Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
File:                     hf--WNwc9_kcLTgTTiC27wssOl8.mft (raw, json)
Hash identifier:          YYZOJBglx4tS2E5PZzn9NrM+fXSp2WisbrtAFoTKFH0=
Subject key identifier:   91:2F:B5:A3:2C:68:E7:FA:39:E8:71:7A:C8:F3:BB:15:AC:DF:D8:B8
Authority key identifier: 85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F
Certificate issuer:       /CN=A911954F/serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F
Certificate serial:       01A3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
Manifest number:          0390
Signing time:             Fri 17 Jul 2026 04:18:50 +0000
Manifest this update:     Fri 17 Jul 2026 04:18:49 +0000
Manifest next update:     Fri 24 Jul 2026 04:18:49 +0000
Files and hashes:         1: hf--WNwc9_kcLTgTTiC27wssOl8.crl (hash: WKE37JMDQ+g0yZOlH6Y/hbSzxvjhOpr7a0dLH7akkmM=)
                          2: 65874B72FF1D11F09D5C691B85EE528E.roa (hash: mRk4Fo6iZr93iyaJTrEyOENMDqLXHjjP+xgNzUN6Prs=)
                          3: 5FAC3CB644CE11F19BD95499BE833773.roa (hash: WkErIMYK/mQSKLc4lnPt53wSfKMo9LaNrKnnlPsS/9g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl
                          rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:18:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 419 (0x1a3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A911954F, serialNumber=85FFBE58DC1CF7F91C2D38134E20B6EF0B2C3A5F
        Validity
            Not Before: Jul 17 04:18:49 2026 GMT
            Not After : Jul 24 04:18:49 2026 GMT
        Subject: CN=6a59ad29-e070
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:db:87:db:8f:9c:89:49:97:63:87:8e:1a:3a:
                    cf:2e:af:b1:80:7d:5f:15:ef:a1:ce:e0:b2:9b:09:
                    2b:8d:04:ca:75:2c:6b:a7:b7:94:3f:4d:80:59:b2:
                    96:10:a9:21:28:ac:59:73:61:c2:d2:7d:3a:11:78:
                    d4:ae:a3:49:3b:12:a8:ae:99:b1:13:85:ad:83:97:
                    7e:0a:4b:59:5b:0c:c6:7d:b0:97:87:32:98:3c:b6:
                    f9:e1:48:d1:af:16:32:e9:3f:fe:38:a5:86:d6:b0:
                    75:e7:0f:1d:d1:1d:30:38:53:6b:12:fe:00:2f:08:
                    94:05:6f:02:f2:19:2d:a0:48:a9:42:73:4c:4c:5e:
                    2f:74:87:b0:68:ce:9c:93:7a:1b:e4:72:f7:ba:f1:
                    f6:f4:17:e3:c1:e1:06:3b:b3:c3:45:60:e8:ab:98:
                    38:1d:e4:34:63:fc:5e:e8:43:d4:44:c8:73:47:c3:
                    9e:0c:d3:45:3f:e7:31:7d:3f:d8:c6:b4:ed:69:39:
                    aa:2e:38:c9:52:34:e2:61:20:e0:1d:ee:9d:2e:3b:
                    80:2b:4b:56:5c:5a:83:c4:4d:e1:fd:37:87:73:ce:
                    78:c8:01:e2:46:46:00:4d:53:b8:40:2c:b3:63:0b:
                    79:51:df:49:8b:21:3d:36:da:d1:13:ce:d9:45:ee:
                    54:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:2F:B5:A3:2C:68:E7:FA:39:E8:71:7A:C8:F3:BB:15:AC:DF:D8:B8
            X509v3 Authority Key Identifier:
                keyid:85:FF:BE:58:DC:1C:F7:F9:1C:2D:38:13:4E:20:B6:EF:0B:2C:3A:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hf--WNwc9_kcLTgTTiC27wssOl8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911954F/591A3220914A11EE942CC871C4F9AE02/hf--WNwc9_kcLTgTTiC27wssOl8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:e1:f5:90:03:e8:4b:31:e6:22:c5:b0:b1:20:d2:6c:48:ab:
         93:4e:a8:f3:bb:af:10:20:ca:aa:57:61:4d:4d:95:c6:83:79:
         4e:fd:f2:59:a5:49:73:2d:97:be:64:c4:41:5a:38:a8:90:e9:
         8c:d4:4f:f6:c2:71:47:bf:24:15:6f:e6:a9:96:bc:11:2b:8a:
         96:43:5a:26:61:4f:a2:47:b3:7b:b0:92:2a:95:03:fb:e9:5b:
         38:23:5a:bf:86:82:8a:b8:2c:05:02:14:a4:0e:15:bd:7f:f1:
         95:a6:48:cb:39:b3:12:37:9c:ba:f9:10:2f:50:db:7f:7e:02:
         d3:c2:b0:f1:23:ce:98:2b:02:f2:2f:0b:6b:03:11:e6:09:9f:
         c5:6f:d3:68:83:5f:34:17:1b:03:06:46:7b:12:43:4a:61:b0:
         54:b6:f5:fa:8d:19:2e:29:72:7a:5f:22:41:80:0b:f1:37:e8:
         cd:55:f3:da:2d:f8:50:55:ce:ea:c0:dc:f5:fc:b0:5e:bd:5d:
         f4:0e:ef:1c:fb:05:c5:c3:c3:30:88:74:02:3a:b0:a0:5c:78:
         aa:71:0a:20:6e:3c:88:1a:68:1d:8b:38:28:41:7f:40:3f:c9:
         cd:ea:92:d9:0c:80:f4:f9:7b:77:d0:ca:d6:c9:d4:85:fb:f0:
         38:ea:83:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:28:04 2026 by rpki-client