Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
File:                     orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json)
Hash identifier:          kwaukMKMZB1QUJZgwH/ZsFaFcoq+gtapCrHrablHpug=
Subject key identifier:   55:99:1C:28:08:50:75:22:3E:56:AF:F2:63:A5:45:9B:00:6C:F7:B6
Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3
Certificate issuer:       /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3
Certificate serial:       CA
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
Manifest number:          C7
Signing time:             Fri 17 Jul 2026 08:04:25 +0000
Manifest this update:     Fri 17 Jul 2026 08:04:24 +0000
Manifest next update:     Fri 24 Jul 2026 08:04:24 +0000
Files and hashes:         1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: PqabCAna3zrhCq9Om07bVYBrMP9C+1Zwaj895HnQv+s=)
                          2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: g6Egk/b7vNf0MzgI//DoeOCEJm43M/fSUDub5ucoMAA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl
                          rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:04:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 202 (0xca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3
        Validity
            Not Before: Jul 17 08:04:24 2026 GMT
            Not After : Jul 24 08:04:24 2026 GMT
        Subject: CN=6a59e209-a2d3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:a4:6a:f8:ca:bf:31:71:5d:7e:95:50:ed:e7:
                    4d:e6:74:80:8e:81:91:95:5e:64:3d:20:3b:48:3f:
                    7d:84:46:9d:0b:ac:f8:71:58:fb:56:58:cd:f7:d4:
                    c1:bf:b4:03:e7:13:91:00:f0:df:56:da:36:33:11:
                    08:66:2d:60:ef:7f:eb:57:4a:e7:9d:b2:9e:c2:92:
                    4d:e9:d3:72:68:49:50:1c:e5:9c:7a:02:90:94:2b:
                    ba:8d:54:b8:a3:75:68:3d:a9:72:5e:d0:30:5a:01:
                    e4:24:89:73:c8:7b:87:9b:53:b4:25:15:fd:5b:5c:
                    d6:4f:fa:a6:82:4b:2e:d8:73:2d:6d:ca:82:45:bf:
                    61:92:ff:13:14:c3:35:a9:b8:a8:fb:62:51:47:da:
                    5a:4f:48:d1:98:b3:f4:b9:72:e6:72:bc:e4:00:60:
                    a6:ed:e2:79:5b:34:2a:b6:79:f0:ae:0c:95:2c:57:
                    70:3f:1a:f0:9c:be:8c:82:b5:08:c0:d3:0d:36:4b:
                    9e:14:6f:f5:e8:4b:05:c5:b9:75:1d:b5:0a:40:4c:
                    00:92:31:cc:61:81:b2:e1:93:a4:a9:41:73:d5:94:
                    fc:f3:2f:bd:22:a3:a2:51:a8:cc:e1:c9:c2:a5:9f:
                    bb:5d:f8:51:a6:d1:4e:e2:ca:d4:38:f2:7a:fc:81:
                    0b:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:99:1C:28:08:50:75:22:3E:56:AF:F2:63:A5:45:9B:00:6C:F7:B6
            X509v3 Authority Key Identifier:
                keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:86:22:54:86:03:ea:78:c9:5d:cc:cb:18:67:20:81:28:c8:
         a2:1d:97:f2:f7:26:5e:83:ae:48:3d:12:63:1b:cf:d1:4b:81:
         54:14:89:f1:07:0b:cb:dc:86:f2:87:92:33:38:ef:dd:ba:7c:
         67:fe:7b:f3:2e:4e:54:54:30:04:64:e3:92:da:27:cc:22:3e:
         0a:7f:e0:1d:67:4a:30:a6:88:b4:00:78:e7:5d:fa:f4:de:70:
         f8:9e:95:e5:fb:57:96:d7:3d:71:7e:4f:ac:06:83:e5:fe:0e:
         be:99:f2:eb:0b:54:a9:dc:d0:eb:1a:b4:6b:16:df:ae:a3:c7:
         ad:f3:3e:97:b2:d0:db:b3:96:6d:74:fa:cf:f8:3a:25:db:25:
         a5:8e:ae:dc:62:9b:82:d7:54:f2:d5:c6:ae:57:e7:32:a2:36:
         d6:83:17:9a:34:da:d2:ff:fb:3a:41:e5:fd:84:76:14:54:5a:
         20:b5:87:c0:88:aa:5c:c5:18:68:ea:61:a6:53:03:3d:70:36:
         c3:9e:25:21:1e:e5:68:b4:dd:5a:b1:38:27:4d:aa:93:78:dc:
         c4:54:b5:b7:cf:df:98:e5:3c:8d:a9:b1:36:fa:0a:ec:67:52:
         2d:86:b7:84:0d:8a:06:6e:ff:a6:0e:a5:99:18:8e:98:73:3f:
         7c:7a:d3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:30:00 2026 by rpki-client