Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft
File:                     hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json)
Hash identifier:          YeIeTYm4I9gEZhxrJm1WrzBZ8QwEd7OEWZlAxub+PqI=
Subject key identifier:   51:F8:AC:05:A7:25:51:19:1C:73:A3:CD:06:07:16:96:DE:3F:40:47
Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07
Certificate issuer:       /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07
Certificate serial:       0123
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft
Manifest number:          011F
Signing time:             Fri 17 Jul 2026 06:57:14 +0000
Manifest this update:     Fri 17 Jul 2026 06:57:14 +0000
Manifest next update:     Fri 24 Jul 2026 06:57:14 +0000
Files and hashes:         1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: +lPF53uYAJKUTOEd32P9r/snqAV8u25mYC17Kfj2ccs=)
                          2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: xCTb7m70C8ktIRA0Y3XISp4G4lVWQ5RasqzMmTsyIbM=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl
                          rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:57:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 291 (0x123)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07
        Validity
            Not Before: Jul 17 06:57:14 2026 GMT
            Not After : Jul 24 06:57:14 2026 GMT
        Subject: CN=6a59d24a-346a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:9b:66:f1:f1:09:ca:93:4c:84:62:29:e1:7c:
                    a5:dc:4a:4d:12:7f:4a:2a:4c:ca:72:f7:1f:97:e4:
                    d8:70:26:cb:9b:a7:b8:58:b6:97:38:99:45:5b:05:
                    1d:26:e0:74:a4:2a:03:93:37:53:d8:1f:7f:e5:29:
                    4c:51:66:44:75:f9:40:bd:c4:04:9c:29:9b:9f:b7:
                    3e:b2:fd:e3:87:e3:8a:c2:2c:e5:c7:69:4d:f2:3c:
                    21:22:45:a4:27:38:8c:3b:47:6a:c1:4a:71:f7:9d:
                    8e:be:24:8c:4e:e1:8d:1e:84:02:4b:73:88:9c:98:
                    44:34:13:2b:a9:ba:a9:17:7d:41:57:d0:8d:6b:6d:
                    04:a1:ca:43:9f:cc:56:1d:40:f5:bc:73:47:db:20:
                    28:fb:ee:d3:96:2f:a5:3e:fe:9c:a5:18:24:b2:d3:
                    d3:90:75:fd:00:f9:fb:9e:fd:c6:de:87:dc:95:ec:
                    ab:2a:74:f3:e8:56:a5:45:31:70:68:a9:f7:c5:e4:
                    cd:ab:ee:16:de:20:b4:16:b6:84:e4:79:0b:5c:e8:
                    fb:bf:13:ef:44:d5:11:b0:ee:ef:b2:e0:63:af:59:
                    30:d6:69:c1:d2:8b:9b:00:5f:14:b4:9f:80:cd:6e:
                    f2:e4:86:fb:23:b5:da:74:1e:0f:28:b0:6b:c9:40:
                    16:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:F8:AC:05:A7:25:51:19:1C:73:A3:CD:06:07:16:96:DE:3F:40:47
            X509v3 Authority Key Identifier:
                keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:35:ae:51:ed:83:0c:f0:20:5e:ad:5b:c4:da:a5:4f:84:eb:
         b8:99:82:a3:2b:e7:e7:f6:7b:5d:e3:80:a0:aa:b1:17:5c:5f:
         ee:a0:5a:f9:c5:70:e3:43:31:77:98:8c:63:73:dd:46:1a:14:
         4f:1f:d6:6f:d2:a7:07:b2:a2:46:ac:75:b8:6c:a8:dd:75:d8:
         ac:ff:57:b0:07:25:0f:ab:86:4e:d4:2b:d2:e2:7a:ea:c5:2d:
         15:c2:85:bb:fd:00:b0:5b:51:db:e3:6b:9b:67:8b:11:80:8c:
         af:80:69:8e:55:c5:ac:3e:1f:ce:7a:37:d8:f0:cc:e2:5b:b8:
         9d:19:b1:1d:8f:08:8f:a2:a9:e3:2d:7f:40:c8:f2:74:df:22:
         78:14:0b:ad:a0:10:dd:e5:d5:e9:81:a5:93:5b:09:fb:ab:75:
         73:10:b1:74:ff:3c:fe:44:58:bd:87:b0:2a:69:46:6b:ac:91:
         65:9b:84:08:d4:1c:e1:df:76:95:ca:98:5a:7d:4a:c0:98:fa:
         09:59:24:cf:d6:af:d6:6e:8f:d9:fe:f2:fb:3b:cf:f6:ad:21:
         af:5b:8b:49:90:34:43:94:23:d3:ad:32:ed:6f:ee:c0:44:84:
         70:7b:e5:db:64:34:f8:e9:07:91:0a:0b:8a:12:a0:88:4b:ee:
         98:97:e1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:22:37 2026 by rpki-client