Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft
File:                     cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json)
Hash identifier:          I5O67Khi9ihBphFwHQ8OZr6V/O3fZa+VZTMiBp5pxpE=
Subject key identifier:   6E:3C:F2:18:DE:75:59:D6:81:2C:F3:5A:DC:B8:73:DD:3E:AD:02:A3
Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F
Certificate issuer:       /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F
Certificate serial:       01BE
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft
Manifest number:          01B8
Signing time:             Fri 17 Jul 2026 04:57:08 +0000
Manifest this update:     Fri 17 Jul 2026 04:57:08 +0000
Manifest next update:     Fri 24 Jul 2026 04:57:08 +0000
Files and hashes:         1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: 83h+GNs2xrrrPoDVgmHOD80EwXYyEEwWLU9O0LuxQwQ=)
                          2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: kbTV9f4IWgZK9S4apMSRBWK1zjlS8Xrya9owJXlI6Ns=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl
                          rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 04:57:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 446 (0x1be)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F
        Validity
            Not Before: Jul 17 04:57:08 2026 GMT
            Not After : Jul 24 04:57:08 2026 GMT
        Subject: CN=6a59b624-db30
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:1b:14:c0:7d:09:3f:08:39:e5:28:eb:93:d8:
                    b7:ef:d3:8a:57:14:90:98:ca:a9:3e:1f:09:f4:39:
                    45:5a:57:12:81:0f:93:9e:83:02:a6:67:a0:c7:4c:
                    81:cf:1b:d8:02:db:a8:f6:ca:14:7f:a1:3e:a4:c1:
                    34:5c:48:42:eb:86:fa:0e:4e:a9:ce:d3:b5:80:7f:
                    97:56:fa:69:fb:3b:8a:9d:e3:14:4c:b5:f5:81:68:
                    e0:bb:65:b9:e6:46:c1:1c:67:4d:51:36:e4:2f:4a:
                    6c:fc:17:62:78:31:de:f1:6d:dc:e2:f7:76:56:b2:
                    6c:a0:a5:31:e2:9c:99:02:2d:27:23:60:fe:36:56:
                    fa:a3:18:22:c1:ff:3a:e8:31:5b:8f:e7:61:f7:ef:
                    78:34:46:93:fa:e5:b0:26:43:22:d3:e3:66:15:7e:
                    09:43:14:ea:66:05:f5:8f:33:d8:d0:01:6f:15:47:
                    c1:1d:1d:0d:43:73:c6:64:7e:bd:c7:c2:99:36:66:
                    1a:b0:31:26:31:9a:92:97:a1:b2:ce:cd:68:47:67:
                    41:24:2f:ca:90:40:db:3e:0a:6f:8b:49:83:e1:1e:
                    42:a3:f2:c5:53:43:8d:b5:2f:86:6e:78:87:aa:d0:
                    a3:84:56:64:32:7e:a3:fc:f3:d5:91:9b:0c:b6:1c:
                    dd:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:3C:F2:18:DE:75:59:D6:81:2C:F3:5A:DC:B8:73:DD:3E:AD:02:A3
            X509v3 Authority Key Identifier:
                keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:30:04:08:45:4b:47:bf:39:f1:57:7c:fd:64:c4:61:26:97:
         27:30:5c:7d:73:61:44:16:69:d8:18:06:c7:b7:b0:72:0a:4b:
         47:76:42:1c:76:28:67:ba:f0:7b:ce:60:36:04:5a:c1:11:07:
         92:d3:db:1c:96:1e:be:b3:50:da:9a:a3:15:1f:f6:90:30:c2:
         bb:79:b8:aa:4b:2c:ac:1e:af:49:f1:bd:19:85:e2:6e:67:8e:
         03:50:d9:52:27:4f:e8:8b:d5:35:92:70:8a:2f:41:54:b8:ca:
         6b:62:ec:46:7c:c4:9d:1f:92:79:3f:c6:2b:d1:15:0d:6d:6d:
         08:67:ec:42:ee:39:4b:d3:60:6a:97:6b:40:35:a1:65:4c:c6:
         30:4c:e4:de:20:70:7b:9b:63:63:a8:47:61:d3:1e:ff:08:b5:
         9f:c4:b1:9c:fe:7c:ea:34:42:77:90:1b:df:75:04:9d:35:23:
         42:76:14:76:85:66:10:a3:8d:24:13:e8:ac:3a:03:1f:9c:15:
         a1:a4:14:23:ce:c2:36:ce:65:7f:52:7b:3f:97:48:56:10:36:
         26:a1:eb:96:fc:fd:9f:06:ed:e2:cd:e0:d3:7d:8f:4b:2f:23:
         c7:ba:09:ed:97:98:20:4a:0b:01:e4:d4:44:83:b7:21:72:13:
         3c:57:9d:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:16:42 2026 by rpki-client