Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft
File:                     23LIuvHa9pOYGFLuAyIwMF7ICRA.mft (raw, json)
Hash identifier:          o0FhJcomtE/+BmuYZEG/iy8VDvDr8JSNZlLsPz3NQts=
Subject key identifier:   8B:6A:C9:B2:8C:1B:AB:6D:06:4C:F3:30:A1:5A:1C:7A:A9:CB:13:3C
Authority key identifier: DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10
Certificate issuer:       /CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910
Certificate serial:       0976
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft
Manifest number:          096C
Signing time:             Thu 16 Jul 2026 20:21:47 +0000
Manifest this update:     Thu 16 Jul 2026 20:21:46 +0000
Manifest next update:     Thu 23 Jul 2026 20:21:46 +0000
Files and hashes:         1: 23LIuvHa9pOYGFLuAyIwMF7ICRA.crl (hash: wEjMzTLOtPxiH2vNpJ0NmwzuDu2T+YABv8e9e+ZgHMo=)
                          2: E6F3687CBCE711EAACD6466CC4F9AE02.roa (hash: /BHXZw097Vnx6svspg9H0QFXzJ+pPqoQmyYjSxe8qDA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl
                          rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 20:21:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2422 (0x976)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B289C, serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910
        Validity
            Not Before: Jul 16 20:21:46 2026 GMT
            Not After : Jul 23 20:21:46 2026 GMT
        Subject: CN=6a593d5a-057a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:63:41:c6:25:81:a7:f1:64:6d:41:8a:23:08:
                    37:30:27:a4:a7:87:6d:7b:39:d3:b0:76:fb:1e:a0:
                    92:0e:8c:23:26:00:10:d7:a7:7b:7d:1e:02:5b:7d:
                    e8:ff:4d:34:bb:28:73:45:a3:2f:75:0c:0a:de:e8:
                    40:75:b3:f3:15:02:a1:8a:df:d5:ba:b5:a5:94:f1:
                    a4:c0:96:fd:83:dc:df:1e:ea:30:ff:d8:8a:59:c6:
                    8e:38:45:d9:2a:4e:7b:23:7d:6f:bb:f8:ff:33:0f:
                    88:04:48:15:20:a5:5d:e9:e3:e2:76:fc:17:c9:91:
                    75:de:ec:37:78:92:e0:af:17:b1:00:6a:e8:03:e8:
                    78:78:36:40:fd:6f:1d:37:0b:b8:a5:4f:aa:75:53:
                    c1:bb:ae:09:79:c9:8c:40:d7:63:ba:88:3f:ef:bf:
                    58:3e:25:d2:57:b1:58:1e:b8:a6:55:35:d0:c2:b4:
                    dc:fe:69:19:20:65:b6:56:a3:21:ee:4e:06:0e:25:
                    f3:cd:e5:1e:1e:fa:e8:4b:9b:f6:54:6e:7a:f7:b9:
                    bf:ce:e6:fd:e5:4a:1d:cb:25:38:4e:3b:d6:d5:71:
                    8e:a2:b7:3c:05:42:4a:7f:74:5b:0a:da:bd:45:1f:
                    25:5a:fc:e9:a6:59:3a:32:33:64:9f:2d:e7:cb:6c:
                    06:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:6A:C9:B2:8C:1B:AB:6D:06:4C:F3:30:A1:5A:1C:7A:A9:CB:13:3C
            X509v3 Authority Key Identifier:
                keyid:DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:39:9d:6b:ad:4c:cb:4c:11:29:e2:c2:73:bf:ac:a0:a7:2e:
         c4:b7:e8:2b:70:b4:02:85:ee:ce:a3:c9:2b:9d:b3:27:76:63:
         11:64:47:a6:0e:8a:9b:50:37:e2:c8:c0:ad:62:f4:f6:a6:5d:
         4c:f4:16:bd:22:03:95:28:4a:75:6a:20:e9:46:34:ed:d2:3f:
         f6:18:a9:b8:56:ed:70:34:00:69:b9:8f:08:36:9a:fa:b2:4d:
         9f:a9:b1:9f:74:2d:93:7a:f5:5d:de:21:ce:93:d5:fe:8a:b9:
         f3:f7:f1:78:80:fa:2b:75:9a:ce:c8:89:f4:4f:11:03:66:cf:
         ef:31:2d:42:ec:c5:ce:4a:70:6a:24:1e:e7:c6:3c:21:95:e6:
         c5:9f:ba:fb:97:32:33:2c:de:fa:50:60:39:28:dd:a9:e5:80:
         4e:6d:45:bc:80:0e:71:96:62:2d:7a:c8:5d:3e:8c:e3:0a:c3:
         7e:17:7b:a8:8e:0a:e7:13:12:5e:51:7f:e7:6d:10:58:75:4d:
         34:98:59:25:2e:1c:12:d3:cc:d7:67:c0:4c:36:c6:83:ef:2a:
         28:20:c8:cc:0e:93:11:a3:cc:bd:5c:b4:6d:48:96:71:1c:9f:
         cf:f3:e4:09:24:42:37:f9:8b:33:72:80:a1:9f:11:c3:92:f2:
         9b:91:6b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:56:37 2026 by rpki-client