Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
File:                     RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json)
Hash identifier:          aE1nGnk6TysES1Q4Y3Coyw7Pj4pAo85bP7mcOpFdTZo=
Subject key identifier:   AD:98:7C:10:A9:1F:68:83:4B:3C:D4:49:04:62:A9:EE:22:B1:B8:E5
Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
Certificate issuer:       /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D
Certificate serial:       0161
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
Manifest number:          0150
Signing time:             Fri 17 Jul 2026 06:19:31 +0000
Manifest this update:     Fri 17 Jul 2026 06:19:30 +0000
Manifest next update:     Fri 24 Jul 2026 06:19:30 +0000
Files and hashes:         1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: +GBm40wRXZHpUkQrIBL9G0mGncQo2jGPSvTaanFEn3w=)
                          2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: IeI+N9Kyix7ZqzuViV7i74fTiEZyIK3quTRpR9SQXk0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl
                          rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:19:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 353 (0x161)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D
        Validity
            Not Before: Jul 17 06:19:30 2026 GMT
            Not After : Jul 24 06:19:30 2026 GMT
        Subject: CN=6a59c973-d1c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:60:3f:97:ba:59:4d:ed:e4:06:5e:ce:a3:55:
                    0b:68:a8:0e:fb:b6:db:02:08:9d:f0:b0:12:21:07:
                    ae:02:41:f1:2a:b4:39:e5:a4:d6:12:d5:8c:88:81:
                    b8:f1:1e:26:1c:53:e9:f2:a8:b8:b5:24:ce:e5:46:
                    07:18:60:7a:a0:71:29:6e:24:7f:c1:6e:89:33:17:
                    f2:3e:79:ae:ff:98:c8:26:29:a5:4c:d2:fc:f8:9d:
                    7e:c2:d7:d6:2f:09:01:09:2c:a4:33:ad:83:a3:b6:
                    75:bd:6b:f6:e9:56:99:31:3c:bd:63:58:52:13:49:
                    bd:3a:eb:a2:86:7b:ae:77:68:28:99:96:7f:10:e8:
                    cc:72:33:4d:b2:50:ca:b6:fe:96:cc:ad:49:a9:98:
                    d1:d1:9e:f6:bc:8b:2d:79:2a:84:d9:9f:04:03:21:
                    c3:7f:ca:ec:13:2e:15:e5:af:85:89:1f:aa:f4:27:
                    9c:57:e2:a9:7c:8b:5d:58:a9:ec:4e:1b:cc:94:60:
                    f3:b8:9c:86:45:48:63:09:ad:b4:c7:2d:c3:d6:63:
                    90:1f:17:06:08:e4:43:ff:b2:d9:90:d1:22:b0:7b:
                    fd:52:cb:21:72:98:5d:dd:b8:e1:9b:7b:85:7d:a1:
                    08:15:ff:e7:26:3f:8c:ad:fc:a6:69:61:b1:a8:58:
                    73:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:98:7C:10:A9:1F:68:83:4B:3C:D4:49:04:62:A9:EE:22:B1:B8:E5
            X509v3 Authority Key Identifier:
                keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:76:1d:4e:64:9e:ae:1c:62:aa:9a:ee:0e:a6:eb:f2:5e:77:
         67:d4:d1:73:40:07:ea:1b:12:4f:83:a9:5c:64:9c:ef:f6:c1:
         98:b6:09:cd:5f:97:a6:10:12:7e:55:9a:94:5f:d4:c1:56:00:
         f1:01:6f:ef:44:85:cc:de:37:fe:ab:ea:14:b8:1b:07:d3:fc:
         24:95:61:b4:ac:68:b7:94:67:34:cf:c9:6d:86:7e:9c:ef:03:
         01:2a:1f:1e:e6:f0:1c:18:3b:11:7a:5f:00:5b:88:33:c9:7b:
         24:e5:29:2b:7d:e5:53:10:dc:bf:d9:be:75:33:8a:10:7c:28:
         8b:da:37:3f:85:70:31:6c:01:9e:c6:ea:6b:ee:d0:02:bd:df:
         8d:3f:b6:43:51:1d:d8:d1:7d:45:bc:54:b1:61:de:13:38:59:
         17:4d:f3:6c:6a:2e:64:56:f2:b5:4a:cf:51:e4:c9:9d:8c:be:
         dd:2d:58:a8:c4:c0:55:11:c3:2f:13:6b:dc:58:57:e1:d5:5e:
         93:cf:37:92:db:8d:90:9e:f4:3e:5c:06:10:d3:28:09:dc:89:
         bf:eb:9a:cf:89:6d:ed:5d:4a:c2:22:ca:10:49:95:e4:8f:6c:
         cb:f3:0b:b7:91:da:b8:d9:73:a0:76:7a:b6:0e:05:84:de:d3:
         1d:89:5a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:14 2026 by rpki-client