Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft
File:                     QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json)
Hash identifier:          nuwT7np+RAwrghYTfIRtB9CXFKEQ7CyVbIa5az2c44Y=
Subject key identifier:   FA:35:92:89:00:ED:2F:81:94:B0:4A:FE:36:49:D5:58:63:C9:E7:60
Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61
Certificate issuer:       /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361
Certificate serial:       10A9
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft
Manifest number:          2796
Signing time:             Thu 16 Jul 2026 16:40:41 +0000
Manifest this update:     Thu 16 Jul 2026 16:40:41 +0000
Manifest next update:     Thu 23 Jul 2026 16:40:41 +0000
Files and hashes:         1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: zqlxyXunRR4xf/z4nZT+5MDQ+b4RctjuU+cVYmg2rdo=)
                          2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: 9GKBxAqwPTAO+hWMiV5oav3VDxVKz2FMAbeDwl8q3ik=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl
                          rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:40:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4265 (0x10a9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361
        Validity
            Not Before: Jul 16 16:40:41 2026 GMT
            Not After : Jul 23 16:40:41 2026 GMT
        Subject: CN=6a590989-ade9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:4f:30:c4:ab:a9:b2:e5:82:2b:af:cc:90:cd:
                    2a:67:d7:a4:b0:b7:f8:6b:6c:ed:4e:fc:1a:cb:01:
                    7b:b9:9a:2a:91:37:87:89:8e:fb:0c:ea:c9:db:c4:
                    f8:7e:29:8a:08:27:a0:8b:6b:77:02:a3:0d:ff:a2:
                    42:4c:46:95:35:46:aa:fc:d4:65:10:e6:75:4d:bd:
                    17:a0:a1:47:6e:15:df:46:f0:78:77:59:59:2c:a4:
                    f5:7d:1e:87:91:5b:6e:1e:36:42:65:5b:17:13:df:
                    6d:e4:f6:31:50:9c:9f:8b:32:b4:2e:fb:50:79:05:
                    cd:e7:01:b4:bb:ac:ca:77:05:1c:94:9f:ea:0a:34:
                    6b:98:d8:ab:08:97:06:fe:9c:93:59:e3:11:3a:08:
                    da:7b:3c:c3:46:78:ff:14:d4:6b:04:1b:f5:32:46:
                    26:99:45:ec:2b:79:8c:f3:01:0e:f1:56:fe:15:88:
                    61:da:77:74:c6:ad:75:5d:f3:43:c8:bc:22:cb:e7:
                    4c:96:c0:15:65:64:4e:33:a1:ee:63:9b:5d:a0:00:
                    3a:7e:51:42:c2:28:35:23:90:a0:08:f8:13:55:ad:
                    66:74:c2:17:40:d7:8e:1e:51:24:27:88:a4:3f:20:
                    cf:06:b5:b9:86:3f:fc:6f:36:c1:b2:7f:8d:f0:76:
                    d4:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:35:92:89:00:ED:2F:81:94:B0:4A:FE:36:49:D5:58:63:C9:E7:60
            X509v3 Authority Key Identifier:
                keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         d8:5f:44:94:b5:25:22:c7:dc:f5:ac:18:e1:54:20:16:f5:36:
         fb:66:21:7d:8e:c2:c1:e3:6c:a0:67:d2:f5:56:78:27:f8:00:
         35:72:cf:bc:f2:30:36:c3:8c:54:7a:1c:6a:e1:02:f8:a0:2a:
         fa:7d:fb:6d:ad:36:5a:9a:8f:ce:0e:6a:51:1a:79:fd:44:18:
         14:c1:e3:0c:d1:92:da:0e:44:35:1c:73:33:f6:e2:10:0a:6c:
         1d:ad:6d:b2:f6:92:6f:84:36:31:07:c8:a3:6b:03:ba:59:10:
         a8:72:95:a7:d8:fa:d4:b1:c8:a3:35:45:43:b0:cf:92:ab:57:
         b3:ed:c4:87:04:74:03:6e:72:dd:63:bb:f6:27:e0:5a:a5:94:
         80:2e:ba:42:98:7a:60:57:9e:a0:57:f6:b2:b0:ee:86:98:ef:
         f0:31:e4:30:8f:6f:93:34:23:95:43:9f:45:08:35:45:83:8c:
         ee:07:18:58:0d:80:81:28:5f:40:71:79:4a:df:29:18:aa:1e:
         3f:63:97:c2:6a:1a:74:de:2a:33:a9:81:8b:7b:ba:7c:7d:99:
         b4:e8:d9:f0:7a:19:8f:5e:f7:02:f0:15:d4:37:59:02:16:19:
         00:77:89:0c:49:19:76:ab:0e:eb:23:a5:a6:e9:c4:2b:ac:6c:
         ba:22:26:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:55 2026 by rpki-client