Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
File:                     sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json)
Hash identifier:          XwB6TP59EN5k65qCPl+3Ykwa5IEWys+vREpyfsKUhYw=
Subject key identifier:   39:01:99:F6:8E:4C:54:9D:01:50:DC:B8:38:87:1E:A0:1C:F2:0B:23
Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
Certificate issuer:       /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05
Certificate serial:       061B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
Manifest number:          060F
Signing time:             Mon 02 Mar 2026 02:53:03 +0000
Manifest this update:     Mon 02 Mar 2026 02:53:01 +0000
Manifest next update:     Mon 09 Mar 2026 02:53:01 +0000
Files and hashes:         1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: NHdYnsFWt4YTKUNI90i6WTl5eTcGjLSltkbzSJAmDI4=)
                          2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: paFsFa6qVLCDV+k1MXzHkgPkBlhBBEj3AZlBzmVS9gs=)
                          3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: KJ2mFEWkTtrCEZw9NVFYAAnTanzrSc/7NwbR3vngF7g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl
                          rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 09 Mar 2026 02:52:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1563 (0x61b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05
        Validity
            Not Before: Mar  2 02:53:01 2026 GMT
            Not After : Mar  9 02:53:01 2026 GMT
        Subject: CN=69a4fb8e-f369
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:d8:25:4b:ed:01:96:f5:61:bf:33:1c:6c:d6:
                    2b:d8:4a:bc:05:d2:dc:d6:8e:4b:d1:23:dc:0e:30:
                    ec:fb:ca:8a:e9:5a:b8:b5:86:84:ce:1c:c7:1c:c6:
                    a3:53:47:07:99:8d:da:0d:c4:96:24:8a:67:58:9e:
                    8c:8b:33:4d:3a:93:c2:97:cc:dc:f9:0b:a2:db:03:
                    b3:1f:bd:77:9a:1b:7a:10:fe:2e:25:40:5c:36:ac:
                    a2:a1:43:03:38:35:71:e2:11:69:2d:2e:a2:64:21:
                    17:67:2d:32:ec:e2:44:e3:69:55:c7:8c:8e:f6:f1:
                    4c:10:d4:49:a5:91:de:8d:38:2b:a3:a4:4a:14:c3:
                    58:80:f6:f9:8f:6c:8a:5b:0f:74:ba:0c:96:98:12:
                    83:21:1b:f4:a5:70:2b:05:59:12:17:7f:7a:6c:f4:
                    88:99:ee:4b:01:38:cd:9d:0a:2e:b9:da:10:2c:1b:
                    9d:fd:bd:e3:73:54:90:1b:7b:97:1d:4b:50:c8:a9:
                    19:ff:e4:6c:7d:dd:1c:94:b6:04:e4:33:be:b9:f6:
                    dd:98:91:ba:b7:67:3d:bc:03:f0:cd:5d:f7:4b:64:
                    64:ef:78:22:cb:7c:aa:68:00:4a:35:cc:a7:17:39:
                    5b:08:c3:22:e9:94:1c:66:dc:3a:5f:68:7c:3d:ce:
                    4a:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:01:99:F6:8E:4C:54:9D:01:50:DC:B8:38:87:1E:A0:1C:F2:0B:23
            X509v3 Authority Key Identifier:
                keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:2f:d5:5a:ed:ac:a6:b3:18:01:e8:85:27:73:33:08:f2:86:
         d7:b0:4f:22:35:e6:a0:87:67:dc:22:63:f4:c1:ce:40:5b:04:
         89:ac:20:f5:15:75:7e:1c:30:b9:dd:89:c1:51:0a:bb:fc:c6:
         f9:86:64:ef:ea:3e:9b:93:0b:55:18:19:62:45:29:51:c5:4d:
         c4:a9:39:06:9e:9b:ec:78:a8:ee:e5:21:81:71:e8:1b:58:81:
         49:4a:1f:9e:24:3d:2d:d1:dd:8e:72:48:c5:2a:78:10:fd:50:
         d8:78:5d:6b:fd:b9:5d:f9:9c:b7:84:e8:5a:f1:6d:03:4b:41:
         b6:23:fb:e5:e0:68:a4:22:87:63:50:8e:f9:5c:64:b1:b4:72:
         c0:da:8b:69:67:a9:3e:6b:1f:b5:94:af:eb:d7:b3:2a:58:2f:
         d9:17:ef:d9:bc:96:d5:cf:7d:36:58:d2:1b:6b:0d:ac:24:29:
         4a:0d:4e:ce:02:77:ed:53:8a:72:12:fa:53:f9:77:e8:b3:7d:
         db:10:5d:13:e6:60:69:d2:b3:35:32:ca:60:63:34:83:35:9b:
         84:da:d5:2c:ca:50:6e:99:3d:94:ae:cf:79:06:75:72:1d:ac:
         b6:25:d1:03:be:0b:b1:8f:38:21:57:66:0e:b0:4c:56:49:98:
         aa:5d:5b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:05:46 2026 by rpki-client