Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
File:                     h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json)
Hash identifier:          P7NIMyc3j5CPLTeNudI1X7Di1/4WM5iJd3oPw8tEz5E=
Subject key identifier:   DD:B7:AC:C9:08:FB:D7:C7:5F:B1:FB:8C:CE:18:42:D6:79:A9:94:05
Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA
Certificate issuer:       /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA
Certificate serial:       18B9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
Manifest number:          189E
Signing time:             Wed 08 Jul 2026 16:43:47 +0000
Manifest this update:     Wed 08 Jul 2026 16:43:47 +0000
Manifest next update:     Wed 15 Jul 2026 16:43:47 +0000
Files and hashes:         1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: r21cHSzOoC9Q1ANkpsuQRooswXfeLln0tx+0Gl8rtMk=)
                          2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: rehHNVoMzYrcbyHR3xn9AScPl8hoBFDtA7CJ2MlnTrM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl
                          rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 16:43:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6329 (0x18b9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA
        Validity
            Not Before: Jul  8 16:43:47 2026 GMT
            Not After : Jul 15 16:43:47 2026 GMT
        Subject: CN=6a4e7e43-0cfc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:e1:05:6a:b9:9e:e4:f1:69:87:9c:bb:a1:ae:
                    ff:fe:61:80:90:02:e8:eb:ed:bd:41:1a:5d:09:e6:
                    19:f1:60:6c:84:7b:97:ff:82:5e:76:40:46:b6:a0:
                    d3:da:94:2b:48:48:ad:ae:27:59:b5:8e:63:9d:ea:
                    47:ca:b5:40:64:63:2c:05:ae:43:96:d6:71:eb:97:
                    75:c2:70:ec:b7:e9:0f:d2:4d:7e:55:4d:0c:6e:8c:
                    96:76:63:15:e7:b6:39:e3:12:a7:d6:bd:ca:5c:98:
                    ea:94:04:8c:d5:d2:95:e2:18:ec:53:53:5f:24:da:
                    54:8b:24:8c:c7:53:23:f4:3b:f6:1a:b4:86:d8:d1:
                    c1:5a:cf:00:44:1a:0e:df:6a:b5:8b:24:a5:d2:56:
                    ea:1f:8e:b1:97:d8:59:cd:3a:df:69:e6:03:ac:97:
                    2a:83:f1:c7:14:8a:2b:f5:82:2c:6d:1d:03:03:83:
                    45:53:20:fc:4f:b9:21:c2:81:06:0f:78:cd:2a:46:
                    a4:ce:d5:7e:ee:20:67:6e:b5:95:cc:ab:5a:e9:d2:
                    09:a2:7c:2d:89:88:d2:27:aa:a1:bc:19:61:59:86:
                    6f:37:0a:d2:9a:ef:d9:1e:92:57:1b:b4:6b:0a:00:
                    5c:78:54:2e:31:8c:83:ea:45:f2:1b:b4:b9:25:4f:
                    b7:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:B7:AC:C9:08:FB:D7:C7:5F:B1:FB:8C:CE:18:42:D6:79:A9:94:05
            X509v3 Authority Key Identifier:
                keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:42:eb:88:6e:bb:2d:4b:b9:72:19:50:7d:eb:f7:21:57:10:
         d2:f9:19:d3:71:8e:05:f5:9f:35:ad:3c:03:fd:72:4d:6f:70:
         08:9b:15:8f:2f:7d:59:24:3c:26:89:34:41:1c:f4:7d:2b:98:
         13:4a:dd:ce:b4:9a:6d:d0:33:6e:9b:7e:fc:de:30:6e:a3:97:
         90:57:24:bb:4f:4a:5c:4d:3d:f7:dc:6f:82:0e:45:a5:28:80:
         c8:b1:66:f4:37:ac:b1:93:b9:9c:e5:b5:20:3b:db:0d:d3:41:
         5f:1c:7d:78:a8:60:48:74:89:4d:e8:3f:1e:54:b9:03:3a:40:
         fd:01:17:c7:27:d1:9d:5c:01:f5:08:6d:c7:1e:cd:0f:eb:5d:
         05:0e:dc:62:d8:39:05:df:ce:84:ed:68:d3:57:2e:47:e9:9b:
         73:49:fb:ee:35:ef:54:74:f4:c0:b7:ac:fe:15:8b:14:b2:da:
         90:9a:40:26:68:bf:2f:7e:70:66:e6:c9:9f:4a:f3:37:97:dd:
         3e:86:c2:e0:9b:c9:93:6b:b9:a3:56:4b:af:0d:24:8f:bb:8d:
         94:ae:81:be:ec:d9:cd:e3:fd:80:61:42:83:44:31:ca:9d:f7:
         f8:72:91:db:77:77:f0:f4:1e:db:f8:2c:91:34:9e:65:f7:5b:
         8b:93:c8:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:25:25 2026 by rpki-client