Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
File:                     hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json)
Hash identifier:          VzH3nL0h13mOaHBOu8iEzGPKtC1UhAQnV2wS6QP4w3M=
Subject key identifier:   41:62:2D:89:D6:96:97:29:87:7C:E8:52:AB:6D:2D:35:95:29:F1:B6
Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3
Certificate issuer:       /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3
Certificate serial:       06AA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
Manifest number:          069C
Signing time:             Wed 08 Jul 2026 23:27:36 +0000
Manifest this update:     Wed 08 Jul 2026 23:27:36 +0000
Manifest next update:     Wed 15 Jul 2026 23:27:36 +0000
Files and hashes:         1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: mJ3SsF2VDpPKeaMig3Lwu8k7FU9Akam6dqWLvMsGJAo=)
                          2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: OANS4UGotbrHDA32WOeuOB3Wn0ea/AxoJh5y6ulR7SQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl
                          rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 15 Jul 2026 23:27:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1706 (0x6aa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3
        Validity
            Not Before: Jul  8 23:27:36 2026 GMT
            Not After : Jul 15 23:27:36 2026 GMT
        Subject: CN=6a4edce8-396f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:8c:06:3c:79:a9:3c:a9:fb:f2:61:b1:9c:21:
                    4a:50:0f:5c:7f:cb:27:93:ba:9e:0e:bc:82:49:c0:
                    f4:db:d4:44:56:00:89:85:53:e8:c9:55:4b:91:d1:
                    17:8f:f4:58:cd:cf:e3:0c:e8:ee:ec:2f:d0:19:04:
                    70:ac:a9:93:e8:28:41:4b:51:05:6f:66:27:cb:c3:
                    d3:ef:3d:64:f7:1b:87:97:0c:db:c0:ff:b2:f0:77:
                    2c:25:45:2c:7e:87:89:04:37:12:4b:b1:ad:2a:e9:
                    92:82:ff:2e:33:41:34:08:04:46:d8:1d:08:43:e0:
                    08:af:ba:b0:5d:0f:b2:81:b7:59:a4:31:01:39:11:
                    2f:63:93:27:99:27:00:ea:69:dd:27:c1:8c:db:4f:
                    84:86:7b:13:4b:20:df:12:ac:a1:0d:f3:e7:f4:47:
                    5a:c7:59:46:e8:f1:3c:c4:a3:c6:78:aa:50:79:1e:
                    fc:69:b1:4b:34:db:fb:9c:15:6e:94:a3:66:b6:9f:
                    b2:23:7b:a6:66:3a:b9:6f:69:c4:09:7c:e4:87:ec:
                    29:41:64:62:9f:ba:08:93:5e:cc:72:61:94:37:5d:
                    e0:ff:fc:b5:8e:d0:93:e7:bc:03:0d:09:cb:44:c3:
                    fe:b9:69:f0:bf:84:e6:70:37:a1:9c:c8:75:15:3d:
                    ec:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:62:2D:89:D6:96:97:29:87:7C:E8:52:AB:6D:2D:35:95:29:F1:B6
            X509v3 Authority Key Identifier:
                keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:8e:25:2e:f9:8c:12:23:8f:4f:34:98:6d:d2:f6:d6:90:11:
         55:7c:ce:e2:5a:a8:8f:bd:7a:87:8c:ec:5e:65:8b:e5:8a:c6:
         84:6d:6c:e8:32:14:a5:dd:92:9f:e8:72:ad:f3:16:03:1c:11:
         2d:fa:b8:a8:3b:32:6e:d7:fd:c6:ec:cd:44:b6:25:68:3f:d4:
         f4:80:a2:9a:30:f8:51:0b:6a:75:5e:06:0a:48:e6:5b:aa:8c:
         20:66:fc:20:bd:89:da:a5:6d:be:45:0c:9d:9c:bf:c8:9a:22:
         28:76:95:78:17:76:48:3d:f0:28:3f:99:72:f0:20:f7:bd:c2:
         c1:00:ce:88:83:15:5d:09:46:34:4e:11:8a:81:43:3b:11:cb:
         6c:95:1d:e8:d6:00:7c:b7:ee:f6:47:47:0a:13:1c:41:00:40:
         4a:bc:a7:aa:c6:13:00:3d:d9:03:b6:80:1f:8d:4b:6d:b9:5b:
         28:01:d7:ac:a7:d2:46:c4:de:ca:18:4f:85:c8:b6:8b:8d:57:
         56:0e:54:ee:21:d5:24:51:4e:6b:23:22:de:ef:f8:dc:24:91:
         2c:b7:4f:af:70:42:00:17:07:60:a9:5d:44:eb:fc:1e:5e:eb:
         73:20:ff:54:3d:1e:c5:b2:66:bd:dc:6e:93:a5:57:02:cd:24:
         22:20:75:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 21:02:27 2026 by rpki-client