Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft
File:                     GEMtUeYt2nKdH_G-G4H79VvYs0c.mft (raw, json)
Hash identifier:          Kk2q+sELfmcvO/8/6FKDLFduSqMuPQCi/TDibtc6PWs=
Subject key identifier:   E2:63:B1:62:70:19:62:A2:1B:C9:CD:FC:24:90:8F:36:E1:CF:81:D7
Authority key identifier: 18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47
Certificate issuer:       /CN=A91AB1C2/serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347
Certificate serial:       74
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft
Manifest number:          71
Signing time:             Fri 17 Jul 2026 09:11:30 +0000
Manifest this update:     Fri 17 Jul 2026 09:11:30 +0000
Manifest next update:     Fri 24 Jul 2026 09:11:30 +0000
Files and hashes:         1: GEMtUeYt2nKdH_G-G4H79VvYs0c.crl (hash: WxhEhyQtf1lswtmcZvhxHab4ckHyfSbNniBSwoG3Y2s=)
                          2: D4578CBCE0F811F0841404A85E6F56BC.roa (hash: kVIQF28+VXWQvXZxpxDtZOt5V7kSBnZhEpXWdQv6LfU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl
                          rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 09:11:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 116 (0x74)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91AB1C2, serialNumber=18432D51E62DDA729D1FF1BE1B81FBF55BD8B347
        Validity
            Not Before: Jul 17 09:11:30 2026 GMT
            Not After : Jul 24 09:11:30 2026 GMT
        Subject: CN=6a59f1c2-468e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:b5:a1:54:b3:34:e5:da:b3:f4:bd:aa:bb:4d:
                    40:72:a5:18:3c:f5:79:fe:58:a8:36:5c:cc:42:3b:
                    27:3c:59:07:ee:bb:8d:e7:16:59:c8:12:76:22:ad:
                    f1:bf:18:a8:61:9e:ce:8c:78:20:a0:41:cf:3c:66:
                    be:76:7a:60:08:92:e9:58:58:84:a1:0f:94:6e:a6:
                    c5:67:16:d5:8f:e4:94:91:f6:71:e7:df:ed:45:06:
                    1e:10:4f:ff:1e:48:8e:c5:0b:d6:2f:43:cf:35:9a:
                    db:57:79:e8:dc:a9:3a:df:1d:f9:97:ae:1f:9c:fd:
                    5e:8b:ef:6e:b4:c7:3e:30:b4:01:c3:73:4f:ab:69:
                    56:03:9c:31:3e:c5:c7:4c:b6:bd:54:f6:55:a5:d9:
                    7d:b9:d6:d0:e1:3a:07:00:cd:b6:bd:d7:03:09:27:
                    2d:c7:27:72:37:f8:2b:42:d8:0a:02:49:dc:a1:00:
                    d3:f2:60:69:8a:87:0c:b3:40:07:fd:83:3a:90:0f:
                    2d:9b:24:1b:4e:6f:c2:95:70:4e:9d:d7:c9:15:a3:
                    99:b6:4b:25:b5:1f:01:37:8a:95:d5:a8:8b:70:63:
                    8e:0e:98:34:fc:b4:bb:ac:30:94:f6:e2:7b:43:52:
                    2e:53:b2:c0:03:61:08:e9:fb:b5:e1:39:76:64:64:
                    cc:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:63:B1:62:70:19:62:A2:1B:C9:CD:FC:24:90:8F:36:E1:CF:81:D7
            X509v3 Authority Key Identifier:
                keyid:18:43:2D:51:E6:2D:DA:72:9D:1F:F1:BE:1B:81:FB:F5:5B:D8:B3:47

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GEMtUeYt2nKdH_G-G4H79VvYs0c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/059F7CBCDCA311F085D6F15B436F56BC/GEMtUeYt2nKdH_G-G4H79VvYs0c.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:83:a8:8a:f1:a9:ee:7a:92:df:17:15:21:5b:3f:ec:f5:fb:
         7b:71:07:78:a9:c4:8e:5f:91:79:fd:f6:24:68:a9:c9:86:62:
         1b:95:d8:c7:0b:26:21:66:c1:84:10:35:0a:1a:aa:29:a3:16:
         9d:c9:44:d3:85:5a:46:7e:3f:63:20:d7:b6:4f:97:94:23:c5:
         4c:fa:33:64:3c:db:d4:85:3d:b7:77:24:c8:b6:be:3c:45:10:
         f3:0d:93:1f:3d:66:b4:b2:26:01:2c:fc:6d:43:10:e9:83:82:
         c0:65:eb:8b:13:07:ed:fb:25:b0:d8:8d:8e:92:04:06:7a:f1:
         47:43:b4:cd:9c:97:ac:30:e0:99:c1:a3:de:ad:dd:2c:b6:51:
         a6:22:39:7c:7d:cb:b4:ce:37:fc:ab:52:01:cb:97:6a:c7:3b:
         89:b3:92:38:36:97:2b:a6:f3:5e:df:67:f6:d2:19:fe:7b:9f:
         bf:aa:35:4d:c3:ce:85:7f:f5:c6:6c:99:b4:04:1f:66:16:17:
         09:ae:e8:4c:20:15:57:fb:e9:e8:36:28:33:18:99:60:77:4a:
         3d:d2:64:cb:75:a6:d2:ba:f2:9f:e8:15:03:21:d7:58:5c:5f:
         d2:9f:bf:e2:a4:47:f4:07:f5:4f:90:d2:ff:51:d6:c5:4c:fc:
         e4:f4:98:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 05:22:19 2026 by rpki-client