Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft
File:                     votHM7Guikc2t-kTJzPWVAkePSs.mft (raw, json)
Hash identifier:          L6owcUdycchwyvf3bARIKtR5JWJGnaZ8VUM8N/WHiUw=
Subject key identifier:   8D:1C:6A:D9:8C:7A:C7:BD:03:3F:EC:A6:FE:56:78:86:15:01:B6:3D
Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B
Certificate issuer:       /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B
Certificate serial:       012B
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft
Manifest number:          0123
Signing time:             Fri 17 Jul 2026 06:54:43 +0000
Manifest this update:     Fri 17 Jul 2026 06:54:42 +0000
Manifest next update:     Fri 24 Jul 2026 06:54:42 +0000
Files and hashes:         1: votHM7Guikc2t-kTJzPWVAkePSs.crl (hash: 2Zp+FaspQgtQHO5i5e2mli4RMstRz7yBmG/WzpCRQ3w=)
                          2: 63817B3AC9D211EFBC6F934DC4F9AE02.roa (hash: m0i0X9j0yXnsKKSGdxoju3T5IQpZd4Oir8j6ny4qit8=)
                          3: A3815188C9D211EFB961F44DC4F9AE02.roa (hash: DHIuEGlAe2mG5wZOhiV1lUw2gUeKuaIT7YiSDLTxpgQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl
                          rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:54:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 299 (0x12b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B23D9, serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B
        Validity
            Not Before: Jul 17 06:54:42 2026 GMT
            Not After : Jul 24 06:54:42 2026 GMT
        Subject: CN=6a59d1b3-8f4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:44:ca:cb:e5:e3:15:10:17:98:a8:3e:e7:93:
                    5d:2f:e3:7b:90:ab:c8:55:f4:df:1e:0f:49:18:5d:
                    1d:e8:0f:9f:88:9c:ea:35:cf:38:91:f8:66:d3:5a:
                    65:18:9b:c7:d2:53:d1:73:05:ee:00:51:53:db:46:
                    55:1e:ca:61:17:a4:fc:96:29:ca:2b:55:2a:da:2a:
                    9c:9c:8c:6e:a7:87:2c:8f:fe:04:ae:96:77:9d:45:
                    1e:ca:47:7c:f0:d8:7a:2e:95:74:66:d3:21:18:ca:
                    4f:db:1f:da:47:9d:82:89:5f:78:1f:21:e5:f1:00:
                    09:d5:6b:83:7f:89:39:b4:49:60:3c:fa:9c:4f:1f:
                    74:d2:2c:e5:a3:a2:01:b7:3b:7d:15:5b:86:6e:e8:
                    2f:1f:22:72:d5:1d:04:af:9e:0e:54:c2:fc:fb:d8:
                    9a:de:bb:ec:eb:7b:e7:61:e1:34:24:0b:1d:89:1d:
                    1d:df:42:71:8d:e5:02:ef:d3:3c:4e:b8:69:77:20:
                    fe:2f:30:96:62:a2:b9:3e:07:c3:94:99:bd:a2:be:
                    a9:4d:a3:7b:a2:c3:9e:d7:5e:e2:9f:cb:d2:36:9f:
                    1f:fc:f2:a3:e7:43:37:38:4e:3b:0f:e2:a1:06:8d:
                    8a:8f:af:19:81:79:c0:33:fe:23:73:04:d5:2a:4b:
                    a6:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:1C:6A:D9:8C:7A:C7:BD:03:3F:EC:A6:FE:56:78:86:15:01:B6:3D
            X509v3 Authority Key Identifier:
                keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:87:78:70:b3:2e:09:17:32:07:5b:8f:c1:f1:6b:8d:ea:4d:
         bf:85:39:4a:0c:60:7a:a8:47:a7:5a:b9:9c:e5:72:e9:95:a0:
         c8:0f:63:e5:c9:79:e3:65:cb:c8:f1:ec:a8:27:97:9a:5a:60:
         37:f0:90:7f:f2:69:63:a8:ff:9f:b7:dd:0a:28:7b:86:b5:1f:
         75:76:57:af:4b:35:21:1f:4d:49:ed:e1:81:b8:7e:ae:53:16:
         96:f2:c1:81:ea:eb:c7:bf:61:51:37:d6:fc:68:fb:9f:5b:dc:
         f1:3d:d7:fa:8a:5e:85:68:d7:6d:33:ae:48:d7:2e:a4:44:78:
         ae:3e:bd:71:8e:1b:16:65:2e:70:c1:c5:69:67:29:1c:ad:04:
         c5:62:33:27:a9:f2:04:84:08:ac:5b:55:b2:98:f1:36:e7:11:
         56:2d:56:d5:d0:4b:bc:7d:aa:c5:37:d1:b6:31:c5:fd:b1:18:
         0a:01:52:e2:20:cc:a7:85:e2:d4:ee:93:ca:af:1a:98:f8:cc:
         8b:75:94:d6:56:1a:56:25:2b:9f:6e:8e:3a:65:75:9c:3f:41:
         45:36:de:cd:87:ae:b5:73:da:20:42:44:20:d3:c5:52:57:09:
         bb:5e:ff:3b:f5:76:3e:27:a5:25:b8:9e:13:0e:c6:21:37:53:
         fc:5c:ba:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:09 2026 by rpki-client