Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft
File:                     XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json)
Hash identifier:          XI59rPRS/e6w3h2LNIQuwhzyOWZOk7eO4ekbiHESt+E=
Subject key identifier:   78:64:C1:B6:2B:E9:25:16:09:49:4F:B2:CD:D7:8C:EA:69:80:4C:F8
Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24
Certificate issuer:       /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824
Certificate serial:       2376
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft
Manifest number:          235B
Signing time:             Mon 02 Mar 2026 02:40:21 +0000
Manifest this update:     Mon 02 Mar 2026 02:40:20 +0000
Manifest next update:     Mon 09 Mar 2026 02:40:20 +0000
Files and hashes:         1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: 3X0ujP8VGte02GV8qUnEKSaRyB1yRkMZu5lyJld+00E=)
                          2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: R5xEKjp2COzsPx07QmJ9ZHVVMUSggpYYD3FgaBWcVMU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl
                          rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 09 Mar 2026 02:40:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9078 (0x2376)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824
        Validity
            Not Before: Mar  2 02:40:20 2026 GMT
            Not After : Mar  9 02:40:20 2026 GMT
        Subject: CN=69a4f895-15b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:4d:2b:a4:16:23:f8:38:98:5b:2b:ee:a9:9f:
                    c5:a6:7a:d9:5c:a7:7d:49:7f:10:c7:15:6d:54:9b:
                    f2:52:4e:d8:bf:2e:ea:16:41:71:58:2d:a3:51:32:
                    ec:e7:9a:78:21:a0:ae:1e:1f:a1:8d:ba:ec:f4:38:
                    c3:cb:1a:ee:4c:97:e8:59:c0:67:bf:31:a0:a2:6f:
                    1b:27:19:b0:05:18:14:32:f7:c3:ae:82:b8:32:9f:
                    9e:e1:10:d9:13:51:48:da:1d:02:dd:2f:4e:96:00:
                    15:82:65:f8:96:b3:d9:8e:c2:e6:db:ce:7d:2d:d5:
                    7e:11:bc:40:a5:11:40:33:40:a5:4d:b8:84:be:34:
                    e9:69:bf:0a:1b:de:a3:d5:de:06:80:06:bd:a0:3e:
                    e5:e8:f7:f7:38:22:21:98:7c:46:a9:0f:1d:e1:3d:
                    d4:85:cb:e9:f5:f3:86:f0:b3:5e:1f:71:79:86:36:
                    8e:7c:45:a2:3b:5e:ff:d8:02:2e:26:51:7c:bd:7d:
                    c1:06:92:dd:18:32:a2:aa:ac:c8:45:9d:09:5e:ff:
                    bc:d2:1b:a3:51:bc:aa:d1:99:47:72:bc:90:ce:d9:
                    c3:bf:cb:3f:6a:94:b7:a7:51:a1:65:3b:84:c8:c7:
                    d1:b7:f3:9e:ff:c8:98:52:74:58:26:d4:ce:89:f4:
                    e9:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:64:C1:B6:2B:E9:25:16:09:49:4F:B2:CD:D7:8C:EA:69:80:4C:F8
            X509v3 Authority Key Identifier:
                keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:ce:f7:ae:81:f5:f7:93:79:a4:fe:c6:16:2e:f7:61:61:d4:
         9f:29:3e:12:53:f0:53:25:1c:ab:51:18:2b:1e:7f:26:7b:eb:
         af:8e:40:91:82:f4:0a:06:3d:53:57:6e:cb:24:d0:d0:9b:95:
         5a:23:ad:0b:7e:88:70:e8:eb:8c:43:58:d2:89:d4:b7:cc:98:
         d6:e8:fe:b7:1a:3e:d2:26:19:6e:18:0d:eb:87:5c:5d:f5:69:
         e9:c0:e0:4d:f5:84:ac:71:98:a4:4f:fb:8d:31:05:65:69:ce:
         0a:fa:5c:10:97:0f:82:05:25:7b:25:16:72:05:bc:98:a9:75:
         5e:f8:7e:f5:46:f6:21:a8:a4:dc:60:b7:28:ca:6f:42:b6:73:
         76:4f:e5:8f:cf:df:b5:87:9e:6b:68:b2:69:28:72:4f:a4:fc:
         00:30:2e:cd:b1:7d:22:c6:6c:92:b8:21:74:55:ff:b4:c6:46:
         c4:03:88:3f:c6:ae:ad:04:62:08:8b:49:34:9b:3a:a9:c5:cd:
         45:20:25:e7:33:9a:89:e0:7d:f6:87:01:a2:dc:1f:34:ba:75:
         70:96:b7:1b:4c:b4:0f:69:b5:a2:9f:ae:fe:e3:67:94:7c:dc:
         ce:b8:86:59:1b:99:c3:f3:b7:61:af:d1:73:00:d4:14:7b:e0:
         e1:53:50:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:38:07 2026 by rpki-client