Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft
File:                     7qiugNcT5rItsOxgkVfwxZpS_X8.mft (raw, json)
Hash identifier:          OfAQodmx8J/9K8oU4EClSW8QPk6f35M8hc72AEtMcSo=
Subject key identifier:   30:BF:A4:4D:E7:91:77:A5:BE:08:AD:DE:CB:39:8B:C2:1D:0E:C5:58
Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F
Certificate issuer:       /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F
Certificate serial:       35DB
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft
Manifest number:          3591
Signing time:             Thu 16 Jul 2026 14:52:03 +0000
Manifest this update:     Thu 16 Jul 2026 14:52:03 +0000
Manifest next update:     Thu 23 Jul 2026 14:52:03 +0000
Files and hashes:         1: 7qiugNcT5rItsOxgkVfwxZpS_X8.crl (hash: 3CM1eX3s+LenQCB8faykWcJcVLEkaRKCz4ZLA1Q1PqU=)
                          2: 6C0C85D0A43011ECA230771BC4F9AE02.roa (hash: W2SBGy0WMlElVPQX0czbiLooxC9uWPTo+MEamMh0ymA=)
                          3: F026CE74927411EDB020A481C4F9AE02.roa (hash: 1AaElHDkTEKXFD2hRezGGSYnw6xWVDkVzFuRAP8Q8Ic=)
                          4: 2ACF9E0C855C11EB8C076013C4F9AE02.roa (hash: RNuWwl4ucRlwsOZtGnFpFuiswJzOcCNas2gxr3gm8mE=)
                          5: 2A73A3403A0711F081048A4EC4F9AE02.roa (hash: dvlRe6H3F8B2GwYIE840UeTvVO5dQ86LFZ7LGPZOm2k=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl
                          rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 14:52:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13787 (0x35db)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918D6B7, serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F
        Validity
            Not Before: Jul 16 14:52:03 2026 GMT
            Not After : Jul 23 14:52:03 2026 GMT
        Subject: CN=6a58f013-f1d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:dd:61:cd:76:1d:1a:cc:80:83:b7:d2:fc:eb:
                    5b:43:ce:0a:c3:15:49:12:2d:6c:06:ec:24:62:3a:
                    a5:b6:1f:71:bf:1d:16:9b:0b:e3:43:58:2b:4f:4f:
                    70:be:61:b8:0a:95:f9:54:18:aa:6f:4b:0e:fe:ea:
                    3e:e9:ac:bb:85:54:df:f5:36:ef:49:0c:1f:e2:42:
                    5a:9e:40:fc:16:24:0c:d4:44:ee:9e:42:c5:71:a5:
                    fb:9a:6d:b5:24:c6:be:a1:69:85:27:a3:dc:fd:f0:
                    82:6f:07:f8:c2:a8:90:bc:08:ba:7c:f6:f9:37:ae:
                    05:6b:62:7b:93:df:ad:76:eb:54:7b:4d:fe:51:c8:
                    48:4c:13:10:83:c5:b8:15:a4:4c:02:1f:a9:e0:f7:
                    52:b5:cf:18:dd:67:3f:42:56:55:2c:7c:88:e5:e0:
                    9e:70:c9:35:18:d4:72:b9:a5:92:db:bd:88:0e:bb:
                    bd:35:46:0a:fc:40:ff:5e:08:37:ff:11:dd:50:a0:
                    6b:f1:49:48:a7:af:52:00:26:42:23:18:d5:58:60:
                    fc:44:4b:df:fb:95:a7:e2:7c:44:b9:e8:18:cd:bc:
                    c0:3c:cf:e9:a5:db:ab:89:14:d2:f6:60:ef:60:a8:
                    93:17:92:32:47:f4:32:e3:94:9e:69:ba:90:c3:ca:
                    cf:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:BF:A4:4D:E7:91:77:A5:BE:08:AD:DE:CB:39:8B:C2:1D:0E:C5:58
            X509v3 Authority Key Identifier:
                keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         ad:c9:b5:c5:0e:05:28:c9:6c:34:c0:ab:05:d8:6c:76:b2:6f:
         5f:c9:ac:1a:b9:18:42:32:6c:e2:34:64:5c:d6:f5:bf:51:ea:
         ca:b0:af:ff:c4:35:21:2a:78:73:e5:2d:60:90:d4:c3:23:e3:
         1d:a5:b2:57:5e:e5:8c:b0:06:01:da:5d:fb:12:5f:33:c8:b6:
         f8:bc:9a:d7:d8:7b:25:f8:72:ac:a2:7c:10:5f:a3:38:4a:c4:
         97:92:d8:f8:e3:be:d3:01:58:7c:fb:a1:75:d8:10:93:5d:c5:
         f6:5e:bb:5b:9d:7b:72:12:64:cf:70:98:3e:71:f5:38:a5:51:
         b0:71:33:59:98:8a:ae:c6:95:08:9d:02:5e:ed:7d:03:1d:a2:
         c8:f1:37:9e:35:a1:bf:31:b5:f6:23:b0:7f:43:e3:a2:3c:23:
         f2:54:68:ea:31:9f:68:60:a1:0b:50:9f:7a:ee:a8:ad:50:a5:
         0b:0e:7c:9d:12:ba:6d:40:79:8c:32:a4:d6:27:ae:59:c6:b1:
         eb:4e:1a:79:ae:a8:86:51:f3:84:40:bb:70:6b:5e:92:cf:90:
         11:52:db:31:b6:f4:28:dd:fe:a9:7d:8b:b7:af:28:01:21:da:
         d7:a5:71:e1:64:09:3f:22:4c:21:ce:5e:0e:7b:1f:06:ba:8b:
         e4:f8:e8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 04:09:04 2026 by rpki-client