb:c4:3d:c4:
                    73:df:21:82:0a:8f:9a:0e:d4:92:ab:15:3d:37:3d:
                    a3:a0:05:05:c5:df:f6:9b:4e:0c:7a:ce:72:a5:bd:
                    cc:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:E1:1F:11:01:C6:45:FF:69:01:96:EF:BE:0C:32:3B:E8:4D:CB:FC
            X509v3 Authority Key Identifier:
                keyid:DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:e5:80:8a:50:bc:d8:ef:dd:86:95:e4:06:33:c2:16:31:ca:
         d5:e8:9a:f5:d9:a0:1c:67:8a:da:a2:92:a0:54:da:2b:d3:24:
         10:98:e0:40:34:61:0e:8b:80:57:79:2d:c3:de:29:15:73:5f:
         c6:37:43:7d:fc:b6:49:c9:87:41:29:0f:a3:94:43:8e:5c:8a:
         a1:3b:9e:c3:28:9c:59:c4:f7:88:db:8f:b2:f4:40:a5:4a:d3:
         24:cf:bf:72:ef:b1:c7:38:bc:b0:e3:e7:65:0c:6d:ab:54:0f:
         77:be:8c:52:57:06:e5:8c:1a:26:1a:4c:cc:b2:c3:81:bb:36:
         89:7d:20:05:4e:78:63:f3:57:99:d0:d9:7a:b9:f8:ee:f6:2f:
         dd:2a:0b:59:c7:5b:cf:bc:e7:42:22:8c:1b:9a:2a:1b:04:9f:
         a5:91:e2:82:d6:bd:6e:b5:fa:72:87:2d:26:99:57:23:fe:9f:
         33:ad:33:97:b9:8c:f5:02:a3:65:1e:f2:2f:9c:d1:51:0b:f7:
         1c:d5:06:08:99:13:b7:56:c3:20:17:d5:72:a2:63:95:a2:a2:
         86:fc:fc:1f:f3:00:7f:93:1f:37:ff:c0:cc:8c:aa:3e:bf:4c:
         0d:41:40:ec:09:38:71:41:7e:f1:33:f2:f6:ac:d7:17:48:03:
         8e:21:20:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:45:26 2026 by rpki-client