Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
File:                     chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json)
Hash identifier:          D5i2Xf/TXPVj4EcBP9DxXTV4gsjhIqybx/XfCd+1cHc=
Subject key identifier:   53:CA:F1:4A:FD:C5:D7:4B:BF:0D:EE:45:4F:ED:C4:8D:92:A6:9E:40
Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A
Certificate issuer:       /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A
Certificate serial:       0270
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
Manifest number:          026A
Signing time:             Fri 17 Jul 2026 02:57:12 +0000
Manifest this update:     Fri 17 Jul 2026 02:57:11 +0000
Manifest next update:     Fri 24 Jul 2026 02:57:11 +0000
Files and hashes:         1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: qiK4r48t5TL+p5yua6qgF/OqKXGS9XaIBWu6o1WBwBQ=)
                          2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: XRam2F4FC1VRB1bzeJbTRlXhvSOCTuW1Ti0TuLeUucE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl
                          rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 02:57:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 624 (0x270)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A
        Validity
            Not Before: Jul 17 02:57:11 2026 GMT
            Not After : Jul 24 02:57:11 2026 GMT
        Subject: CN=6a599a08-299e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:9f:43:72:71:93:33:2c:bb:c6:13:a7:ed:3c:
                    01:8f:ae:9f:85:b9:9a:17:13:ab:c0:f6:5b:b7:f3:
                    56:6e:e7:7c:42:ec:70:6a:43:8a:5b:a9:ff:24:8b:
                    5d:80:76:0b:a0:97:67:38:62:7d:da:f3:cd:bd:71:
                    7b:2a:15:7d:45:e9:6f:6c:36:4d:23:86:a2:16:f4:
                    e3:94:88:04:f7:93:99:6e:58:0e:d0:56:cb:29:6e:
                    dc:4f:a8:54:6d:3a:ac:45:c9:7f:08:dc:fc:63:8f:
                    8c:e6:39:7d:81:e4:54:c5:8c:6f:24:ec:e6:29:4d:
                    19:ca:f7:27:12:3f:57:8a:b9:ff:6f:c3:ce:9c:cd:
                    f5:62:d4:3a:a7:e8:fd:b4:fd:54:a0:b8:d3:c9:88:
                    74:16:64:fa:de:55:e9:e6:41:d0:5b:b2:ea:ca:fd:
                    f8:37:c7:2a:93:c1:02:2c:ea:7f:dc:81:04:e2:0d:
                    dc:7d:80:e9:fd:dd:63:41:b6:79:3a:ab:b4:07:a7:
                    63:0d:58:3c:55:b7:ba:6f:21:b6:c3:e2:c1:3b:f4:
                    f8:8e:30:31:d2:fc:f5:08:7d:24:b3:ac:f5:c3:c4:
                    66:83:aa:8c:57:dc:cb:f4:6f:09:82:cc:7d:30:51:
                    fd:e2:82:88:11:68:3b:b4:b9:c5:45:54:9f:7f:1c:
                    bc:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:CA:F1:4A:FD:C5:D7:4B:BF:0D:EE:45:4F:ED:C4:8D:92:A6:9E:40
            X509v3 Authority Key Identifier:
                keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:a2:f9:be:bb:d7:cf:1f:f8:77:e4:ce:bf:34:68:09:65:4c:
         21:0b:15:f8:58:6a:93:d7:3c:64:33:84:46:35:e3:03:33:3e:
         f9:31:d6:3f:22:c4:41:7f:7a:d5:8a:f1:ee:d0:2e:09:7e:a5:
         f1:11:7c:d9:e7:77:cd:76:7a:0e:d8:07:f0:31:db:e9:30:cc:
         c3:5a:32:10:7d:ae:84:46:6c:3f:38:e3:0c:bc:fb:a1:ba:fc:
         91:7d:0d:47:07:88:c3:68:7a:af:f3:96:fc:32:98:85:2a:2a:
         15:64:e3:6b:73:95:aa:cc:88:4e:11:b7:b9:e5:9c:bb:52:9b:
         9f:3b:b7:6d:19:32:60:59:d7:99:ce:78:23:d6:b1:56:ed:28:
         3c:08:bc:23:56:30:42:81:4f:b1:3c:4b:dc:c2:e7:1f:e8:e8:
         05:1d:7f:db:40:98:5c:f0:69:e2:f2:86:39:f4:41:6a:1d:de:
         6c:af:1c:1e:d7:28:eb:ad:23:83:61:22:4a:fd:7c:58:11:0b:
         97:1f:06:7f:ed:b9:46:8d:79:e3:31:6c:41:d4:37:4f:5e:58:
         9d:f6:15:01:36:ed:17:89:43:33:8a:c3:5a:fc:24:97:0f:c5:
         58:70:70:dd:a3:0f:21:47:68:95:6d:43:b9:df:33:2f:ac:44:
         a4:f4:88:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:21:19 2026 by rpki-client