Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft
File:                     gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft (raw, json)
Hash identifier:          YT/G9jjYpOvdgfv9E7L+L6+CwV4At+opg2GSEOGl5Oo=
Subject key identifier:   3F:35:7B:1B:F9:E8:26:12:D2:D8:DD:9D:F9:8B:A1:92:5B:0B:17:3B
Authority key identifier: 81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC
Certificate issuer:       /CN=A916C6A1/serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC
Certificate serial:       065F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft
Manifest number:          0658
Signing time:             Sat 04 Jul 2026 22:55:42 +0000
Manifest this update:     Sat 04 Jul 2026 22:55:42 +0000
Manifest next update:     Sat 11 Jul 2026 22:55:42 +0000
Files and hashes:         1: gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl (hash: GsgwFUtXrw/qj4VRozjcv7hFvaE6TvmY4ipYRM+eAcM=)
                          2: 72AA1A38D7CB11EBB8307453C4F9AE02.roa (hash: DDeOwgkbA0UI6xjgPxzZ3oYBKe32+mUH/ZyiIdjv62A=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl
                          rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 11 Jul 2026 22:55:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1631 (0x65f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916C6A1, serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC
        Validity
            Not Before: Jul  4 22:55:42 2026 GMT
            Not After : Jul 11 22:55:42 2026 GMT
        Subject: CN=6a498f6e-1e31
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:df:32:12:11:b8:bf:a2:d8:0e:b0:5a:87:48:
                    98:ab:03:a6:7e:db:c4:e4:0b:7b:cf:f8:aa:c0:d2:
                    5f:a9:2a:0f:fd:07:da:7b:cd:a8:09:38:d4:0c:70:
                    6a:f9:49:1a:ec:53:a2:5e:bf:1d:0d:51:b6:5b:70:
                    cc:24:f3:eb:e9:c6:85:20:cc:5d:2e:45:f9:8b:5c:
                    63:9e:52:c6:d1:0f:48:54:2f:31:75:35:42:05:34:
                    ef:4a:f7:60:98:84:2d:5c:84:bb:4f:f5:1d:fe:81:
                    00:10:4a:c7:b8:ba:de:a2:31:26:79:19:df:a0:1e:
                    93:b2:94:19:ff:ee:66:0c:d5:52:d0:c9:7a:63:1d:
                    5f:d6:6b:d3:47:e2:b2:f0:ed:96:47:79:d0:79:84:
                    e9:9b:92:2c:36:65:66:5c:4d:7a:1c:1f:c3:04:17:
                    14:36:f1:99:e7:0b:d8:3c:b6:2b:ec:a1:1c:14:18:
                    1a:c5:54:c4:92:47:c6:38:9f:dd:0b:c9:0f:81:1b:
                    8e:74:07:5e:b6:79:e1:d4:27:66:f1:bf:40:ef:b9:
                    49:c9:b6:02:20:f5:c0:10:5b:6f:cd:24:b0:16:b1:
                    8d:30:d3:92:3f:d3:79:0d:3e:44:c3:ae:85:2a:02:
                    16:3f:5b:a8:85:a5:27:02:f0:ae:33:c6:08:3a:de:
                    c0:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:35:7B:1B:F9:E8:26:12:D2:D8:DD:9D:F9:8B:A1:92:5B:0B:17:3B
            X509v3 Authority Key Identifier:
                keyid:81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:50:6d:8a:58:60:7a:f1:6a:cf:9d:c5:1b:aa:69:28:0c:99:
         80:fb:15:9f:b2:40:e7:0d:9d:35:74:88:e8:19:09:b2:47:0b:
         ab:f0:88:86:b9:84:e4:b6:f3:44:4c:f4:5c:c2:69:d8:70:a4:
         f3:8c:f7:22:bf:aa:85:e3:3b:d1:2f:06:4f:bb:88:88:06:02:
         2a:6f:7d:3e:b5:4e:f9:a3:3a:03:d7:c3:c9:fd:7f:b3:bc:df:
         ef:bf:86:8f:b1:4a:e5:7e:af:79:fd:7c:c3:cc:e6:fb:58:a3:
         33:ea:b3:cb:93:bc:9a:46:ff:a2:bd:06:ea:8e:09:06:6e:9d:
         8a:f1:18:e6:e0:f1:3a:bf:0c:70:cd:7a:03:ea:52:4f:24:8c:
         15:83:b4:3c:64:9d:2e:c9:15:13:d6:0a:8e:12:9f:f0:fc:b0:
         36:b8:cd:f5:c5:ca:fb:6f:1d:35:34:14:9e:29:d7:96:09:97:
         4b:ce:06:9a:4f:a9:62:c8:a1:e3:3d:53:06:ac:e2:26:66:ba:
         51:3b:26:fc:70:0b:74:0a:d4:a5:14:fa:11:a1:86:0a:0c:0f:
         ae:26:aa:87:7d:49:dd:9e:32:02:98:22:f7:70:5d:c2:de:57:
         df:ca:62:a3:84:ea:d5:d0:87:e7:30:4c:1f:01:2f:68:77:dd:
         bd:cf:5c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 08:44:49 2026 by rpki-client