Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft
File:                     HLQwTtZoyPcWQT79ZhdMOGcMics.mft (raw, json)
Hash identifier:          oI4HsPeYyaco0h7ygEEdTysJX3lKn3CiRd+dHrt2G8o=
Subject key identifier:   A4:E9:E2:73:64:D6:F0:30:C4:E2:AB:E9:4D:0A:39:33:27:1E:6B:7F
Authority key identifier: 1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB
Certificate issuer:       /CN=A91B4286/serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB
Certificate serial:       14E4
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft
Manifest number:          14D9
Signing time:             Thu 16 Jul 2026 16:53:22 +0000
Manifest this update:     Thu 16 Jul 2026 16:53:22 +0000
Manifest next update:     Thu 23 Jul 2026 16:53:22 +0000
Files and hashes:         1: HLQwTtZoyPcWQT79ZhdMOGcMics.crl (hash: ZMBmxqtm1GQGq0QT77phiEbpmPWJDfbbe3xfmAdek44=)
                          2: 1CA71D84493D11EAAB30C638C4F9AE02.roa (hash: WIOTnnHZpCOfxDVsg8g5aDJ6JWSGnelmuPFVOIcEOGE=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl
                          rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 16:53:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5348 (0x14e4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B4286, serialNumber=1CB4304ED668C8F716413EFD66174C38670C89CB
        Validity
            Not Before: Jul 16 16:53:22 2026 GMT
            Not After : Jul 23 16:53:22 2026 GMT
        Subject: CN=6a590c82-c363
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:50:c3:c4:57:8b:93:d5:2a:80:7e:be:df:44:
                    00:ef:e5:62:2a:ac:c1:34:ef:25:0b:84:fe:d9:07:
                    b5:88:d3:56:65:6a:4c:97:80:9f:c9:7d:50:b6:36:
                    24:ba:b6:b8:66:b6:03:50:05:b7:38:9a:52:83:b5:
                    1c:9e:64:21:a9:9b:9c:bc:18:d8:12:e8:49:f8:ed:
                    30:a9:ae:00:b9:db:36:cf:f3:ad:b9:dc:43:33:06:
                    9d:07:f6:89:07:da:f1:c9:26:f0:eb:07:43:82:9c:
                    1d:00:ad:fa:bb:9a:33:84:de:45:7b:2b:64:6d:98:
                    51:6e:f9:4a:48:10:1a:08:1c:09:a0:90:71:53:06:
                    2f:5a:81:c7:d7:0a:0f:86:54:9e:7e:fe:c6:7b:9a:
                    40:86:b2:fc:d0:d1:f3:44:ca:7a:db:68:dd:b7:ce:
                    f9:b0:5b:ee:62:c8:75:82:63:01:3d:28:23:8b:4f:
                    22:3d:73:40:91:6d:25:f6:41:7a:73:9c:99:6c:6d:
                    09:53:d1:99:ce:fc:e0:3a:e2:3d:34:2c:61:bf:32:
                    be:0f:f1:a8:8b:11:be:f0:c3:0d:75:28:99:e7:0c:
                    ab:d0:9a:32:47:a1:d4:f3:2e:41:e3:78:2d:65:31:
                    c7:66:96:ba:63:d0:b5:db:1c:1b:40:e3:a0:04:88:
                    3f:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:E9:E2:73:64:D6:F0:30:C4:E2:AB:E9:4D:0A:39:33:27:1E:6B:7F
            X509v3 Authority Key Identifier:
                keyid:1C:B4:30:4E:D6:68:C8:F7:16:41:3E:FD:66:17:4C:38:67:0C:89:CB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HLQwTtZoyPcWQT79ZhdMOGcMics.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4286/B21AA0947F4911E888D35642C4F9AE02/HLQwTtZoyPcWQT79ZhdMOGcMics.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:2e:ff:70:62:e6:6e:21:7c:db:9d:c4:02:60:55:2a:a6:49:
         56:68:50:59:6a:02:ed:db:ad:e1:49:8a:47:1e:71:7f:04:f2:
         1d:a1:2d:76:03:bd:11:5f:ea:01:75:04:10:b7:b5:5a:5e:b6:
         21:94:42:4c:dd:02:35:4b:11:34:44:8a:a5:2f:3d:6d:02:6a:
         fa:16:e0:eb:24:d5:24:f7:d9:e5:4d:29:3d:70:e5:71:91:91:
         b3:51:9c:82:3e:61:c8:02:05:46:66:47:bb:9d:46:f1:b3:6b:
         70:12:02:87:5e:cf:7c:51:39:fe:41:73:ef:0e:55:c0:90:35:
         89:01:aa:c6:3b:1a:0f:71:30:f5:73:f3:6f:9b:21:28:1d:d5:
         4e:f3:ad:f0:cb:f9:23:3b:ff:f9:3e:a2:23:b7:f9:95:3a:15:
         70:11:1e:b5:52:63:4e:b9:4b:0b:65:9c:25:13:6e:da:30:da:
         f9:15:03:01:9f:88:c1:05:83:8e:28:82:00:c2:19:0b:86:9c:
         db:d0:56:69:ea:95:ab:8b:f2:f4:80:b9:cb:3a:19:e4:f8:61:
         e1:63:44:06:a0:7d:c9:1c:d0:44:0c:5d:4d:5f:84:8b:53:f1:
         1e:e0:c8:ec:84:db:f0:0d:76:14:27:14:66:20:79:8a:94:83:
         0e:81:54:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:23:04 2026 by rpki-client