Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft
File:                     HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json)
Hash identifier:          PzBbidGbuzSE6Z9TBJpLSLTI30WSz4eV05wZ2oRP7sI=
Subject key identifier:   EC:09:44:1C:75:40:14:BD:4A:32:22:DA:3C:9A:23:9F:22:1A:CE:91
Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27
Certificate issuer:       /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627
Certificate serial:       0152
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft
Manifest number:          014A
Signing time:             Fri 17 Jul 2026 06:22:51 +0000
Manifest this update:     Fri 17 Jul 2026 06:22:51 +0000
Manifest next update:     Fri 24 Jul 2026 06:22:51 +0000
Files and hashes:         1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: cG9Dg35OVrpiJMiA+/sCaUrmqayqRwBqTf23YADnRqw=)
                          2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: wRT9sM0qBqJTw3W+Zz9nGxaklW3kwpSgScv5I5RXTWo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl
                          rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
                          rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:22:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 338 (0x152)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627
        Validity
            Not Before: Jul 17 06:22:51 2026 GMT
            Not After : Jul 24 06:22:51 2026 GMT
        Subject: CN=6a59ca3b-ee88
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:5e:7e:e9:2f:cc:75:34:f4:4f:cf:60:d7:f2:
                    2e:68:b1:dc:ea:b1:04:1a:65:8c:3b:0e:4e:a5:5d:
                    5d:58:3f:d7:86:f9:17:d7:87:cd:a4:42:e5:a1:af:
                    3d:63:16:8a:20:9d:9b:87:03:a9:da:c0:83:35:de:
                    c4:a7:46:7c:db:d7:21:7f:df:7b:5e:8d:6a:2e:2c:
                    53:6e:50:e8:50:1c:45:c2:ed:5f:47:b6:d2:cd:b5:
                    b0:b4:0a:12:22:9f:89:93:67:71:ea:80:15:37:de:
                    9c:29:37:7f:f5:9b:ed:40:8a:f4:51:cc:05:bf:33:
                    b4:29:c4:3c:80:60:89:aa:fa:9b:76:35:82:ab:d5:
                    04:50:5c:f2:1f:79:d6:d7:23:7e:f0:38:1f:be:ba:
                    7e:9a:25:b0:ee:84:ed:27:c9:01:a0:b4:e1:04:07:
                    9b:de:4e:7e:86:1c:5c:fa:17:4d:d5:b5:97:71:d7:
                    30:23:54:66:8d:56:ce:23:81:be:e0:21:58:07:cb:
                    b5:74:71:2d:31:73:1a:ba:49:fc:b3:da:b6:41:6f:
                    f5:4e:d9:27:2f:bf:07:cd:c3:a3:5b:92:69:22:74:
                    16:ee:56:5a:49:80:b7:88:bc:b9:0c:6d:db:10:7e:
                    0a:35:bf:50:5d:30:43:47:56:34:68:da:34:ac:cc:
                    65:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:09:44:1C:75:40:14:BD:4A:32:22:DA:3C:9A:23:9F:22:1A:CE:91
            X509v3 Authority Key Identifier:
                keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:93:a4:7e:21:b6:b7:78:51:a6:5b:0c:18:9e:6a:9d:16:3b:
         2e:14:09:ea:b3:ba:aa:b6:ab:ff:63:2b:2f:1a:9c:d8:87:ab:
         53:94:d3:f7:34:e9:39:6e:1e:fc:38:ba:bb:4a:fd:e4:c0:ed:
         7d:81:26:b8:9a:ba:df:91:a4:7d:43:13:cf:e8:ea:d7:eb:6a:
         17:30:51:fe:2c:5f:98:4a:11:14:d2:b9:c6:4f:32:f3:2d:61:
         e5:93:02:52:ae:d2:ed:e8:bc:22:4d:0c:0c:95:f0:81:87:12:
         18:9e:bb:87:dc:13:d1:d9:78:e6:0a:46:8d:17:db:a7:7c:3a:
         8c:de:a3:31:aa:41:7c:be:95:df:ff:4d:3b:93:4e:17:23:c6:
         02:59:e0:cd:69:0b:8e:80:50:e4:40:74:b3:1d:ce:9d:24:ff:
         9d:08:53:8f:10:83:63:c5:d5:59:7b:3e:f3:74:c8:fb:db:d3:
         95:85:ff:01:cc:b7:2a:b9:c7:5f:e1:4c:38:7b:16:b0:f9:59:
         5f:29:cf:14:75:e5:be:12:be:70:11:23:0c:2a:bf:bb:8c:2b:
         64:7a:02:80:e6:d2:68:4e:ee:1d:cb:51:18:12:e3:1c:c0:fa:
         6c:2d:db:18:48:8a:6e:ae:fd:f2:fd:49:91:c5:8c:e3:4c:23:
         64:24:32:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:27:35 2026 by rpki-client