Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
File:                     oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json)
Hash identifier:          o3lvIVNY8EWGV1THd6PKfgn+QqWkkFwJY3SMGlPe/9k=
Subject key identifier:   9F:A8:97:FF:43:FF:40:10:76:A1:07:89:32:0D:FD:52:4C:0C:6C:53
Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
Certificate issuer:       /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
Certificate serial:       0243
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
Manifest number:          0221
Signing time:             Sun 01 Mar 2026 04:22:57 +0000
Manifest this update:     Sun 01 Mar 2026 04:22:56 +0000
Manifest next update:     Sun 08 Mar 2026 04:22:56 +0000
Files and hashes:         1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: St692Lqt3tLeGnnOW5XbZfd1curt4r7NIeNS+Ey8Mj0=)
                          2: D0103496FD6611EE9188C568C4F9AE02.roa (hash: Jwg4yB9p7awEGC4a4xFVc/YzSx6c3LyJh4FGUJS+9Q8=)
                          3: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: Tu30AU0o2UBF3Q9Ji3CUOd6/yb/H5yOQ7wtb9Y5l1xA=)
                          4: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: sU4cNv1HaW3Z4UjI9MyUuR7OqVjIOF34gToqnkUePP8=)
                          5: 803597528D5911F087734E0BC4F9AE02.roa (hash: WEvaUpAHBsWxitY3h0ssmF82XaPgItrbVBtSpG6kFaM=)
                          6: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: Sbp8/jRXpbH+cwbxg5EglU5zeL6yCLbiBD9Np8irjGs=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl
                          rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 08 Mar 2026 04:22:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 579 (0x243)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
        Validity
            Not Before: Mar  1 04:22:56 2026 GMT
            Not After : Mar  8 04:22:56 2026 GMT
        Subject: CN=69a3bf21-df3c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:70:4c:3d:14:4f:ef:e8:83:c9:d9:fc:87:6a:
                    5e:40:aa:22:5f:26:c8:3c:46:3e:3e:78:be:62:76:
                    36:c4:21:bc:e8:01:c4:e2:89:03:62:af:6c:c0:2a:
                    94:3b:73:38:28:3e:80:4a:17:5d:e6:2f:e6:9b:35:
                    5f:1e:aa:f8:c6:37:fb:48:16:0a:92:17:fe:b2:97:
                    0f:7b:04:90:f2:85:c9:e7:4e:52:f6:a5:63:1f:7d:
                    54:23:48:bc:f0:ae:b9:49:e3:a1:27:4a:f5:0f:e4:
                    9f:f2:ed:84:2e:60:b1:75:50:ac:85:bf:37:c9:10:
                    b1:83:f5:fe:b8:75:a7:a5:03:26:88:7b:35:cd:22:
                    0d:d7:8f:fc:55:64:11:15:f2:40:a8:4a:c4:99:9c:
                    e1:00:c9:2d:51:31:a0:86:04:a9:a8:05:48:06:ed:
                    b9:ea:26:fa:92:55:4c:83:55:f9:13:c2:c1:4e:03:
                    e4:fe:3f:7e:8c:38:66:b0:ee:18:58:20:6c:c0:8f:
                    94:4f:5d:56:35:2d:d9:50:36:0b:57:89:ae:e8:1f:
                    10:80:57:7a:d5:c7:6c:90:d0:60:68:fd:30:f6:18:
                    01:26:41:4f:b6:16:e9:13:46:f2:c8:08:e6:28:8b:
                    4b:23:e1:63:0b:8d:4c:05:2a:57:f7:bd:03:fc:8f:
                    53:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:A8:97:FF:43:FF:40:10:76:A1:07:89:32:0D:FD:52:4C:0C:6C:53
            X509v3 Authority Key Identifier:
                keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:72:aa:f4:0a:dc:c5:44:7e:57:52:d0:9a:d4:28:e5:4b:2a:
         9e:af:f8:c4:da:de:ea:75:97:bb:66:43:99:1d:27:be:91:7a:
         07:c8:00:a6:00:31:8c:fe:6e:9a:34:2e:6f:e6:4a:81:c4:8a:
         b3:2c:1b:12:7a:be:79:ac:24:8a:94:d3:aa:65:f1:c4:41:2b:
         61:8c:de:39:60:ee:3b:43:f8:3f:cd:87:6a:31:a3:f1:1d:83:
         fe:56:11:d2:3f:c2:b8:10:8f:58:54:a6:82:5d:1e:9b:2d:58:
         1c:2b:5c:0d:c5:dc:98:3f:ea:32:17:0d:4b:77:da:61:24:0b:
         61:f1:f1:30:d4:de:ec:f0:09:7f:e0:dd:4f:a5:d1:a3:8b:7c:
         8e:c0:9f:90:94:d0:ed:86:e7:81:cb:d6:b6:9e:93:0f:0f:9a:
         ba:6b:0c:19:c9:04:d4:fe:e0:3d:4f:19:31:f1:d7:9e:a6:fa:
         d2:69:df:f6:f7:09:bc:a7:1c:0e:c8:5e:3f:b9:72:b0:11:e8:
         0e:15:8d:ce:10:80:e6:0a:ac:1a:f1:a7:c7:70:d0:bc:70:35:
         93:f5:52:f4:29:b0:0b:83:dd:97:95:85:86:7d:01:df:d2:bb:
         ab:9a:6c:07:c0:38:82:81:c6:56:2e:8d:8d:53:cc:4d:5b:6c:
         4e:43:a5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:32:05 2026 by rpki-client