Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft
File:                     xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json)
Hash identifier:          RXdXU4hQqXdiLuedbmTQndEj7JBIwTj/aBfnWDJ+oYk=
Subject key identifier:   C7:7C:47:B5:F8:CE:2D:F5:C6:9D:40:6D:C5:FE:82:5D:56:E4:3D:B9
Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D
Certificate issuer:       /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D
Certificate serial:       042B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft
Manifest number:          041A
Signing time:             Mon 02 Mar 2026 00:32:06 +0000
Manifest this update:     Mon 02 Mar 2026 00:32:04 +0000
Manifest next update:     Mon 09 Mar 2026 00:32:04 +0000
Files and hashes:         1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: KbiJtNOf6J9SWIWADBezvO9J9YDfAmdqgHxjzAjGxc4=)
                          2: 892F26B4EEF411F0A51D99D83B6F56BC.roa (hash: j2S/9hhdR71OoPWxIwP3TFKjgMgXC3Tmdl7QnGCMX8E=)
                          3: 0663DADAEEF511F0AEB0B1D83B6F56BC.roa (hash: q5IvURlRSZM1tbSnIUK7mrAYKjf2ufDxWX6LFHw5WEY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl
                          rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 09 Mar 2026 00:32:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1067 (0x42b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D
        Validity
            Not Before: Mar  2 00:32:04 2026 GMT
            Not After : Mar  9 00:32:04 2026 GMT
        Subject: CN=69a4da86-1964
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:94:fe:9b:1a:75:bf:d9:0a:4e:d7:a5:3c:16:
                    63:19:3c:b2:7f:59:7a:a7:ae:d9:0d:a3:f9:b1:00:
                    e0:74:1d:a2:ce:96:dc:bf:75:ca:f5:77:9a:3d:07:
                    35:4d:09:d7:88:83:b2:ab:40:6c:a4:eb:a7:30:2e:
                    d2:e1:dc:f9:04:48:8f:29:a8:89:00:50:c6:cc:2e:
                    ab:17:11:77:50:4d:d9:f9:14:a8:59:8a:51:cb:57:
                    81:ce:de:1a:d1:d7:7c:9f:5f:fc:58:36:cf:a7:24:
                    66:04:20:4c:08:50:3d:9f:45:f9:f5:5b:e0:9d:ad:
                    6e:14:1d:1b:66:17:d2:18:69:72:95:c1:8a:83:cd:
                    12:44:5b:51:57:4a:47:63:da:06:1e:00:7e:55:75:
                    f8:71:dd:35:f9:9f:bc:1a:c6:93:f7:f2:cc:5a:7b:
                    2c:01:ba:22:b1:42:01:ca:b8:62:85:d2:60:54:0d:
                    88:09:93:86:4c:a5:32:a0:6c:9f:0e:c3:3b:ac:a8:
                    02:28:58:c7:a5:cd:31:5b:5c:12:d8:cf:07:f1:91:
                    65:95:5e:2d:b4:45:ea:d7:d9:65:b0:14:8d:14:7f:
                    09:cd:f9:cb:6e:2c:28:37:18:be:6e:17:11:d8:42:
                    4f:3c:71:24:e9:a0:55:cc:e6:5a:59:7e:13:98:a2:
                    ae:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:7C:47:B5:F8:CE:2D:F5:C6:9D:40:6D:C5:FE:82:5D:56:E4:3D:B9
            X509v3 Authority Key Identifier:
                keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:af:f1:6a:3d:5d:58:75:85:69:4b:84:3e:a4:f8:d0:18:2b:
         5f:56:8e:0a:e8:d0:18:6f:51:3b:95:30:b3:97:f1:7d:95:f6:
         cd:d5:9e:22:a0:c0:62:3f:d3:a4:c6:fb:ca:e7:0e:c5:e0:53:
         59:1b:c3:1a:08:2c:09:7d:03:88:0b:5f:b8:81:fb:54:c7:55:
         1d:b9:51:e7:2f:e7:06:0f:b1:d0:b9:e0:0c:68:57:ea:bc:23:
         0b:da:e2:41:7b:78:c1:2b:8e:6e:e7:66:bf:d6:47:38:04:a5:
         18:9b:94:92:df:50:fe:48:46:a0:d1:80:e8:13:e8:fe:59:1e:
         9c:9a:02:4c:ea:fb:0a:9d:54:3b:b5:22:9d:4b:52:01:20:ef:
         41:56:93:00:ce:d7:b8:92:ea:75:c6:58:55:3f:60:fe:9d:45:
         c3:37:16:e2:42:0a:3c:5a:6b:a8:ef:c6:c2:72:87:4c:55:0b:
         bd:0e:a0:4b:4f:ba:4c:df:c6:cb:83:bc:bf:bb:4c:7c:15:08:
         42:2b:da:6e:26:cd:54:1a:a9:88:8b:fe:5b:b2:98:46:1e:fb:
         d5:e0:76:ee:65:99:65:12:14:5c:65:d9:7f:71:f3:bd:cf:47:
         2c:7a:4f:19:2b:f3:7c:2c:28:e6:b2:a7:79:77:5f:44:30:82:
         cb:91:37:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:37:07 2026 by rpki-client