Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft
File:                     gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft (raw, json)
Hash identifier:          rq4GnxroFwbcAS+ciP0T2+UAWRLQfcVB6C8BQQRldKw=
Subject key identifier:   AF:88:69:D8:2B:72:83:F5:F1:BF:5E:8A:1A:25:2A:88:BA:DD:FB:F2
Authority key identifier: 81:2F:F0:DE:1C:34:41:46:3C:C9:5C:A8:84:23:BE:5A:10:AD:B1:74
Certificate issuer:       /CN=A914E4E2/serialNumber=812FF0DE1C3441463CC95CA88423BE5A10ADB174
Certificate serial:       73
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft
Manifest number:          71
Signing time:             Fri 17 Jul 2026 09:10:17 +0000
Manifest this update:     Fri 17 Jul 2026 09:10:17 +0000
Manifest next update:     Fri 24 Jul 2026 09:10:17 +0000
Files and hashes:         1: gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl (hash: csEViXeB5oiwduAY+zdLG5gfaDdpkBeON4EoC9XFpXc=)
                          2: 6F81A4F8E64811F09CAB54BE376F56BC.roa (hash: kTGqoANe0FuZnU39X94Ie/hbapSgOp3eh2oaDxbXHwE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl
                          rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:10:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 115 (0x73)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914E4E2, serialNumber=812FF0DE1C3441463CC95CA88423BE5A10ADB174
        Validity
            Not Before: Jul 17 09:10:17 2026 GMT
            Not After : Jul 24 09:10:17 2026 GMT
        Subject: CN=6a59f179-d315
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:49:4f:38:3d:d8:1f:52:86:dc:67:09:c6:2f:
                    38:fd:85:3a:5f:5e:9c:f4:51:50:cb:81:ea:f2:a2:
                    f2:9b:a7:7a:9c:a3:9b:84:50:3d:e3:71:fd:d1:67:
                    52:57:ab:21:40:97:45:05:09:10:8a:75:5a:39:ee:
                    d8:75:77:7c:38:0b:76:e0:e4:b9:92:27:d0:2c:24:
                    22:fb:48:c2:3a:f5:a3:88:00:37:e9:74:d7:45:7e:
                    ef:3e:52:6f:96:e6:1c:92:33:cd:4d:f5:a4:00:d4:
                    2c:d6:cf:8d:3d:1a:39:05:64:f2:e2:6e:3c:64:67:
                    a6:9d:27:c6:25:5b:a3:30:4b:6a:8e:e4:3d:97:9d:
                    d9:09:71:e3:f2:07:3a:04:79:46:5b:7b:d1:a1:f2:
                    7b:fe:2a:46:da:be:fc:66:f3:d9:1e:d9:3f:d2:7c:
                    25:ba:d4:5e:90:b5:82:d3:51:54:e5:1d:40:76:3e:
                    bf:db:7e:6a:50:06:ed:20:52:02:09:47:7b:2c:26:
                    2f:38:46:85:c9:c2:9a:2e:60:99:7f:9e:0c:14:7e:
                    dc:96:61:1a:b9:77:9d:86:f5:1d:c3:72:fa:fe:52:
                    6c:40:39:ae:43:26:dc:8a:6a:b7:b4:a8:fa:66:21:
                    41:81:20:e7:a9:79:b5:41:b3:aa:25:73:a5:5c:d8:
                    00:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:88:69:D8:2B:72:83:F5:F1:BF:5E:8A:1A:25:2A:88:BA:DD:FB:F2
            X509v3 Authority Key Identifier:
                keyid:81:2F:F0:DE:1C:34:41:46:3C:C9:5C:A8:84:23:BE:5A:10:AD:B1:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:cd:16:0f:58:58:89:a7:7a:94:9f:3c:ea:3f:e5:f0:ae:71:
         91:5d:fb:d5:2f:a1:58:1f:f3:e8:d8:94:37:9f:03:06:b4:73:
         44:85:e1:11:f8:13:1c:de:dc:8b:cd:36:ee:24:2a:bd:4e:42:
         0e:6d:65:50:b1:1a:5a:1a:d5:d0:6e:ea:b7:7d:cc:45:f5:8a:
         c1:0b:81:f2:78:5c:01:41:f6:69:bf:7f:16:69:93:9d:60:f4:
         9c:85:6d:93:40:f3:6c:da:0e:48:be:b2:61:3d:85:2b:c1:99:
         a0:cd:5b:34:7d:8b:93:71:2c:b0:14:bd:a8:45:b2:9a:50:b8:
         93:d4:d8:24:62:10:e3:a6:ff:9e:c5:cf:b0:98:04:7e:ba:b7:
         55:bf:ea:54:1b:45:12:6d:39:58:17:02:53:46:fd:3f:b7:18:
         e8:5a:52:70:9f:54:4f:57:9b:42:49:6f:3f:4d:4f:7f:60:ea:
         0c:23:a0:d8:8c:29:3c:31:2e:0b:66:93:2a:cb:18:d1:f3:39:
         e5:09:74:77:28:80:a7:54:51:b6:92:98:7b:7d:80:ac:33:32:
         ea:0f:f2:7c:26:b0:eb:ce:49:12:2c:81:1f:24:0e:84:37:0e:
         55:61:6d:20:9d:3f:d6:e2:30:52:6f:3d:b2:75:bc:fa:ca:12:
         ba:c3:ce:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:33:13 2026 by rpki-client