Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft
File:                     dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json)
Hash identifier:          1qhz6GxEp8DN1mvMqcnWkRR5RNRDfUmmCD+nE5K1q/0=
Subject key identifier:   B4:35:BF:FD:48:D7:64:51:F5:53:D0:14:87:0E:63:52:F1:1A:E0:61
Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17
Certificate issuer:       /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317
Certificate serial:       AE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft
Manifest number:          A9
Signing time:             Fri 17 Jul 2026 08:24:32 +0000
Manifest this update:     Fri 17 Jul 2026 08:24:31 +0000
Manifest next update:     Fri 24 Jul 2026 08:24:31 +0000
Files and hashes:         1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: DnO5iGzQUrGQ9nSteh1iCkpajaG3nlrJles8r+QpZ7I=)
                          2: A7FC3D6C041F11F1A6FA4A091E3D8C67.roa (hash: zqRSIq7TQ9YhehrRszjYHmmXVsq7Z1RZBr7dzybRlhI=)
                          3: 90034B4C041F11F1953EEBDB1D3D8C67.roa (hash: O2t9f2ogcGV3x7WMv8XiYkP5DDfbHONXGddoSTXjm4Q=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl
                          rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 08:24:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 174 (0xae)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317
        Validity
            Not Before: Jul 17 08:24:31 2026 GMT
            Not After : Jul 24 08:24:31 2026 GMT
        Subject: CN=6a59e6c0-c31d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:3d:24:39:51:14:24:82:0c:ce:5f:52:00:cd:
                    1b:bb:11:2b:ef:84:58:59:5f:df:3e:d5:05:c3:0a:
                    8b:e2:3f:7b:b9:03:2b:60:3d:6a:35:cb:82:f9:b8:
                    b9:db:34:db:d2:4c:41:d4:bd:e2:ed:5f:38:39:29:
                    29:2d:78:80:b7:6c:b7:c4:c4:be:bb:08:4d:0d:57:
                    10:e9:bf:53:29:6c:b9:94:f6:90:94:c9:cc:ef:16:
                    7e:42:91:11:0c:d3:3d:ff:67:24:6b:49:5d:7f:99:
                    64:e3:66:6a:8d:69:b4:53:dd:55:c0:62:21:c6:d5:
                    01:e0:0f:38:d9:10:02:ce:84:e7:bc:2b:ba:4a:4f:
                    8e:0e:05:37:6f:7b:f2:a4:8a:f2:2b:3f:8e:18:cd:
                    ec:8e:60:65:f2:ee:eb:90:88:fc:d4:82:60:de:c1:
                    57:6f:ae:cd:8c:9c:d5:57:d6:03:1f:f6:60:4f:75:
                    21:60:56:6f:9e:e6:e9:23:da:a4:53:dd:f7:55:8b:
                    6a:8d:87:cf:45:cd:4c:17:32:6b:a6:a1:e9:a0:2d:
                    d4:e6:d4:9d:26:28:72:d0:b6:ef:ce:a6:a0:ba:02:
                    c9:db:8d:3c:ed:f7:8f:1f:c4:c8:88:f8:c3:52:16:
                    9c:7b:91:c3:74:a5:53:52:4a:85:19:56:42:d6:3a:
                    c2:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:35:BF:FD:48:D7:64:51:F5:53:D0:14:87:0E:63:52:F1:1A:E0:61
            X509v3 Authority Key Identifier:
                keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:db:6b:cd:8e:c2:70:7b:b8:4b:87:e7:56:1a:57:44:dc:84:
         ee:9c:31:71:8c:a1:9c:9e:3f:f6:a1:e7:e0:7f:bf:bb:94:1a:
         00:d6:f4:c1:60:36:d3:22:ff:f8:79:ea:0d:c6:d1:7e:1b:d7:
         88:97:22:4f:91:ec:fd:e5:87:59:30:98:a7:4f:8c:1f:8e:92:
         d0:e3:d3:7e:39:6a:30:17:1f:0f:ca:ae:07:ed:77:f7:89:0a:
         f2:6c:79:bb:d6:1c:39:2a:71:f7:6e:4c:45:29:f2:38:cb:7a:
         32:bf:0b:b8:70:63:31:eb:6c:b1:88:e6:8b:8d:a4:37:bf:d5:
         70:54:35:63:1e:92:cb:d8:ee:99:a2:c4:52:b5:bc:7b:5e:ad:
         c6:13:43:81:ff:a6:45:ae:f5:0b:0a:b0:e6:99:f9:05:cc:93:
         53:79:09:32:2e:05:e5:a8:f7:25:d5:f2:da:a6:ad:33:af:7b:
         0a:7f:6a:36:78:bf:56:f6:ad:8b:32:f2:df:36:34:0a:f5:db:
         0b:28:27:58:49:ca:78:22:c7:3c:2b:52:64:32:05:76:f1:ce:
         c3:02:01:cb:cf:f7:0a:0e:74:fd:aa:e6:ba:50:db:0c:47:3e:
         b9:7b:89:52:b2:bf:58:60:94:73:ea:46:f2:d1:53:c2:ac:65:
         c1:61:aa:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:20:59 2026 by rpki-client