Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
File:                     HhI4RWNx50SJRiLpisHuVbQUXhA.mft (raw, json)
Hash identifier:          1+uUvTnO8NAHy1C8nkiI6CS+veyKwYeTo1hf7nh9hV8=
Subject key identifier:   0B:93:DE:18:A1:C9:E9:7C:97:91:6D:EF:FE:E7:8A:9F:30:F7:E7:3C
Authority key identifier: 1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10
Certificate issuer:       /CN=A917E678/serialNumber=1E1238456371E744894622E98AC1EE55B4145E10
Certificate serial:       166B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
Manifest number:          1607
Signing time:             Thu 16 Jul 2026 16:51:32 +0000
Manifest this update:     Thu 16 Jul 2026 16:51:32 +0000
Manifest next update:     Thu 23 Jul 2026 16:51:32 +0000
Files and hashes:         1: HhI4RWNx50SJRiLpisHuVbQUXhA.crl (hash: ePc7gUuTfluun2F/Ft529x2Xj2R82K9prLULwdFhfEg=)
                          2: 0BFFC86E3FC211F18966A53AC7833773.roa (hash: W+YOe6hixH3mn1KveOHweplDujCY7TsXxGCoVqjHzBw=)
                          3: C9203DF43D5E11F19F1D0B4EAB833773.roa (hash: XDwfROgd1ZtjfdIwOFfoGM4YTt8Y2gmNeYFWy0g2/3I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl
                          rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:51:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5739 (0x166b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917E678, serialNumber=1E1238456371E744894622E98AC1EE55B4145E10
        Validity
            Not Before: Jul 16 16:51:32 2026 GMT
            Not After : Jul 23 16:51:32 2026 GMT
        Subject: CN=6a590c14-1e54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:7d:8d:15:1b:49:37:bc:ad:83:42:15:db:98:
                    28:c3:76:47:23:29:3b:28:21:d8:ee:96:60:c5:de:
                    da:da:2d:95:cf:e3:42:1c:80:98:23:60:1d:7e:0b:
                    30:d7:4d:b7:34:05:84:57:1b:fe:b3:70:1f:88:fc:
                    9f:88:92:5f:70:88:9b:49:71:8b:c1:d9:a0:f4:55:
                    a3:81:fa:f1:07:d3:7c:25:cf:95:f8:b4:2f:78:8a:
                    49:74:4d:35:88:1b:a7:bb:f4:33:5c:9c:2c:a6:b6:
                    f9:c3:20:03:b3:3f:52:f8:6f:80:a4:e2:fa:ec:df:
                    a8:64:a2:f2:9c:c5:bf:38:86:56:7c:d1:98:ca:6f:
                    04:12:69:d8:0a:3b:9a:f8:3d:b7:4e:34:dc:92:25:
                    33:dd:41:c3:62:c2:9e:ed:4e:90:5f:ee:52:ef:cd:
                    d6:13:bb:af:64:b4:ba:b1:85:6c:d7:59:e1:36:a3:
                    99:24:de:3c:9c:06:59:5f:d2:a0:ad:d1:ff:d0:43:
                    b7:c6:ee:42:9a:7a:29:00:dd:8f:8d:7e:34:fa:af:
                    cc:2e:92:d4:f8:50:fe:b6:a3:0f:bb:9c:69:0a:0a:
                    dd:ee:57:0e:bb:57:f0:aa:96:34:9c:8a:7b:11:79:
                    1f:30:8f:fe:b2:ab:b0:2d:eb:04:7a:c2:01:34:65:
                    ad:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:93:DE:18:A1:C9:E9:7C:97:91:6D:EF:FE:E7:8A:9F:30:F7:E7:3C
            X509v3 Authority Key Identifier:
                keyid:1E:12:38:45:63:71:E7:44:89:46:22:E9:8A:C1:EE:55:B4:14:5E:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HhI4RWNx50SJRiLpisHuVbQUXhA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/697E356A695711E8A42BE680C4F9AE02/HhI4RWNx50SJRiLpisHuVbQUXhA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:24:2d:e2:7d:02:37:61:24:33:3f:21:da:8f:cf:32:af:c9:
         f0:c0:c8:8f:4d:f0:3c:6d:0a:1c:c4:d6:fc:cb:2e:88:41:1e:
         a0:92:2e:5d:ab:7f:d3:aa:e3:18:fb:71:ea:0c:09:48:8e:99:
         26:c2:e1:20:9f:16:9c:5d:c7:50:42:3c:0a:cf:fd:26:e8:2c:
         c3:7b:ce:6b:5a:68:1a:2a:8c:7b:91:ef:47:0f:28:c3:e9:97:
         4f:85:56:88:a2:9f:8f:d0:32:52:da:99:39:a5:47:70:cd:d3:
         60:78:bb:fe:22:72:b9:66:c3:d3:7f:d9:d4:6a:bd:df:2c:47:
         e8:11:a1:06:fa:58:b5:73:9d:51:69:60:07:74:1b:2f:59:7c:
         88:34:d1:5a:03:2e:d2:ac:c2:77:57:f0:51:1b:4c:02:cc:73:
         e5:dd:d3:d7:c6:4c:5f:4e:7b:5e:2c:87:7b:f4:4b:82:74:2b:
         03:e0:af:d0:2a:2c:06:42:ed:e5:12:c2:c3:82:1a:94:4f:16:
         12:a0:27:07:03:ed:6b:af:ff:17:4c:01:d4:f4:e2:43:b5:4f:
         f2:61:51:32:be:ee:c7:0e:eb:9f:cc:c6:e4:b4:2b:f5:91:49:
         89:17:cf:1c:fb:d4:32:fc:fb:d4:6e:50:23:61:e3:e0:3a:9d:
         b7:f9:69:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:32:06 2026 by rpki-client