Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft
File:                     8goyYNssxWGzO2TeFLAR8poeJBQ.mft (raw, json)
Hash identifier:          GKvbxsSRTLimaCGdOcPSRVWXKsdLavXHJFzwC6mmWdY=
Subject key identifier:   92:D0:27:0C:46:54:2D:5C:E5:FF:18:45:88:CC:76:7C:BE:7D:A1:7F
Authority key identifier: F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14
Certificate issuer:       /CN=A91BD9B7/serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414
Certificate serial:       05CA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft
Manifest number:          05C2
Signing time:             Sun 01 Mar 2026 23:24:51 +0000
Manifest this update:     Sun 01 Mar 2026 23:24:50 +0000
Manifest next update:     Sun 08 Mar 2026 23:24:50 +0000
Files and hashes:         1: 8goyYNssxWGzO2TeFLAR8poeJBQ.crl (hash: FXlmfgKxKXqMLrO3dKxd//BeFhTsIrKQIkbzlcDwrJw=)
                          2: 713C4814F9DC11EBA9C81A44C4F9AE02.roa (hash: LiXQFtp2ngg/qzCFHe4dcqm+yap/blmF4mtH/hvw6dc=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl
                          rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 08 Mar 2026 18:27:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1482 (0x5ca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91BD9B7, serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414
        Validity
            Not Before: Mar  1 23:24:50 2026 GMT
            Not After : Mar  8 23:24:50 2026 GMT
        Subject: CN=69a4cac3-cca9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:d0:c5:6b:fb:a5:15:26:cf:09:3d:97:83:e6:
                    90:84:7e:0f:89:94:bd:57:a6:90:30:a4:90:f3:8a:
                    31:08:17:0f:17:02:0b:af:7a:40:e4:a3:25:83:c5:
                    1b:74:b8:90:af:08:24:94:2d:aa:20:bc:21:1d:fb:
                    02:16:84:0c:e7:1c:cb:9e:9d:bf:a5:18:03:0c:fd:
                    7c:8a:fe:ec:77:90:06:6c:4b:48:7a:77:0b:5e:18:
                    16:79:cf:1c:4e:8b:25:a9:63:53:8e:78:03:b0:eb:
                    ec:3e:d3:4b:c9:f5:a3:ca:00:49:04:d9:fc:01:37:
                    1c:b7:00:f1:5f:d0:33:f6:9c:d7:5b:b3:f8:53:95:
                    04:db:b7:64:c1:e6:36:d5:79:6f:be:dd:1a:ee:d1:
                    ef:be:d3:43:63:f4:a7:12:47:b2:ce:e4:c6:40:e4:
                    ae:2f:2c:d9:04:28:f8:bf:a2:78:15:2d:11:bf:04:
                    df:d6:cc:9c:58:d8:7a:56:84:19:ff:03:46:f9:e0:
                    3f:5e:0a:92:f9:5a:fb:73:85:22:d6:b1:ae:b8:07:
                    b6:08:41:77:00:b8:0c:44:db:30:42:d6:99:80:ca:
                    f1:bb:1c:0e:6a:20:5a:2c:42:ad:be:5e:28:a1:7b:
                    cb:6d:55:c3:83:14:27:b0:34:6d:04:44:19:0f:5d:
                    cf:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:D0:27:0C:46:54:2D:5C:E5:FF:18:45:88:CC:76:7C:BE:7D:A1:7F
            X509v3 Authority Key Identifier:
                keyid:F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:8e:77:d9:af:35:89:7e:aa:e8:a8:5d:0d:be:e8:db:12:84:
         27:be:ad:fb:e5:77:1c:34:93:48:1c:00:6e:08:35:d7:77:f8:
         e1:10:70:2c:6c:45:47:7a:7c:30:d4:9f:06:25:ba:61:0c:d1:
         ac:88:3b:fd:f9:ab:c7:a2:b4:01:30:c4:3f:60:41:1c:92:71:
         e7:86:2e:14:48:41:48:14:06:ca:34:f0:63:c2:a9:76:8a:05:
         de:c0:e2:fc:80:b0:78:8d:7e:9a:d1:bd:7c:19:6c:5d:21:a6:
         84:60:7a:f7:f1:13:3c:86:f0:0d:80:7f:81:a2:f5:ba:54:6f:
         a3:d8:8d:db:cb:99:81:43:26:b1:92:11:12:36:58:68:97:c8:
         aa:65:c7:65:38:2b:73:b5:a7:bf:61:de:cd:83:6e:a8:1a:3f:
         74:2b:ad:e5:29:7d:37:67:8b:8e:fb:dd:dd:cd:50:e6:f4:2a:
         1e:67:f4:bc:77:4e:64:d1:22:95:34:3e:0b:b8:15:90:ef:25:
         d8:00:42:f7:b6:73:0f:c6:bf:61:3c:72:3c:ec:dd:31:be:a5:
         62:d7:54:50:a4:ca:80:2b:bc:6d:90:71:ef:67:33:32:bd:65:
         e0:f4:fe:9a:26:3c:94:35:21:55:06:a2:60:22:e9:ed:c2:ea:
         81:f2:5d:01
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QkQ5QjcxMTAvBgNVBAUTKEYyMEEzMjYwREIyQ0M1NjFCMzNCNjRERTE0QjAxMUYy
OUExRTI0MTQwHhcNMjYwMzAxMjMyNDUwWhcNMjYwMzA4MjMyNDUwWjAYMRYwFAYD
VQQDEw02OWE0Y2FjMy1jY2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAx9DFa/ulFSbPCT2Xg+aQhH4PiZS9V6aQMKSQ84oxCBcPFwILr3pA5KMlg8Ub
dLiQrwgklC2qILwhHfsCFoQM5xzLnp2/pRgDDP18iv7sd5AGbEtIencLXhgWec8c
ToslqWNTjngDsOvsPtNLyfWjygBJBNn8ATcctwDxX9Az9pzXW7P4U5UE27dkweY2
1Xlvvt0a7tHvvtNDY/SnEkeyzuTGQOSuLyzZBCj4v6J4FS0RvwTf1sycWNh6VoQZ
/wNG+eA/XgqS+Vr7c4Ui1rGuuAe2CEF3ALgMRNswQtaZgMrxuxwOaiBaLEKtvl4o
oXvLbVXDgxQnsDRtBEQZD13PRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJLQJwxG
VC1c5f8YRYjMdny+faF/MB8GA1UdIwQYMBaAFPIKMmDbLMVhsztk3hSwEfKaHiQU
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDlCNy8xNDk4MDQ5OEY5
RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hXR3pPMlRlRkxBUjhwb2VK
QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzhnb3lZTnNzeFdHek8yVGVGTEFSOHBvZUpCUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
RDlCNy8xNDk4MDQ5OEY5RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hX
R3pPMlRlRkxBUjhwb2VKQlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAfI532a81iX6q6KhdDb7o2xKEJ76t++V3HDSTSBwAbgg113f44RBwLGxFR3p8
MNSfBiW6YQzRrIg7/fmrx6K0ATDEP2BBHJJx54YuFEhBSBQGyjTwY8KpdooF3sDi
/ICweI1+mtG9fBlsXSGmhGB69/ETPIbwDYB/gaL1ulRvo9iN28uZgUMmsZIREjZY
aJfIqmXHZTgrc7Wnv2HezYNuqBo/dCut5Sl9N2eLjvvd3c1Q5vQqHmf0vHdOZNEi
lTQ+C7gVkO8l2ABC97ZzD8a/YTxyPOzdMb6lYtdUUKTKgCu8bZBx72czMr1l4PT+
miY8lDUhVQaiYCLp7cLqgfJdAQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:08:11 2026 by rpki-client