Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
File:                     hlMymlHbxnnxvxfXkdg-x2ib564.mft (raw, json)
Hash identifier:          NHDBBR6UZhva+w36B0nsxbk4ulVp9oIHuChoKcaeiZ4=
Subject key identifier:   A0:5A:22:29:E7:08:35:BB:83:8A:C3:E4:F9:0D:DF:A7:38:2F:9C:F8
Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE
Certificate issuer:       /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE
Certificate serial:       090D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
Manifest number:          0900
Signing time:             Thu 16 Jul 2026 20:35:00 +0000
Manifest this update:     Thu 16 Jul 2026 20:34:59 +0000
Manifest next update:     Thu 23 Jul 2026 20:34:59 +0000
Files and hashes:         1: hlMymlHbxnnxvxfXkdg-x2ib564.crl (hash: 4Y01Gkv8Mywek8aSMpVtxT9oPDmRWW4r0rGzdtflERs=)
                          2: 2611C806D1AA11EA82C4313FC4F9AE02.roa (hash: 7N3nKDQ3w2NhBshlECEhRg3G3BG+HugNnq2CvYT6jGk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl
                          rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 20:34:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2317 (0x90d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE
        Validity
            Not Before: Jul 16 20:34:59 2026 GMT
            Not After : Jul 23 20:34:59 2026 GMT
        Subject: CN=6a594074-cb2d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:c0:e2:be:e5:6a:ac:cc:b0:91:c0:8d:1b:67:
                    63:4f:6e:b9:8f:d2:cf:4c:48:95:84:b4:26:e9:c6:
                    5f:4f:d5:e5:c5:9c:41:45:a2:88:84:60:19:c6:44:
                    0b:06:da:93:e3:fd:80:56:d7:53:3c:e0:67:4b:d5:
                    64:86:30:07:0f:8e:a3:1a:8d:75:75:37:ba:d0:cd:
                    75:84:11:14:09:75:b4:54:0f:42:98:fc:76:6c:41:
                    21:02:b3:d5:98:dc:4c:0f:e4:a7:e9:90:09:ed:c6:
                    c4:3c:b8:2d:3f:51:94:bf:37:23:e9:67:ba:79:0b:
                    13:a0:f1:30:fc:2a:b0:f0:f8:c3:17:b5:8b:16:76:
                    e6:71:2e:cc:a6:c1:cb:51:45:8f:70:df:05:1b:2e:
                    1e:aa:db:ea:4b:15:df:90:81:28:cb:49:a9:0b:59:
                    f7:16:a2:09:e7:8b:15:dc:83:cf:ed:9d:f7:cc:dd:
                    76:69:a6:b8:ef:e4:23:63:08:44:01:e3:7c:58:9e:
                    f4:c6:12:c7:e6:74:e8:38:3a:50:b3:d2:86:b6:82:
                    71:8f:78:69:ed:cf:74:a0:46:a6:a2:64:27:11:4d:
                    52:40:d8:b3:99:60:62:d9:6f:26:3d:a8:40:c4:cb:
                    2c:08:b9:d2:e8:ca:cc:26:76:88:64:25:cb:6c:fd:
                    79:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:5A:22:29:E7:08:35:BB:83:8A:C3:E4:F9:0D:DF:A7:38:2F:9C:F8
            X509v3 Authority Key Identifier:
                keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:fc:26:36:97:96:1e:2b:9f:0b:ba:65:b1:8e:e8:ad:7c:5a:
         86:bb:51:ba:2d:29:29:82:94:9a:33:be:0d:a9:04:49:d2:57:
         88:53:46:6a:84:fa:1a:a0:9c:9a:29:5a:a4:70:b6:14:f1:59:
         b6:d4:05:71:3e:63:7b:3b:24:01:19:40:0b:84:62:c1:8a:43:
         4e:f2:f7:10:fb:a9:65:ad:11:6c:0a:86:03:09:91:ab:2c:a5:
         91:11:30:e1:5a:86:47:4d:75:63:10:55:76:d8:d8:06:6c:0d:
         9b:4b:01:66:ed:34:0c:1e:e1:c5:84:89:5b:3a:e1:d9:f0:c2:
         e0:23:d7:3e:fe:72:6f:20:70:ea:63:8b:8a:5d:29:2e:63:a6:
         13:b1:55:55:80:fc:01:d8:40:d3:2a:de:c2:46:ac:f4:c2:cc:
         e9:60:6b:09:f5:2e:73:86:c3:74:49:42:d0:11:95:b3:fa:85:
         4d:97:f9:b9:31:9c:4c:58:a1:c9:3e:9e:cc:36:8b:26:11:c5:
         90:ad:c1:bc:23:c7:22:62:67:9e:0f:a5:50:ac:df:a8:e7:3c:
         eb:ef:ed:5f:18:d3:90:2a:9d:2c:ce:8c:56:3e:f5:5a:4d:0c:
         5b:0a:b3:ed:d3:eb:37:2e:bd:13:b6:12:ac:00:92:d5:64:ce:
         e2:a2:04:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:30:34 2026 by rpki-client