Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
File:                     HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json)
Hash identifier:          1LIRnf4HoIiVXi+dQEzyEwBIAV476V2jTh9MdKiKuPI=
Subject key identifier:   E1:C9:85:93:F6:CE:9A:5C:84:46:D1:36:7A:AE:51:86:00:21:78:F7
Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66
Certificate issuer:       /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766
Certificate serial:       0125
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
Manifest number:          011D
Signing time:             Fri 17 Jul 2026 06:58:14 +0000
Manifest this update:     Fri 17 Jul 2026 06:58:14 +0000
Manifest next update:     Fri 24 Jul 2026 06:58:14 +0000
Files and hashes:         1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: ssr/M7hmVuMDpwXXZsr5FeaxlHIZIO5sIu9Tk1R3ENU=)
                          2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: BF86bk5wE6Zr1m3LZ6kF7qlbs43Gmk6OeQj3ok60wVo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl
                          rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:58:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 293 (0x125)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766
        Validity
            Not Before: Jul 17 06:58:14 2026 GMT
            Not After : Jul 24 06:58:14 2026 GMT
        Subject: CN=6a59d286-1af2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:95:b1:21:a0:40:a0:46:6c:9b:41:15:52:33:
                    dc:7e:aa:18:ac:43:8e:5c:55:3a:46:a0:58:8c:26:
                    3d:00:4b:d5:8c:20:02:4e:e3:26:68:7e:38:9b:21:
                    78:ca:9f:40:18:8e:1d:77:25:b9:fd:91:79:63:d1:
                    0d:17:5a:d8:0a:c6:46:6e:f3:ef:fa:9d:c6:d6:7f:
                    84:80:bb:fa:2a:87:60:ea:91:3e:ae:b7:88:3b:e8:
                    2e:89:47:69:b0:93:2a:f0:b8:e8:cb:af:88:20:a4:
                    d5:00:32:6b:e2:31:ec:eb:22:16:40:cc:03:1c:85:
                    b7:dc:4e:b6:ae:21:61:8b:54:90:ff:b8:0e:52:a2:
                    2b:db:f9:0c:9a:91:70:f7:bd:22:3e:e2:ed:52:29:
                    91:56:44:93:c0:21:78:d9:7a:f8:86:3b:51:37:00:
                    ed:c1:84:f0:87:07:d5:85:6e:b2:56:27:19:1a:de:
                    a2:8b:fa:2e:3b:f7:3c:32:e5:be:b2:ef:5b:4c:31:
                    da:31:f6:d9:f6:7d:3f:12:c6:4e:d9:ab:72:da:6f:
                    46:43:24:cd:67:41:8d:22:b6:92:43:0e:1a:2a:f2:
                    e1:ae:bf:85:b6:14:63:fd:16:8c:5e:30:9d:21:ad:
                    a0:e2:8b:85:89:e4:22:3d:e1:81:dc:e3:ac:f9:dc:
                    fe:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:C9:85:93:F6:CE:9A:5C:84:46:D1:36:7A:AE:51:86:00:21:78:F7
            X509v3 Authority Key Identifier:
                keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:84:fe:1e:bb:89:e1:ec:38:7e:c8:a4:fc:c5:01:8b:b5:f1:
         f5:45:9a:86:8d:d4:67:72:f5:c3:5a:5c:cd:07:58:90:1d:d1:
         25:06:46:78:93:09:85:71:a9:3a:8d:b4:21:74:6a:70:ce:e9:
         4b:46:29:37:77:96:6e:94:e0:b9:54:5c:c9:bf:89:da:f1:fd:
         84:01:d8:88:03:a3:12:2e:31:9e:40:e6:14:47:ee:9d:e6:55:
         a5:29:7f:11:3f:d5:8a:b0:ec:f9:bc:a2:1e:57:fb:a5:51:cb:
         78:a1:c2:af:bb:29:7b:17:2a:9f:d3:77:33:dd:11:ad:ef:f0:
         fd:ab:fe:6d:ca:73:6b:34:f5:36:c2:9c:f2:8e:94:f7:6f:d6:
         a4:3f:63:cc:68:13:7b:be:87:a9:8c:89:53:4c:41:f4:17:7f:
         98:7c:0e:7e:da:e8:81:1d:80:eb:a6:91:df:59:d0:b5:06:95:
         90:8b:a7:42:3b:29:ee:b2:dd:c2:9a:00:dd:ca:c3:1c:60:ac:
         83:7d:e1:8a:f8:eb:dd:82:c1:88:71:12:1d:2b:50:ad:ba:a9:
         43:61:f4:7f:0b:b9:ab:88:b3:13:6a:76:7c:b3:5d:b6:5a:40:
         9c:8f:bc:25:42:b2:68:5e:72:b2:77:c3:89:eb:92:9d:16:de:
         6e:b6:5c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:17:24 2026 by rpki-client