Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft
File:                     0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json)
Hash identifier:          CAOJt+NDDypAD4/3pYlePKiGHD2nTvKMjLDtxTYUWU8=
Subject key identifier:   B0:F4:81:99:C1:43:96:5F:42:16:AF:9A:7B:26:17:B7:67:1C:16:54
Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21
Certificate issuer:       /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721
Certificate serial:       015F
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft
Manifest number:          014F
Signing time:             Fri 17 Jul 2026 06:18:27 +0000
Manifest this update:     Fri 17 Jul 2026 06:18:26 +0000
Manifest next update:     Fri 24 Jul 2026 06:18:26 +0000
Files and hashes:         1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: mqTby0eVseutco0MWRQCwc0kyItbrXFhpc1F8OB800A=)
                          2: 1D9F5104C99B11F092A1C310C4F9AE02.roa (hash: ZvIqaTrMx4lREhhOll5OEYiWwpf2XdBASEHvDBRAKLs=)
                          3: 1E0CBABEC99B11F0BD75C310C4F9AE02.roa (hash: XT1f5iHkb8m++28/fpiYZLplpEUsgc7c8BPU0gRXDvg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl
                          rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 24 Jul 2026 06:18:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 351 (0x15f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721
        Validity
            Not Before: Jul 17 06:18:26 2026 GMT
            Not After : Jul 24 06:18:26 2026 GMT
        Subject: CN=6a59c933-4092
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:20:d5:bd:02:16:98:98:dc:52:2f:43:00:1f:
                    84:b2:33:4b:21:50:d4:62:b1:b8:a8:61:e4:4a:25:
                    27:3f:79:32:8c:dc:2c:3a:7c:a8:9b:a1:67:3f:b6:
                    0b:bc:f0:00:3e:eb:58:2e:7e:44:c4:bc:09:dd:bc:
                    3f:93:9a:28:52:3d:ae:a4:e7:47:6b:6f:1c:1d:92:
                    b8:cd:f6:31:35:d7:e5:3d:cf:91:c9:83:e8:47:7c:
                    a3:ee:c6:96:86:48:e9:85:b6:40:53:d6:b7:32:78:
                    99:67:8e:02:a6:7e:a7:c5:47:8a:bd:1b:33:14:47:
                    d3:23:50:97:a5:d0:e7:47:06:5c:e0:5d:a1:8c:c8:
                    41:9e:34:c3:d3:7b:25:74:60:40:96:68:fc:cd:d7:
                    c1:73:24:67:aa:cd:8e:45:3b:c6:48:4a:30:ba:00:
                    92:9c:28:38:62:fc:9b:6c:2c:22:25:ff:99:58:75:
                    74:07:75:61:33:d7:e1:eb:f9:2d:4d:3a:91:40:4c:
                    81:99:79:b6:cc:8e:56:15:02:ef:72:52:40:74:30:
                    bf:12:ac:b4:80:2d:29:ff:52:93:70:68:03:e5:2a:
                    91:94:5f:75:fa:97:81:b6:39:f9:cd:7f:a1:fc:fb:
                    28:3d:2d:01:a9:a8:7a:81:b1:a7:83:8d:37:d8:58:
                    8d:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:F4:81:99:C1:43:96:5F:42:16:AF:9A:7B:26:17:B7:67:1C:16:54
            X509v3 Authority Key Identifier:
                keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:f5:49:fd:9d:24:af:66:d4:bc:87:01:e8:53:46:16:4b:83:
         49:6a:cc:1d:4e:8f:ff:ed:c7:f7:57:39:d0:45:5a:2c:77:4a:
         06:59:2b:71:bf:a9:af:20:8a:76:d2:d0:b6:f4:c8:7c:b7:4f:
         d9:06:da:6d:56:2b:dc:ed:a6:6e:72:b8:74:b3:36:22:15:a3:
         db:c0:a1:ea:cf:3f:4f:0a:04:8f:90:80:9e:78:3d:a4:17:28:
         94:20:ee:ef:c1:e7:b2:3f:52:23:d5:a6:8d:b6:29:0f:7b:3a:
         11:cc:9d:08:f4:35:40:24:f2:36:98:93:d0:a8:1b:dc:0c:89:
         c0:bf:a7:a4:34:37:43:b2:6a:84:4a:53:ff:d3:f4:cf:54:0b:
         27:e7:91:ea:24:4e:13:a5:ce:44:f7:ee:25:6a:85:c9:cc:43:
         30:f3:44:4a:a5:97:33:71:ea:79:0c:57:2b:77:b6:59:72:98:
         72:b1:06:42:98:0d:a4:4c:a8:ae:60:96:ad:4e:c3:ad:f8:da:
         04:c5:1f:ac:f3:e6:bc:42:df:fd:17:17:33:1d:dd:c1:3a:07:
         c8:b3:54:e5:d1:52:41:43:61:bc:22:c4:9b:64:f0:a6:bc:93:
         4b:e1:19:be:8e:7e:bf:00:4f:cd:91:bb:dd:bc:1f:d1:6f:09:
         4a:18:63:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:50 2026 by rpki-client