Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft
File:                     QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json)
Hash identifier:          rH77DkvZkD3lXIIg/EgLK2ikBUazIqTsggsCsgwW1ls=
Subject key identifier:   5F:B1:A1:57:FF:3F:97:70:1D:0E:89:58:8F:B3:D5:24:46:63:59:5E
Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE
Certificate issuer:       /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE
Certificate serial:       0195
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft
Manifest number:          018A
Signing time:             Fri 17 Jul 2026 05:30:50 +0000
Manifest this update:     Fri 17 Jul 2026 05:30:50 +0000
Manifest next update:     Fri 24 Jul 2026 05:30:50 +0000
Files and hashes:         1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: c+oW8BU50++NBE2a8DKcYNgAAn6jIqTGruNFvcrI2Kw=)
                          2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: xbXyHpLgHt9b+54jlb0N3LzfXI2w4v845p/L4pO7oxk=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl
                          rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 05:30:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 405 (0x195)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE
        Validity
            Not Before: Jul 17 05:30:50 2026 GMT
            Not After : Jul 24 05:30:50 2026 GMT
        Subject: CN=6a59be0a-f732
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:5c:dd:d0:9f:8d:14:52:eb:7a:b7:19:61:ca:
                    f3:c9:2f:1b:d4:b7:13:be:9c:27:4a:76:5d:63:b0:
                    bc:14:55:ec:9f:c6:e9:21:fc:dd:09:fe:08:0d:3c:
                    e0:ea:a6:ae:b7:51:f7:4e:74:7c:17:ed:c3:ac:6b:
                    85:c3:6a:02:65:d4:d9:db:bf:50:c6:27:81:e7:5d:
                    d4:75:f9:d3:0f:4f:53:95:ae:81:84:77:84:70:67:
                    d5:c4:13:31:72:d6:66:f3:41:99:fa:dd:40:48:05:
                    f5:57:ed:ed:31:87:94:d1:42:ff:80:e2:aa:96:75:
                    86:e2:2a:c1:0f:7a:60:27:67:0f:c0:b8:0f:cf:43:
                    ab:21:6e:e2:fc:e2:78:11:01:5e:86:7f:91:24:e4:
                    b8:d4:87:f5:83:45:4c:b3:79:43:9d:b9:74:4b:37:
                    c0:2d:1f:a8:8c:59:11:09:aa:d5:72:c7:a3:23:b2:
                    28:9d:d5:7e:fb:35:81:66:d8:84:4a:26:15:5e:c6:
                    65:a2:c9:a8:fe:b7:78:53:bf:6c:1e:61:fe:cd:28:
                    74:14:08:3b:32:16:de:0c:21:89:5d:92:47:b1:95:
                    bb:dc:5e:6c:d6:e2:64:4b:c1:6b:b4:9c:fa:e5:3c:
                    19:2e:05:1b:79:04:82:94:b8:d0:12:a4:25:99:c0:
                    4a:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:B1:A1:57:FF:3F:97:70:1D:0E:89:58:8F:B3:D5:24:46:63:59:5E
            X509v3 Authority Key Identifier:
                keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:0c:a5:25:9f:17:d1:89:e5:f6:e1:49:70:2f:72:ec:97:e8:
         55:85:55:a8:75:2e:49:14:e2:6f:a7:b1:3e:fd:59:db:c1:9b:
         27:fa:94:52:8f:d7:07:18:ac:23:b0:ce:1d:48:2c:8d:b0:31:
         f5:eb:41:51:14:1b:d2:24:e8:43:32:55:1d:db:a3:5f:15:7f:
         4f:df:f5:fd:61:80:74:36:cc:92:db:4f:be:7f:3f:b3:5f:51:
         b6:3a:5e:f4:21:73:a1:b5:ca:2a:26:05:e8:f6:4c:35:f9:6f:
         bc:5c:d2:e0:05:a2:b2:62:1d:f7:74:f6:d3:c9:04:5d:c8:1f:
         c2:f6:ab:82:ca:20:c6:92:26:cf:82:3e:67:7c:92:45:da:68:
         b4:c7:96:1e:08:01:75:31:f2:ad:39:11:9f:0d:d1:df:13:71:
         04:30:d8:62:ac:b6:2b:b5:00:3c:a0:fe:8d:17:5c:99:7f:c3:
         ec:6e:4d:db:9b:4b:49:32:5d:7f:8e:24:9d:e8:47:67:43:58:
         be:0f:41:a9:86:1e:49:f8:b0:3a:a7:a8:59:a2:05:44:e3:e5:
         58:8b:74:31:be:32:02:0c:a2:60:71:b1:19:8d:ac:66:6a:7e:
         32:3c:3c:1b:b9:82:97:ec:25:1b:67:e8:25:80:b4:c7:f9:6d:
         9a:ae:0f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:28 2026 by rpki-client